Invincible Scotland Trust Privacy Notice

IST is committed to protecting your privacy when you use our services. The Privacy Notice below explains how we use information about you, and the ways in which we protect your privacy.

Your personal data – what is it?

Personal data relates to a living individual who can be identified from that data. Identification can be by the information alone or in conjunction with any other information in the data controller’s possession or likely to come into such possession. The processing of personal data is governed by the General Data Protection Regulation (the “GDPR”).

Who are we?

Invincible Scotland Trust is the data controller. This means it decides how your personal data is processed and for what purposes. Invincible Scotland Trust is a registered educational charity (Registered with the Charity Commission in England & Wales (number 270157), Northern Ireland (XR20456), and Scotland (SC013238). Our registered office is 6 Gardenia Close, Rendlesham, Suffolk IP12 2GX.

Invincible Scotland Trust also acts as data processor for all non-routine mailings and complies with the same regulations in such cases.

How do we process your personal data?

Invincible Scotland Trust complies with its obligations under the GDPR by keeping personal data up to date; by storing and destroying it securely; by not collecting or retaining excessive amounts of data; by protecting personal data from loss, misuse, unauthorised access and disclosure and by ensuring that appropriate technical measures are in place to protect personal data. Our national database and mailing lists are held by specialist third party hosting services meeting GDPR standards.

We use your personal data for the following purposes:

To enable us to confirm details of event bookings you make.
To respond to your enquiries.
To send you occasional information about the service you approached us about, until and unless you unsubscribe.
To help ensure our accredited instructors deliver our personal development programmes to you as effectively and appropriately as possible.
To inform you of further services of a similar nature offered by Invincible Scotland Trust, until and unless you unsubscribe.
To maintain a record of your course credentials, which qualify you for further such courses.
To manage our employees.
To maintain our own accounts and records.
To inform you of news, events, activities and services relevant to personal development programmes offered by Invincible Scotland Trust.

What is the legal basis for processing your personal data?

Legitimate interest when you make an enquiry or an event booking
Soft opt-in and legitimate interest upon enrolment on a Invincible Scotland Trust course so that we can provide the necessary ongoing support required for full benefit, and also to keep you informed about news, events, activities and closely related services. You can adjust your communication preferences or opt out of communications at any time.
GDPR Special Category Data to process health-related data necessary for the provision of certain services such as Transcendental Meditation instruction. (GDPR article 9, point d).
Contract with our database hosting, digital marketing, SMS and mailing service providers. Only anonymised data is used for reporting and monitoring.
• Legal obligation for complying with employment, health and safety, social security or social protection law. Such protection and justification for processing applies to employees and contracted consultants to Invincible Scotland Trust.

Where personal data is collected relating to any other short-term project, only data that is needed will be collected, and the other considerations made clear elsewhere in this policy will apply.

Sharing your personal data

Your personal data will be treated as strictly confidential and will not be shared except where specifically required by contractual agreements. We will not share your data with third parties outside Invincible Scotland Trust. Any such cases where partnership working agreements require data sharing, specific consent will be obtained.

How long do we keep your personal data?

We keep data in accordance with the GDPR, and with our retention schedule. Such personal data is timestamped in our database, and we have systems in place to ensure that personal data is not retained indefinitely without the relevant consent or another relevant legal basis for processing. Course credentials are held permanently to verify eligibility for further courses.

Your rights and your personal data

Unless subject to an exemption under the GDPR, you have the following rights with respect to your personal data:

The right to request a copy of your personal data which we hold about you.
The right to request that we correct any personal data if it is found to be inaccurate or out of date.
The right to request your personal data is erased where it is no longer necessary for us to retain such data. Please see contact details at the foot of this page.
The right to opt out of the processing of your data at any time.
The right to request that Invincible Scotland Trust provide you with your personal data.
The right, where there is a dispute in relation to the accuracy or processing of your personal data, to request a restriction is placed on further processing.
The right to object to the processing of personal data.
The right to lodge a complaint with the Information Commissioner’s Office.

Please see Invincible Scotland Trust’s contact details at the foot of this page.

Further processing

If we wish to use your personal data for a new purpose, not covered by this Data Protection Notice, then we will publish a new notice explaining this new use prior to commencing the processing and setting out the relevant purposes and processing conditions. Where and whenever necessary, we will seek your prior consent to the new processing.

Cookies and tracking technologies

Cookies are text files placed on your computer to collect standard Internet log information and visitor behaviour information. This information is used to track visitor use of the website and to compile statistical reports on website activity. For further information visit www.aboutcookies.org or www.allaboutcookies.org.

