Privacy Policy

1. Introduction

UK Higher Education Advisory ("we", "our", or "us") is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, store, and share your personal data when you use our website, services, and student finance advisory platform.

We operate in compliance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and the Privacy and Electronic Communications Regulations (PECR).

2. Data Controller

UK Higher Education Advisory is the data controller responsible for your personal data. If you have any questions about this policy or our data practices, you can contact us at:

• Email: info@highereduadvisory.uk
• Phone: +44 7853 935713

3. Information We Collect

We may collect the following categories of personal data:

3.1 Information You Provide Directly

• Identity Data: First name, last name, date of birth
• Contact Data: Email address, WhatsApp number, telephone number, postal address
• Eligibility Data: Visa/immigration status, previous funding history, desired degree level, preferred study location
• Financial Data: Information related to your student finance application and funding eligibility

3.2 Information Collected Automatically

• Technical Data: IP address, browser type and version, operating system, device type
• Usage Data: Pages visited, time spent on pages, navigation paths, referral sources
• Cookie Data: Information collected through cookies and similar tracking technologies (see our Cookie Policy)

4. How We Use Your Information

We process your personal data for the following purposes:

• Eligibility Assessment: To evaluate your eligibility for UK student funding and provide personalised guidance
• Service Delivery: To guide you through the student finance application process, university enrolment, and funding disbursement
• Communication: To contact you via email, phone, or WhatsApp regarding your application status and advisory services
• Legal Compliance: To comply with our regulatory obligations under FCA guidelines and UK education regulations
• Service Improvement: To analyse how our website and services are used and to improve user experience

5. Legal Basis for Processing

We rely on the following legal bases under UK GDPR:

• Consent: When you submit the eligibility assessment form or opt into communications
• Contractual Necessity: To provide the advisory services you have requested
• Legitimate Interests: To improve our services, prevent fraud, and ensure security
• Legal Obligation: To comply with applicable laws, regulations, and FCA requirements

6. Data Sharing

We do not sell your personal data. We may share your information with:

• Partner Universities: To facilitate your application and enrolment at accredited UK institutions
• Student Loans Company (SLC): To assist with your student finance application where authorised by you
• Regulatory Bodies: Including the FCA, when required by law
• IT Service Providers: Who assist with hosting, data storage, and website operations, under strict data processing agreements

7. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected:

• Eligibility assessment data: 3 years from the date of submission
• Client records for enrolled students: 6 years after the completion of your course
• Marketing consent records: Until you withdraw your consent
• Website analytics data: 26 months

8. Your Rights

Under UK GDPR, you have the following rights:

• Right of Access: Request a copy of the personal data we hold about you
• Right to Rectification: Request correction of inaccurate or incomplete data
• Right to Erasure: Request deletion of your data in certain circumstances
• Right to Restrict Processing: Request that we limit how we use your data
• Right to Data Portability: Receive your data in a structured, commonly used format
• Right to Object: Object to processing based on legitimate interests or direct marketing
• Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent

To exercise any of these rights, contact us at harshasubashana@gmail.com. We will respond within 30 days.

9. Data Security

We implement appropriate technical and organisational measures to protect your personal data, including encrypted data transmission (SSL/TLS), secure database storage, access controls, and regular security audits.

10. International Transfers

Your data is primarily stored and processed within the United Kingdom. If any data is transferred outside the UK, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the Information Commissioner's Office (ICO).

11. Complaints

If you are dissatisfied with how we handle your personal data, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):

• Website: ico.org.uk
• Helpline: 0303 123 1113

12. Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated revision date. We encourage you to review this policy periodically.