AFTI Privacy Notice

At AFTI – Academy for Finance, Technology and Innovation (“AFTI”, “we”, “us”, “our”), we respect your privacy and are committed to safeguarding your personal data. This Data Privacy Policy outlines how we collect, use, share, and protect your information in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and relevant UAE and Saudi Arabian regulations.

By enrolling in our programmes, using our services, or registering on our platforms, you acknowledge and agree to the practices described in this Policy.

1. Who We Are

AFTI is the data controller of your personal data, responsible for deciding how and why your information is processed. If you have any questions about this Data Privacy Policy or wish to exercise your rights, please contact us with Subject – Privacy Team at:
📧 training@afti.org.uk

2. What Personal Data We Collect

Depending on your interaction with us, we may collect:

• Identification and contact details (name, email, phone number, nationality)
• Education and professional background
• Payment and billing details (processed securely via third-party providers)
• Course enrolment data, attendance, assessments, and feedback
• Health or accessibility information (only where required for support)
• Technical and usage data (cookies, browsing activity, device details)

3. How We Use Your Data

We process your data lawfully for purposes such as:

• Delivering courses, programmes, and related services
• Managing enrolments, payments, and issuing certificates
• Meeting legal, regulatory, and accreditation requirements
• Communicating updates, where you have provided consent
• Improving training quality, content, and user experience

4. Sharing Your Data

We may share data where lawful and necessary, including with:

• Payment processors, IT, and service providers
• Employers or sponsors funding your programme
• Accreditation bodies, regulators, and professional institutes
• Other AFTI entities for internal administration
  We do not sell personal data to third parties.

5. International Transfers

As AFTI collaborates globally, your personal data may be transferred outside your country of residence, including to the UAE, Saudi Arabia, and the EU. Adequate safeguards are always applied in line with GDPR and local regulations.

6. Data Security

We employ technical and organisational measures to protect your personal data from misuse, unauthorised access, alteration, or loss. Access is restricted to authorised staff and service providers under confidentiality obligations.

7. Data Retention

We retain personal data only as long as necessary to:

• Provide services
• Comply with legal and regulatory obligations
• Resolve disputes and enforce agreements
  Data is anonymised or securely deleted once no longer required.

8. Your Rights

Under GDPR and other applicable laws, you may have rights to:

• Access – request a copy of your data
• Rectification – correct inaccurate or incomplete data
• Erasure – request deletion where data is no longer necessary
• Restriction – limit certain processing activities
• Portability – transfer your data to another provider
• Objection – object to processing, including direct marketing
• Withdraw Consent – revoke consent at any time

To exercise these rights, contact us at training@afti.org.uk. Verification of identity may be required.

9. Updates to This Policy

We may update this Data Privacy Policy periodically to reflect regulatory or business changes. The latest version will be available on our website, and significant updates will be communicated directly where appropriate.