360Health&Performance

360 OS Foundation Certification Privacy Policy

Version: 1.0
Effective Date: [2 June 2025]
Data Controller: THREE SIXTY HEALTH & PERFORMANCE MANAGEMENT CONSULTANCIES - FZCO (Dubai)
Data Processor: 360 Health & Performance Ltd (UK)
IP Owner & Certification Issuer: 360 Health & Performance International Ltd (Cyprus)

1. Purpose of This Policy

This Privacy Policy explains how we collect, use, protect, and disclose personal data from individuals who enrol in the 360 OS Foundation Certification ("Participants"). This policy applies to data collected through our online learning platform, communication channels, and any integrated tools or services.

2. Information We Collect

We may collect the following categories of personal data:

• Identification Data: Name, email address, profession, and country

• Account Data: Login credentials, progress tracking, course interactions

• Communication Data: Email correspondence, support requests, survey responses

• Technical Data: IP address, browser type, device identifiers, session analytics

3. How We Use Your Data

We process your personal data for the following purposes:

• To deliver the certification experience and manage your enrolment

• To personalise your learning journey and record course progress

• To send important course updates, reminders, or policy changes

• To provide technical and customer support

• To maintain legal and financial records as required

4. Legal Basis for Processing

We rely on the following legal grounds:

• Contractual necessity – to deliver the certification and fulfil our obligations

• Legitimate interests – for internal reporting, business improvement, and security

• Consent – for optional feedback collection and marketing (only where explicitly requested)

5. Data Sharing and Transfers

We do not sell your data. We may share your information only with:

• Our internal group companies listed above (Cyprus, Dubai, UK)

• Third-party service providers (e.g. Thinkific, Stripe, survey platforms) strictly as needed to deliver the certification

• Legal or regulatory authorities if required by law

We ensure that all processors adhere to strict data protection and confidentiality requirements.

6. Data Retention

We retain participant data for as long as is necessary to:

• Provide certification access and records

• Comply with legal and financial obligations

• Maintain support records and prevent misuse

You may request deletion of your data post-certification, subject to our legal obligations.

7. Data Security

We implement appropriate technical and organisational measures to protect your data from accidental loss, unauthorised access, misuse, or disclosure.

8. Your Rights

You have the right to:

• Access the personal data we hold about you

• Request correction or deletion of your data

• Withdraw consent (where applicable)

• Object to certain types of processing

To exercise any of these rights, contact us at: [email protected]

9. Changes to This Policy

We may update this Privacy Policy periodically. When changes are made, we will notify you by email or via a platform message before the new terms take effect.

10. Contact Details

For any questions or requests, please contact:
Data Protection Officer
[email protected]

END OF POLICY