Privacy Policy
Last updated: 6 January 2026
1. Who we are
CPDCert (“we”, “us”, “our”) provides online Continuing Professional Development (CPD) content and certification.
We are a UK-based sole trader operating under the name CPDCert, owned and operated by Andrew Slater.
If you have any questions about this Privacy Policy or how we handle your personal data, you can contact us at:
Email: admin@cpdcert.co.uk
2. What data we collect
We may collect and process the following personal data:
- Name
- Email address
- Professional role or organisation (if provided)
- CPD course enrolment and completion records
- Certificate details (including unique certificate reference numbers)
- Website usage data (such as pages visited, IP address, and browser type)
3. How we use your data
We use your personal data to:
- Provide access to CPD content
- Issue CPD certificates
- Verify CPD completion
- Communicate with you about your CPD activity
- Respond to enquiries or support requests
- Meet legal and regulatory obligations
- Improve our website and services
We only collect and process personal data that is necessary for legitimate business purposes.
4. Legal basis for processing
Under UK data protection law, we rely on the following lawful bases for processing personal data:
- Contract – to provide CPD services you have requested
- Legitimate interests – to operate and improve our services
- Legal obligation – to meet regulatory or record-keeping requirements
- Consent – where you have explicitly agreed (for example, optional communications)
5. Certificates and verification
CPD certificates issued by CPDCert may include:
- Your name
- Course or event title
- Completion date
- A unique certificate reference
Certificates may be verifiable via a public verification link. Verification confirms certificate validity only and does not display unnecessary personal data.
6. Data sharing
We do not sell or rent your personal data to third parties.
We may share limited data with trusted third-party service providers where necessary, such as:
- Website hosting providers
- Email delivery services
- Website analytics providers
All third parties are required to process personal data securely and in accordance with applicable data protection laws.
7. Data retention
We retain personal data only for as long as necessary for the purposes for which it was collected:
- CPD records and certificates may be retained for verification and compliance purposes
- Website enquiry and support records are retained only as long as required
- You may request deletion of your personal data where legally permissible
8. Your rights
Under UK data protection law, you have the right to:
- Access your personal data
- Request correction of inaccurate or incomplete data
- Request deletion of your personal data
- Object to or restrict processing
- Request data portability
- Withdraw consent at any time (where applicable)
To exercise your rights, please contact us using the details above.
If you are unhappy with how we handle your personal data, you have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO).
9. Cookies
Our website may use cookies to improve functionality and analyse website usage.
You can control or disable cookies through your browser settings. Where required by law, we will request your consent before placing non-essential cookies.
Please see our Cookie Policy for more information.
10. Data security
We take appropriate technical and organisational measures to protect personal data, including:
- Secure hosting infrastructure
- Encrypted connections (HTTPS)
- Restricted access to personal data
However, no online system can be guaranteed to be 100% secure.
11. Changes to this policy
We may update this Privacy Policy from time to time. The latest version will always be available on this page.
12. Contact
If you have any questions about this Privacy Policy or how your personal data is handled, please contact:
CPDCert
Email:
admin@cpdcert.co.uk