Invincible Scotland Trust and our analytics partners, use technologies such as cookies, beacons, tags, and scripts to enable tracking on our websites and the mechanism by which you arrived there, either through Internet search or in response to an advertisement through third party providers such as Facebook or Google. These third parties may use technologies such as cookies to gather information about your activities within a website to deliver advertising to you, such as retargeting ads. We currently do not respond to do-not-track signals. For more information about interest-based ads, including how to opt-out of having your web-browsing information used for behavioural advertising purposes, please visit www.aboutads.info/choices. Please note that this does not opt you out of being served ads. You may continue to receive generic ads on these third-party platforms. You may also opt out of receiving ads across devices by adjusting your ad preference in your Google account. Maharishi Foundation websites use Google Analytics code to gather statistical information. Google Analytics sets cookies to help us accurately estimate the number of visitors to the Website and the volumes of usage of the websites. This is done to ensure that the websites are available when you want them and are fast. For more information on how Google Analytics processes this information, visit www.google.com/analytics. The above technologies ensure that content provided by Invincible Scotland Trust websites are presented in the most effective manner for you and for your computer or other device. They allow you to participate in interactive features of the websites, when you choose to do so, such as finding our local representative. They also allow us to serve our advertisements to you through third party platforms, such as Facebook or Google, on other sites and apps, or across your devices. Details are collected of your visits to and interactions with Invincible Scotland Trust websites including, but not limited to, traffic data, location data, weblogs and other communication data, whether for our own billing purposes or otherwise. We do not disclose information about identifiable individuals to companies that host advertisements on our behalf, but we may provide them with aggregate information about our users (for example, we may inform them that 500 men aged under 30 have clicked on their advertisement on any given day). We may also use such aggregate information to help advertisers reach the kind of audience they want to target. Our websites also include social media features, such as the Facebook “Like” button, and widgets, such as the “Share This” button, or interactive mini-programs. These features may collect your Internet Protocol (IP) address and which page you are visiting on our website, and may set a cookie to enable the feature to function properly. Social media features and widgets hosted by a third party or directly on our website are governed by the privacy statement of the company providing it.

Unless the law allows us to, we do not:

share any of the information we collect about you with others.
use this information to identify individuals.

LIST OF COOKIES WE COLLECT

The table below lists the cookies we collect and what information they store.

Name of cookie

wordpress_

wordpress_logged_in_

woocommerce_cart_hash

woocommerce_items_in_cart

wp_woocommerce_session_

Owner

WordPress

WooCommerce

Description

WordPress uses the cookie wordpress_[hash] to store the authentication details on login. The authentication details include the username and double hashed copy of the password. However, this usage of the cookie is limited to the admin console area, the backend dashboard of the website.

The cookie wordpress_logged_in_[hash] is used to indicate when you are logged in, and who you are. This cookie is maintained on the front-end of the website as well when logged in.

Helps WooCommerce determine when cart contents/data changes.

Contains a unique code for each customer so that it knows where to find the cart data in the database for each customer.

woocommerce_recently_viewed WooCommerce

PHPSESSID

Powers the Recent Viewed Products widget.

Other websites

Our website contains links to other websites. This privacy policy only applies to our organisation so when you link to other websites you should read their own privacy policies.

Changes to our privacy policy

We keep our privacy policy under regular review and we will place any updates on our website.

How to contact us

Please contact us if you have any questions about our privacy policy or information we hold about you:

You can contact the Information Commissioners Office on 0303 123 1113 or via email Email https://ico.org.uk/global/contact-us/email or at the Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire. SK9 5AF.

Generally, personal information is collected directly from you at the time you make a purchase, or when you have other dealings with us. In some instances we may collect personal information about you from someone else. For example, someone may give us your name and address if they have purchased a Maharishi Foundation Dome gift for you and wish us to deliver the gift to you. If you provide us with personal information of another individual you agree to take reasonable steps to ensure that the individual is made aware of the matters set out in this Privacy Policy.

HOW DO WE USE YOUR PERSONAL INFORMATION?

We collect your personal information to keep you up to date with any important changes to our website including our products and services, to notify you of special events, promotions and offers that may be of interest to you (including by email and SMS), to send you our newsletter, to respond to your queries and to help Maharishi Foundation Dome manage and enhance its products and services. We also collect your personal information to allow us to manage and fulfil any orders you place with us including delivering any gifts purchased by you.

