Privacy Policy
Privacy Policy for CorpTrain Global
Last Updated: May 21, 2025
CorpTrain Global (“we,” “us,” “our”) is committed to protecting the privacy and security of your personal data. This Privacy Policy explains how we collect, use, store, share, and protect your personal data when you use our website at corptrainglobal.com and jpcannassociates.com (the “Website”) and our services, including professional and certification courses, corporate executive and board training, retreats, and conferences (collectively, the “Services”).
Please read this Privacy Policy carefully to understand our practices regarding your personal data and how we will treat it.
1. Who We Are (Data Controller)
CorpTrain Global is the data controller responsible for your personal data. JPCann Associates LTD (parent company of CorpTrain Global), 58 Nsawam Road, Kokomlemle, Accra, Ghana, with email as info@corptrainglobal.com
2. Information We Collect
We may collect and process the following types of personal data about you:
- Identity Data: Name, gender, date of birth, nationality, professional title.
- Contact Data: Email address, postal address, phone number, company name and address.
- Financial Data: Payment card details (processed by secure third-party payment gateways), bank account details for refunds or corporate invoicing. We do not store full payment card details on our servers.
- Professional Data: CVs, professional qualifications, educational background, professional experience, job role, industry, training needs, corporate information for group bookings.
- Profile Data: Your username and password (if you create an account), interests, preferences, feedback, survey responses, and any information you include in your profile.
- Technical Data: Internet Protocol (IP) address, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access this Website.
- Usage Data: Information about how you use our Website and Services, including your Browse patterns, pages visited, links clicked, and duration of visits.
- Communication Data: Your preferences in receiving marketing from us and our third parties, and your communication preferences, as well as records of your communications with us.
- Health Data (Sensitive): In specific, limited circumstances (e.g., for accommodation/dietary requirements for retreats, or accessibility needs for in-person training), we may collect sensitive personal data related to your health with your explicit consent. This data is handled with extreme care and used solely for the purpose for which it was provided.
3. How We Collect Your Personal Data
We collect data from and about you through different methods, including:
- Direct Interactions: You provide us with your Identity, Contact, Professional, and Financial Data when you register for a Program, create an account on our Website, subscribe to our newsletter, complete a contact form, provide feedback, or communicate with us.
- Automated Technologies or Interactions: As you interact with our Website, we may automatically collect Technical and Usage Data. We collect this personal data by using cookies, server logs, and other similar technologies. Please see our [Link to Cookie Policy, if separate] for more details.
- Third Parties or Publicly Available Sources: We may receive personal data about you from various third parties such as analytics providers (e.g., Google Analytics), payment gateway providers, or professional networking sites (e.g., LinkedIn) if you link your account.
4. How We Use Your Personal Data and Our Lawful Basis
We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:
Purpose/Activity of Processing | Type of Data | Lawful Basis for Processing |
To register you as a new customer/participant and manage your account | Identity, Contact, Profile | Performance of a contract with you |
To process your booking for a Program and deliver the Services | Identity, Contact, Professional, Financial | Performance of a contract with you |
To manage payments, fees, and charges, and collect and recover money owed to us | Financial, Identity, Contact | Performance of a contract with you; Necessary for our legitimate interests (to recover debts due to us) |
To enable you to participate in a Program (e.g., provide access to virtual platforms, share pre-reading materials) | Identity, Contact, Professional | Performance of a contract with you |
To send you service-related communications (e.g., booking confirmations, program updates, invoices) | Identity, Contact | Performance of a contract with you; Necessary for our legitimate interests (to keep our records updated and provide essential service information) |
To send you marketing communications about our Services that may be of interest to you | Identity, Contact, Profile | Your consent (where required); Necessary for our legitimate interests (to develop our business) |
To administer and protect our business and this Website (including troubleshooting, data analysis, testing, system maintenance, support, reporting, and hosting of data) | Technical, Usage | Necessary for our legitimate interests (for running our business, provision of administration and IT services, network security, to prevent fraud and in the context of a business reorganisation or group restructuring exercise); Necessary to comply with a legal obligation |
To use data analytics to improve our Website, Services, marketing, customer relationships, and experiences | Technical, Usage | Necessary for our legitimate interests (to define types of customers for our services, to keep our Website updated and relevant, to develop our business and to inform our marketing strategy) |
To comply with legal or regulatory obligations | All relevant data categories | Necessary to comply with a legal obligation |
For health and safety purposes at in-person events or to accommodate specific needs | Health (Sensitive) | Explicit consent (where required); Vital interests (in emergencies) |
Marketing: We strive to provide you with choices regarding certain personal data uses, particularly around marketing and advertising. You can opt-out of marketing communications at any time by following the unsubscribe link in our emails or by contacting us.
