GDPR Compliance

GDPR Compliance


E-Training World held a meeting with all staff on 20th March 2018 where the responsibilities of all staff regarding the implementation of GDPR. Graham Hurdle was appointed as the main data controller assisted by Tony Davey.

Information Held

The only data held by E-Training World are:

Names, addresses, phone numbers, email addresses of our clients

Individual Drivers provide the following data; name, email address, Line Managers Name, Department, Staff number and a password. Their company (client) may request additional information such as vehicle registration etc.

Opt in email marketing list.

Communicating privacy information

E-Training World has undertaken a comprehensive review and update of its privacy, cookies and data protection policies. This review was completed on 29thMarch 2018.

Individuals’ rights

Due to the nature of E-Training World’s business, it may be necessary to keep personal data including results of the online driver assessment after a driver has left their employment. This data will only be kept until any investigations following a Road Traffic Collision (RTC) has been concluded. E-Training World will delete all data pertaining to an individual driver within two working days following a request from our client.

Email addresses contained on the companies opt in marketing list will be deleted within two working days upon receiving a request from an individual.

Subject access requests

All data imputed by our clients and their drivers can be accessed by the individuals through their password protected dashboard. No one (including E-Training World staff) have access to individuals passwords.

Lawful basis for processing personal data

All data held by E-Training World is solely held to identify individual drivers and their at work driving risk assessment. The data may include vehicle details, annual mileage and their key driving skills such as knowledge of the Highway Code, Hazard perception skills.


E-Training World operates an opt in email marketing list, this list is solely used for emailing our Newsletter and other information about our online Driver Profiling and e-learning systems.

Personal data held on our online Driver Profiling and e-learning systems are imputed only by the individual, therefore by entering personal data consent has been given.


To use our online systems an access code must be used, these codes can only be purchased by companies and organisations employing drivers. Therefore no children under the age of 17 years old (minimum age to hold a UK driving licence) will have access to our online systems.

Data breaches

In the unlikely event of a data breach Fasthost the company that host our data on a secure server will notify E-Training World. Following an investigation of exactly what and whose data has been breached, E-Training World will notify those individuals and all other relevant people. Following a report of a data breach by Fasthost our Driver Profiling and e-learning systems will be suspended until we have absolute assurance that no further data breaches are likely.

Data Protection by Design and Data Protection Impact Assessments

E-Training World will carry out a full Impact assessment when designing any new systems to ensure no data is put at any risk. See annex 1, 2 & 3. Privacy impact assessment screening questions

Data Protection Officers

E-Training World takes its responsibilities regarding data protection very seriously. The designate person who takes responsibility for data protection

Compliance is Graham Hurdle Managing Director.


E-Training World operates in more than one EU member state, however all data is held on a secure server in the United Kingdom, all Directors/staff and administration are based in the UK. The UK is our lead and supervisory authority.

Thank you! Your subscription has been confirmed. You'll hear from us soon.