SQMC Privacy Policy

SQMC respects your privacy and is committed to protecting your personal information. This Privacy Policy explains what data we collect, why we collect it, how we use it, and what your rights are. It applies to all interactions with SQMC, whether via our website, telephone, email, training platforms, or otherwise.

Document Version: 2.2
Last updated: February 13, 2026

This Privacy Policy explains how SQMC Limited (trading as Scottish Quality Management Centre, “SQMC”) collects, uses, stores and protects personal data.

This policy applies to all interactions with SQMC, including via our website, email, telephone, virtual platforms, e-learning systems, training events, consultancy services and accredited courses.

SQMC is committed to handling personal data in accordance with the UK GDPR and the Data Protection Act 2018.

1. Who We Are

SQMC Limited
Trading as: Scottish Quality Management Centre
Registered in the United Kingdom

For data protection purposes, SQMC Limited is the data controller for the personal data described in this policy.

Privacy contact: Click Here.

2. What Personal Data We Collect

Identity & Contact Information

• Name
• Job title
• Company name
• Email address
• Telephone number
• Correspondence address

Training & Course Information

• Course registrations
• Attendance records
• Assessment and examination results
• Certification records
• Training history

Feedback & Communications

• Survey responses
• Course feedback
• Email or telephone correspondence

Website Data

• IP address
• Browser type and usage data
• Analytics data collected via cookies (where consent is given)

Special Category Data

We do not routinely collect sensitive personal data. Where necessary (for example, dietary requirements or accessibility needs for training events), such information is provided voluntarily and processed only for the purpose for which it was supplied.

3. How We Use Your Data

We use personal data to:

• Deliver training, consultancy and related services
• Issue joining instructions, examination access and certificates
• Maintain training and accreditation records
• Respond to enquiries
• Improve services through feedback
• Comply with accreditation or regulatory requirements

We do not sell personal data. We do not send marketing communications without appropriate consent or lawful basis.

4. Lawful Basis for Processing

We process personal data under one or more of the following lawful bases:

• Contract – where processing is necessary to deliver booked training or services
• Legitimate interests – for business administration, service improvement and record keeping
• Consent – where required (for example, marketing communications or certain cookies)
• Legal obligation – where we are required to comply with regulatory or accreditation requirements

5. Sharing Your Data

We may share personal data where necessary with:

• Tutors delivering courses
• Our secure cloud-based systems and service providers
• Online learning platforms (e.g. LearnWorlds)
• Payment processors (e.g. Stripe)
• Accrediting and examination bodies

CQI & IRCA Certified Courses

For CQI and/or IRCA-certified training courses, we are required to share relevant delegate data with the Chartered Quality Institute (CQI), IRCA, and their authorised examination or accreditation partners.

This may include:

• Name and contact details
• Course information
• Examination results
• Identity verification documents (where required)
• Online proctoring data (where applicable)

Delegates will be required to review and accept the relevant CQI Learner Privacy Notice before examination access is granted.

Licensed Standards Access

Where licensed ISO standards are provided, we may create accounts with third-party providers (e.g. LVS.lv) to enable lawful access. Such providers operate under their own privacy policies.

We do not share personal data with any other third parties unless required by law.

6. International Data Transfers

Some of our service providers may store or process data outside the United Kingdom. Where this occurs, we ensure appropriate safeguards are in place in accordance with UK GDPR requirements.

7. Data Retention

We retain personal data only for as long as necessary for the purposes for which it was collected.

Training and certification records may be retained indefinitely, as required for accreditation audits (e.g. CQI & IRCA), employer verification or the issuing of duplicate certificates. 

Marketing consent records are retained until withdrawn.

8. How We Protect Your Data

Personal data is stored in secure, password-protected systems. Access is limited to authorised personnel and tutors who require it for legitimate business purposes. We regularly review our data protection practices.

9. Your Rights

Under UK GDPR, individuals have the right to:

• Access personal data we hold about them
• Request correction of inaccurate data
• Request erasure (where applicable)
• Restrict or object to processing in certain circumstances
• Withdraw consent (where processing is based on consent)
• Lodge a complaint with the Information Commissioner’s Office (ICO)

ICO website: www.ico.org.uk

To exercise your rights, please contact SQMC directly.

10. Cookies & Website Tracking

Our website uses:

• Essential cookies required for website functionality
• Analytics cookies, where consent is given, to help us understand how visitors use our website

We do not use cookies to collect personal data without consent.

Visitors are provided with a cookie consent banner upon first visiting our website and may manage their preferences at any time.

Cookies may be disabled via browser settings, although this may affect website functionality.

11. Changes to This Policy

We may update this Privacy Policy from time to time. The current version will always be published on our website with the version number and date.

Authorised by:
Kenny Hannah
Managing Director
SQMC Limited