Policy Table of Contents
Independent Audit and Certification
- Krescendo, the company behind LiveDataset, has achieved ISO27001:2013 certification for its information security management systems and risk management process. This standard provides customers confidence that Krescendo’s processes and systems have been independently audited to preserve the confidentiality, integrity, and availability of information.
- Cyber Essentials helps businesses like Krescendo protect themselves from the increasing threat of the cyber attack and to deliver a clear statement of the basic controls organisations should have in order to protect themselves. It is a government-backed and industry-supported scheme. Cyber essentials is designed to secure companies’ credentials when it comes to cyber security. In addition, Krescendo are Cyber Essentials Plus certified, which helps carry out vulnerability tests to ensure the company is protected from basic hacking and phishing attacks. It is important to be Cyber Essential certified as it demonstrates to customers, investors, insurers and others that minimum yet essential precautions have been put in place to protect organisations against cyber threats.
- Krescendo software applications are architected from the ground up to include stringent enterprise data security requirements:
- Multi-layered authentication and isolation
- Resilience and recoverability
- Audit controls
- Risk management
Flexibility and Experience
- Since 2002, Krescendo has been delivering secure online systems to multinational enterprises satisfying some of the most demanding IT security requirements — including several of the world’s leading financial institutions. Krescendo has deployed applications using a variety of cloud infrastructure deployment models to meet the specific security, resilience, and access requirements for specific enterprise customers.
Security of the data can only be ensured by the secure use and management of browsers and devices. CJ Learning and Krescendo have taken all responsible measures to provide access in secure environments. It is important that users ensure the appropriate use and exposure of the screen based information once access is granted.
Who We Are
Our Commitment To Privacy
- The right to be informed
- The right of access
- The right to rectification
- The right to erasure
- The right to restrict processing
- The right to data portability
- The right to object
- Rights in relation to automated decision making and profiling.
The Information collected by CJ Learning and CJ Learning Technologies
- Information that is necessary for you to start using our services
- Company name
- Company email address
- Information about your computer and about your visits to the Livedataset website, which are necessary for providing security, compatibility and ease of use, including:
- IP address
- Geographical location
- Browser version
- Operating system
- Length of visit
- Page views
- Navigation behaviour
Who has access to the data
The Way We Use Information
- To help us identify you and your accounts.
- To send you email notifications and information which you have specifically requested.
- To make our websites easier to use.
- To notify you of any changes to our websites or our services and products which may affect you.
- We never use personally identifiable information provided to us in ways unrelated to those described above, unless you have provided consent for that purpose (e.g. contact details provided for sales or marketing purposes), which you have the right to withdraw at any time.
We do not share any personal information with any third party, except where it is necessary for carrying out regulatory or legal obligations (e.g. employment or social security law), or for our legitimate interests (e.g. debt recovery). All information we hold is kept within the UK and is not transferred overseas, other than to allow non UK-based users to see and use their own information.
We do not share analytical data with any body outside of the client organisation. Strategic information held within the SMARTcurriculum® Application is used to inform the benchmarking capabilities of the SMARTcurriculum® Application as far as they can support the effective practice reflected in the purpose of analysing the data entered. In this regard no data is used in this benchmarking process that will identify any individual employee.
Commitment To Data Security
- Confidentiality – only authorised people can access your information.
- Integrity – information should be accurate and suitable for the purpose for which it is used.
- Availability – only authorised users should be able to access the data if they need it for authorised purposes.
Commitment To Children’s Privacy
How You Can Access Or Correct Your Information
CJ Learning has access to a responsive team of technical specialists during London office hours. Please contact email@example.com if you need specific help.
Training and development is supported through access to a programme of webinars and online learning experiences.
Face-to-face training is available through the website at https://cj-learning.com.
This policy applies to all CJ Learning Ltd and CJ Learning Technologies Ltd [hereafter referred to as CJ Learning] staff, including senior managers and the board of directors, paid staff, volunteers and sessional workers, agency staff, students or anyone working on behalf of CJ Learning [hereafter referred to as staff]. It will provide staff with the overarching principles that guide our approach to safeguarding.
To protect children and young people [learners] who are contractually linked to CJ Learning and direct recipients of its services and/or who live or study in establishments in which CJ Learning delivers services.
CJ Learning believes that a child or young person should never experience abuse of any kind. We have a responsibility to promote the welfare of all children and young people and to keep them safe. We are committed to practice in a way that protects them.
CJ Learning recognises that:
- the welfare of the child is paramount, as enshrined in the Children Act 1989
- all children, regardless of age, disability, gender, racial heritage, religious belief, sexual orientation or identity, have a right to equal protection from all types of harm or abuse
- some children and adults are additionally vulnerable because of the impact of previous experiences, their level of dependency, communication needs or other issues
- working in partnership with children, young people, their parents, carers and other agencies is essential in promoting young people’s welfare.
Within the duties undertaken by CJ Learning as far as they involve interaction for or with young learners, each employee and representative of CJ Learning commits to safeguard children and young people by:
- valuing them, listening to and respecting them
1. Do not prompt conversation to illicit a safeguarding related disclosure but be open to direct young people to staff in each institution designated as safeguarding personnel [as indicated in their safeguarding policy].
- adopting child protection practices through procedures and a code of conduct for staff and volunteers
1. Ensure that CJ Learning staff have been made aware of safeguarding personnel when entering an education establishment and ensure that they are aware of their safeguarding policy.
- effective e-safety and related procedures
1. No contact with learners through personal social media accounts. Social media use through company controlled and moderated accounts only.
2. No use of personal email to connect with learners. Contact will be minimal and only through company email if necessary.
- providing effective management for staff and volunteers through supervision, support and training
1. Ensure that all staff have a copy of this policy and that they sign a declaration of having read policy.
2. Provide all CJ Learning staff with access to appropriate updates related to current safeguarding practice.
- recruiting staff and volunteers safely, ensuring all necessary checks are made
1. Ensure all CJ Learning staff working with or coming into contact with children or young people have an enhanced DBS certificate that has been annually renewed.
2. Ensure all staff have current annually updated enhanced DBS in the previous 12 months from proposed engagement with each customer.
This policy has been drawn up based on laws and guidance that seek to protect children, namely:
- Keeping Children Safe in Education Link
- The General Data Protection Regulation (GDPR) (EU) 2016/679 Link
- Multi-agency statutory guidance on female genital mutilation 2016 Link
- All relevant government guidance on safeguarding children, particularly ‘Working together to safeguard Children’ 2019 Link
- Prevent Duty Guidance, Home Office 2015 Link
- The Protection of Freedoms Act 2012 Link
- The Education Act 2011
- Safeguarding Vulnerable Groups Act 2006 Link
- The Children Act 2004
- The Female Genital Mutilation Act 2003 and Statutory FGM Reporting Guidance Link
- The Sexual Offences Act 2003
- The Education Act 2002
- The Data Protection Act 1998
- The United Convention of the Rights of the Child 1991
- The Children Act 1989
Dated: Version 1.04 September 2020
Next review: September 202