CONTROLLING YOUR PERSONAL INFORMATION

You may choose to restrict the collection or use of your personal information in the following ways:

whenever you are asked to fill in a form on the website, look for the box that you can click to indicate that you do not want the information to be used by anybody for direct marketing purposes
if you have previously agreed to us using your personal information for direct marketing purposes, you may change your mind at any time by writing to or emailing us at coursebookings@tmglasgow.esys.uk.com

We will not sell, distribute or lease your personal information to third parties unless we have your permission or are required by law to do so. We may use your personal information to send you promotional information about third parties which we think you may find interesting if you tell us that you wish this to happen.

You may request details of personal information which we hold about you under the Data Protection Act 1998. A small fee will be payable. If you would like a copy of the information held on you please write to Maharishi Dome Woodley Park Rd, Skelmersdale, Lancashire, WN8 6UQ.

If you believe that any information we are holding on you is incorrect or incomplete, please write to or email us as soon as possible, at the above address. We will promptly correct any information found to be incorrect.

SHARING INFORMATION WITH THIRD PARTIES

Maharishi Foundation will not sell or trade your personal information with third parties for their marketing purposes without your consent.

Maharishi Foundation may however disclose your personal information to:

service providers or persons who perform functions on our behalf, for example, mailing services, distribution services, IT services, data analysis, research, advertising or consultancy services;
organisations who are involved in a competition run by Maharishi Foundation Dome;
law enforcement agencies in relation to a suspected breach of any law;
our professional advisers;
regulatory authorities;
anyone else to whom you authorise us to disclose it

Where Maharishi Foundation makes such disclosures, we require these organisations to agree to comply with the codes of practice recommended by the Information Commissioner’s Office.

CROSS-BORDER DISCLOSURE OF PERSONAL INFORMATION

Some of Maharishi Foundation Dome’s third-party contractors and service providers may perform certain services overseas and as a result your personal information may be disclosed to a recipient in a foreign country. For example, we may use a server hosted overseas to store data including your personal information or send emails to Maharishi Foundation Dome customers. Under privacy laws, we must take reasonable steps, in the circumstances, before personal information is disclosed to an overseas recipient to ensure that the overseas recipient does not breach privacy laws in relation to that information (“the Obligation”).

The Obligation does not apply if you consent to the disclosure of your personal information to an overseas recipient.

By supplying personal information to us, you consent to the disclosure of your personal information to an overseas recipient and agree that the Obligation does not apply.

HOW CAN I ACCESS MY PERSONAL INFORMATION?

You have a right to seek access to information which Maharishi Foundation and Maharishi Foundation Dome holds about you. You also have the right to ask us to correct information about you which is inaccurate, incomplete or out of date. While Maharishi Foundation and Maharishi Foundation Dome takes all reasonable precautions to ensure that your personal information is complete and up to date, please notify us of any changes or errors in your personal information held by us.

If you have registered your details on our website you may access, review and update your personal information by simply logging into our website using ‘Login’. Use the ‘My Account’ section to update your details.

HOW SECURE IS YOUR PERSONAL INFORMATION?

We take all reasonable steps to maintain the security and integrity of your personal information and to protect your personal information from misuse, interference and loss and unauthorised access, modification or disclosure. In order to prevent unauthorised access or disclosure, we have put in place suitable physical, electronic and managerial procedures to safeguard and secure the information we collect online.

ONLINE ORDERING SECURITY

We take website and credit card security extremely seriously and always endeavour to provide a secure, safe platform from which to conduct online transactions

Maharishi Foundation Dome uses the industry standard Secure Sockets Layer (SSL)protocol, which encrypts your information as it is transmitted over the internet. This encryption scrambles details such as credit card numbers, billing details, and delivery addresses so that other computers are unable to decipher the information, ensuring your privacy and security.

To ensure you are accessing a secure server, look for the unbroken key or closed lock symbol located either at the bottom left or top right of your browser window. If it appears, then SSL is active.

You can double-check by looking at the URL. If SSL is active, then the first characters of the URL will read https:// rather than just http://. It is important for you to protect against unauthorised access to your password and your computer.

LINKS TO OTHER WEBSITES

Sometimes our website may contain a link to third party websites. Maharishi Foundation Dome is not responsible for the content or material contained in, or obtained through, any third-party website or for the privacy practices of the third party website.

Once you have used these links to leave our site, you should note that we do not have any control over that other website. Therefore, we cannot be responsible for the protection and privacy of any information which you provide whilst visiting such sites and such sites are not governed by this privacy statement. You should exercise caution and look at the privacy statement applicable to the website in question.

CHANGES TO THIS PRIVACY NOTICE

This is our current Privacy Policy outlining our personal information management practices. This Privacy Policy replaces any other privacy policy published by us to date. We may vary this policy at any time. If any changes to these policies occur, we will notify our customers by updating this section of our website.

