The business of GO1 includes an online marketplace for e-learning resources (alongside software and services to produce and deliver such training and resources), which are made available by and through a number of partners, including content sharing partners, distribution partners and implementation partners, (all of whom are referred to as ‘affiliates’ for the purpose of this policy).
We are passionate about lifelong learning, making learning accessible to people in all parts of the world and providing those people with a digital learning record for life. We operate in numerous countries, including Australia, EU countries, the US and several Asian and African countries and are continually expanding our global reach. We acknowledge our obligations to all recipients of our services and products, including visitors to our website at www.go1.com, our registered users (‘learners’) and administrators of our software portals on behalf of learners (‘administrators’) ( collectively, ‘users’) to collect, manage, process and use personal information in accordance with the laws and regulations of each of the countries in which we operate, including the latest General Data Protection Regulation that applies to the European Union.
What we collect and why
The reasons we collect, store, process and use this kind of information include:
We do not collect more data than is necessary for the above purposes.
Our affiliates and other third party service providers to GO1, which may include cloud based customer relationship, content management and hosting services and involve application programming interfaces, are also given access to some or all of the above information for similar purposes. For example:
All such third parties are bound by the same laws and regulations that we are, wherever they are located in the world, and we require them to adopt and apply data protection policies and practices that are consistent with this policy.
Users need to understand that their choice not to provide certain personal information, as described above, will limit or prevent their ability to access and use our products and services.
How we collect information
We ordinarily ask for consent from users to collect, process, manage, store and use personal information, as set out in this policy, including when users purchase or request a trial of our products or services, as a prerequisite to such purchase, trial and use. This is ordinarily done on-line, as part of registration (including for trial purposes) or of course enrolment. When users ‘get in touch’ with us via the contact page on our website or directly to firstname.lastname@example.org they will voluntarily provide the kind of information set out above.
How long we hold information
We hold information only for so long as is necessary for the purposes set out above; in this, we are guided by our contractual obligations and by other lawful legitimate business interests. For example, we commit to learners that we will retain their digital learning record for life, as part of our service. If, at any time, a learner wishes us to delete or transfer their learning record, they may do so as set out below.
Accessing, updating and deleting personal information
Upon registration, administrators and learners have ongoing access to their online accounts, within which they can correct inaccuracies or update or add information. Additionally, they (and other users such as those who trial our products and services) can request us, via email@example.com to:
Similarly, users may withdraw their consent for us to hold any or all of their personal information by request to firstname.lastname@example.org and may unsubscribe to any or all emails through the automated facility sent with each email.
As mentioned above, these actions or requests will limit the ability of users to access and use our products and services.
It may be the case that, for contractual or other lawful legitimate business purposes, we retain and use an archived version of users’ personal information, which may be pseudonymised, anonymised or otherwise de-identified.
We have facilities in place to request affiliates and other third parties, as necessary, to amend or delete personal information held on their systems.
We work hard to protect GO1 and our users from misuse, interference, loss, unauthorised access, modification or disclosure of information we hold. In doing so, we apply technical and organisational measures to ensure a level of security appropriate to the risk including:
We are guided in these activities by ISO/IEC 27001:2013, the international standard that describes best practice for an information security management system and by the ‘Guide to securing personal information (‘Reasonable steps’ to protect personal information)’, dated January 2015, issued by the Office of the Australian Information Commissioner.
Given that GO1 operates internationally, personal information of users may be transferred across national and continental borders, including for contractual and other lawful legitimate business purposes or at the request of users. Within the GO1 organisation, such international transfers are governed by internal controls and rules, consistent with this policy. For such international transfers to and from affiliates and other third parties, GO1 has in place enforceable agreements containing privacy and data protection obligations consistent with this policy.
Cookies and log files
We allow limited use of various technologies to collect and store information when users visit our website; this may include using cookies (i.e. a string of unique data that a website stores on a user’s computer and that the user’s browser provides to the website each time the user returns) or similar technologies to identify the user’s browser or device. For example, at the time of publication of this policy, we use Intercom (for our support tools, including chat within an organisation of learners) and Google analytics and mix panel (for website traffic metrics and analytics). This helps us to optimise our users’ experience and to continually improve and tailor our products and services for users.
Users may set their browser to block all cookies or to indicate when a cookie is being set.
We automatically log IP addresses, browser types and dates/times, which assist with our support efforts, diagnoses of user-initiated issues and queries, and audits for security purposes.
We acknowledge the various data breach obligations in each of the jurisdictions in which we operate, including in Australia. We commit to promptly identify and respond to any breaches, to act to prevent harm and to report, if and as required, to the relevant supervisory authority and users.
Complaints, inquiries and requests
As mentioned above, requests to access, update, restrict or delete personal information can be made to email@example.com.
Last updated: May 23, 2018