5. Sharing Your Personal Data
We may share your personal data with the following categories of recipients:
- Internal Third Parties: Other companies within CorpTrain Global’s group (if applicable) who provide IT and system administration services and undertake leadership reporting.
- External Third Parties:
- Service Providers: Third-party service providers who perform services on our behalf, such as payment processing, IT and system administration services, email delivery, data analytics, web hosting, and virtual platform providers.
- Instructors/Facilitators: Where necessary for Program delivery (e.g., sharing participant names for registration lists, pre-reading, or class interaction).
- Accreditation Bodies: If you are undertaking a certification course, we may share necessary data with the relevant accreditation body for certification purposes.
- Corporate Clients: If you are participating in a Program as an employee of a corporate client, we may share your progress, attendance, and performance with your employer as per the terms of our agreement with them.
- Professional Advisers: Lawyers, bankers, auditors, and insurers who provide consultancy, banking, legal, insurance, and accounting services.
- Governmental & Regulatory Bodies: Where required by law or regulation, or to assist with investigations, such as tax authorities, regulators, and other authorities.
- Event Venues/Vendors: For retreats and conferences, we may share necessary participant data (e.g., dietary needs, rooming lists) with venues and other event vendors to facilitate your participation.
We require all third parties to respect the security of your personal data and to treat it in accordance with the law. We do not allow our third-party service providers to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in accordance with our instructions.
6. International Data Transfers
As CorpTrain Global operates globally and delivers Programs in various countries (Ghana, UK, US, Canada, Singapore, UAE, Qatar, South Africa, etc.), your personal data may be transferred to, stored, and processed in countries outside of your country of residence or the country where you registered. This may include transfers to countries that may not have the same data protection laws as your own jurisdiction.
Whenever we transfer your personal data out of a jurisdiction, we ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented:
- Adequacy Decisions: We will only transfer your personal data to countries that have been deemed to provide an adequate level of protection for personal data by the relevant authorities (e.g., European Commission adequacy decisions for GDPR purposes).
- Standard Contractual Clauses (SCCs): Where appropriate, we use specific contracts approved by the relevant authorities (e.g., European Commission SCCs for GDPR purposes) which give personal data the same protection it has in Europe or other respective regions.
- Consent: In certain limited circumstances, we may transfer your data based on your explicit consent after we have informed you of the possible risks of such transfers.
By using our Website and Services, you acknowledge and agree to such international transfers.
7. Data Security
We have implemented appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorized way, altered or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors, and other third parties who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.
We have procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.
8. Data Retention
We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.
In some circumstances, you can ask us to delete your data: see “Your Legal Rights” below.
9. Your Legal Rights
Depending on the jurisdiction you are located in and the applicable data protection laws (e.g., GDPR, CCPA, POPIA, PDPA, etc.), you may have the following rights regarding your personal data:
- The right to be informed: About how your personal data is being used.
- The right of access: To request a copy of the personal data we hold about you.
- The right to rectification: To request that we correct any inaccurate or incomplete personal data we hold about you.
- The right to erasure (“right to be forgotten”): To request that we delete your personal data in certain circumstances.
- The right to restrict processing: To request that we limit the way we use your personal data.
- The right to data portability: To receive your personal data in a structured, commonly used, and machine-readable format.
- The right to object: To our processing of your personal data in certain situations (e.g., for direct marketing).
- Rights in relation to automated decision making and profiling: To object to decisions being made about you solely based on automated processing.
- The right to withdraw consent: Where we are relying on consent to process your personal data, you have the right to withdraw that consent at any time.
To exercise any of these rights, please contact us using the details provided in Section 1. We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it.
You also have the right to lodge a complaint with the relevant data protection supervisory authority in your jurisdiction.
10. Third-Party Links
This Website may include links to third-party websites, plug-ins, and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. When you leave our Website, we encourage you to read the privacy policy of every website you visit.
11. Children’s Privacy
Our Services are not intended for individuals under the age of 16. We do not knowingly collect personal data from children under 16. If we become aware that we have collected personal data from a child under 16 without verification of parental consent, we will take steps to remove that information from our servers.
12. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. The “Last Updated” date at the top of this policy indicates when it was last revised. Any changes will become effective when we post the revised Privacy Policy on the Website. We encourage you to review this Privacy Policy periodically for any changes.
13. Contact Us
If you have any questions about this Privacy Policy or our privacy practices, please contact us at: Email: info@corptrainglobal.com Postal Address: 58 Nsawam Road, Kokomlemle, Accra, Ghana.