Maharishi Dome, Woodley Park Road, Skelmersdale, Lancashire WN8 6UQ. tmglasgow.esys.uk.com Maharishi Foundation®, registered educational charity 270157 (England & Wales) SC041919 (Scotland), owns the Maharishi® Dome and runs all of the courses and programmes in Transcendental Meditation®, the Advanced Techniques of Transcendental Meditation® and the TM-Sidhi Programme® that are held in the Maharishi® Dome.

COOKIE POLICY

Our websites use “cookies” – small data files that are stored on your computer or device when you visit a website. Cookies enable you to shop on our websites and may be used in a variety of ways to enhance or personalise your online browsing and shopping experience. Cookies may eliminate the need to repeatedly enter the same information, enabling us to improve the content, reliability and functionality of our websites, evaluate the effectiveness of advertising and track usage patterns. Accepting a cookie will not give us access to any data on your computer other than the data stored in the cookie. You may experience a loss of functionality because of configuring your web browser not to accept cookies.

WHAT WE COLLECT

We may collect the following information:

name
contact information including email address
demographic information such as postcode, preferences and interests
other information relevant to customer surveys and/or offers

For the exhaustive list of cookies we collect see the List of cookies we collect section.

WHAT WE DO WITH THE INFORMATION WE GATHER

We require this information to understand your needs and provide you with a better service,
and in particular for the following reasons:

Internal record keeping.
We may use the information to improve our products and services.
We may periodically send promotional emails about new products, special offers or other information which we
think you may find interesting using the email address which you have provided.
From time to time, we may also use your information to contact you for market research purposes. We may contact you by email, phone, fax or mail. We may use the information to customise the website
according to your interests.

HOW WE USE COOKIES

A cookie is a small file which asks permission to be placed on your computer’s hard drive or device memory.
Once you agree, the file is added and the cookie helps analyse web traffic or lets you know when you visit a particular site. Cookies allow web applications to respond to you as an individual. The web application can tailor its operations to your needs, likes and dislikes by gathering and remembering information about your preferences. We use traffic log cookies to identify which pages are being used. This helps us analyse data about web page traffic and improve our website in order to tailor it to customer needs. We only use this information for statistical analysis purposes and then the data is removed from the system.

Overall, cookies help us provide you with a better website, by enabling us to monitor which pages you find useful and which you do not. A cookie in no way gives us access to your computer or any information about you, other than the data you choose to share with us. You can choose to accept or decline cookies. Most web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer. This may prevent you from taking full advantage of the website.

LIST OF COOKIES WE COLLECT

The table below lists the cookies we collect and what information they store.

Cookies Used by WordPress:

Name of cookie: wordpress_
WordPress uses the cookie wordpress_[hash] to store the authentication details on login. The authentication details include the username and double hashed copy of the password. However, this usage of the cookie is limited to the admin console area, the backend dashboard of the website.

Name of cookie: wordpress_logged_in_
The cookie wordpress_logged_in_[hash] is used to indicate when you are logged in, and who you are. This cookie is maintained on the front-end of the website as well when logged in.

Cookies Used by WooCommerce:

Name of cookie: woocommerce_cart_hash
Helps WooCommerce determine when cart contents/data changes.

Name of cookie: woocommerce_items_in_cart
Helps WooCommerce determine when cart contents/data changes.

Name of cookie: wp_woocommerce_session_
Contains a unique code for each customer so that it knows where to find the cart data in the database for each customer.

Cookies Used by PHP:
Name of cookie: PHPSESSID
The PHPSESSID cookie is native to PHP and enables websites to store serialized state data. It is used to establish a user session and to pass state data via a temporary cookie, which is commonly referred to as a session cookie. As the PHPSESSID cookie has no timed expiry, it disappears when the client is closed.

Cookies Used by Google Analytics:
Name of cookies:

_ga
_gat_UA-105257315-1
_gid

These cookies collect information about how visitors use our website. We use the information to compile reports and to help us improve the site. The cookies collect information in an anonymous form, including the number of visitors to our website, where our visitors to our website have come from and the pages they have visited. The information obtained does not identify anyone.

Cookies Used by Facebook/Twitter:
Name of cookies:

loc
uvc
__atuvc
__atuvs

These are “Add This” social media cookies. These cookies enable users, if they wish, to login to their accounts on social media sites such as Twitter or Facebook and share content from our websites with their friends. These cookies do not allow us access to your accounts or provide us with any confidential information relating to any of your accounts.