Data retention summary
This summary shows the default categories and purposes for retaining user data. Certain areas may have more specific categories and purposes than those listed here.
Site
Category
- Administrative Data
Administrative Data
Purpose
- Access Records
Moodle automatically stores user access information: dates, resources visited, length of visit and more in its internal logs. These logs will beĀ stored for a minimum of three years under GDPR legitimate interest regulations. A user's logs are linked to their activity on the course and their contributions to the course and this data may be necessary for certificate issue, proof of completion and for external validation in the case of our fully-certified courses.
- Retention period
- 3 years
| Lawful bases | |
|---|---|
| Legitimate interests (GDPR Art. 6.1(f)) | Processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, in particular where the data subject is a child |
| Sensitive personal data processing reasons | |
|---|---|
| Explicit consent (GDPR Art. 9.2(a)) | The data subject has given explicit consent to the processing of those personal data for one or more specified purposes, except where Union or Member State law provide that the prohibition referred to in paragraph 1 of GDPR Article 9 may not be lifted by the data subject |
Users
Category
- Personal Data
Personal Data
Purpose
- Personal Information
Every participant will complete their profile with some basic information and an indicative photograph or icon of their choosing. This data will be used by TCE and its tutors to contact the participant and for general information which may be useful during the course. Personal information is stored for a minimum of three years under GDPR legitimate interest regulations. A user's account is linked to their activity on the course and their contributions to the course and this data may be necessary for certificate issue, proof of completion and for external validation in the case of our fully-certified courses.
- Retention period
- 3 years
| Lawful bases | |
|---|---|
| Legitimate interests (GDPR Art. 6.1(f)) | Processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, in particular where the data subject is a child |
| Sensitive personal data processing reasons | |
|---|---|
| Explicit consent (GDPR Art. 9.2(a)) | The data subject has given explicit consent to the processing of those personal data for one or more specified purposes, except where Union or Member State law provide that the prohibition referred to in paragraph 1 of GDPR Article 9 may not be lifted by the data subject |
Course categories
Purpose
- Retention period
- No retention period was defined
Courses
Purpose
- Retention period
- No retention period was defined
Activity modules
Purpose
- Retention period
- No retention period was defined
Blocks
Purpose
- Retention period
- No retention period was defined