How we collect, use, and protect your personal information
Last Updated: January 15, 2026
This Privacy Policy explains how EDINBURGH LAW SEMINARS LIMITED ("we," "us," or "our") collects, uses, stores, and protects your personal data when you visit our website and register for the AI for Learning 2026: Personal Tutor for Any Skill webinar series. We are committed to safeguarding your privacy and ensuring that your personal information is handled responsibly and in compliance with applicable data protection legislation.
EDINBURGH LAW SEMINARS LIMITED is the data controller responsible for the personal data collected through this website. Our registered office is located at C/O Brodies LLP, Edinburgh, EH3 8BP, United Kingdom. Our company registration number is SC482238. We take our obligations under the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and the Privacy and Electronic Communications Regulations (PECR) seriously.
By using this website, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with the practices described here, please refrain from using our website or submitting personal data through our forms. We encourage you to read this document carefully and contact us if you have questions about how your information is being processed.
We collect only the minimum amount of personal data necessary to provide our webinar services and operate this website effectively. The categories of personal data we may collect include:
Name
Your full name as provided when registering for the webinar or submitting a contact form inquiry.
Email address
Your email address used to send webinar access details, session links, and respond to your inquiries.
IP address
Collected automatically by our servers when you visit the website, used for security purposes and aggregated analytics.
Cookies and usage data
Technical cookies and analytics data including pages visited, time spent on pages, browser type, and referring URLs.
Device information
Device type, operating system, screen resolution, and browser version collected through analytics tools.
We do not collect sensitive personal data such as health information, political opinions, religious beliefs, trade union membership, genetic data, biometric data, sexual orientation, or criminal conviction data. We do not collect financial information, payment card numbers, or banking details, as our webinar series is entirely free of charge.
We collect personal data through several methods, each of which serves a specific and limited purpose:
Registration and contact forms: When you fill in the webinar registration form or the contact form on our website, you directly provide us with your name, email address, and (in the case of the contact form) your message. Submission of these forms is entirely voluntary.
Cookies: Our website uses technical and analytics cookies. Technical cookies are necessary for the website to function correctly, while analytics cookies help us understand visitor behavior in aggregate form. Full details about our cookie practices are available in our Cookies Policy.
Analytics tools: We may use Google Analytics to collect anonymized and aggregated information about website usage patterns. This data helps us improve the website experience and understand which content is most relevant to our visitors. Google Analytics operates under its own privacy policy and processes data as a data processor on our behalf.
Server logs: Our hosting provider automatically records certain information in server logs, including your IP address, the date and time of your visit, the pages you requested, and the HTTP status code returned. These logs are used for security monitoring and troubleshooting technical issues.
We do not use any Meta Pixel, Facebook tracking, retargeting pixels, or advertising tracking technologies on this website. We do not purchase personal data from third parties or use data brokers.
Under the UK GDPR, we must have a valid legal basis for processing your personal data. The legal bases we rely upon are:
Consent (Article 6(1)(a))
When you submit the webinar registration form, you provide your consent for us to process your name and email address for the purpose of sending you webinar access details. You may withdraw your consent at any time by contacting us at [email protected]. Withdrawal of consent does not affect the lawfulness of processing carried out before the withdrawal.
Legitimate interest (Article 6(1)(f))
We process certain technical data (IP addresses, server logs, analytics data) based on our legitimate interest in maintaining website security, preventing fraud, monitoring performance, and improving the user experience. We have conducted a balancing test and determined that these processing activities do not override your rights and freedoms, given the limited and non-intrusive nature of the data involved.
Contract performance (Article 6(1)(b))
When you register for our free webinar, processing your data is necessary to fulfill our commitment to provide you with access details, session links, and relevant event information. This constitutes a step taken at your request prior to entering into a service arrangement.
We use your personal data strictly for the following purposes:
We will never use your personal data for unsolicited marketing or promotional purposes beyond webinar-related communications you have explicitly signed up for. We do not engage in automated decision-making or profiling that produces legal or similarly significant effects concerning you.
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by law. Our specific retention periods are as follows:
| Data Type | Retention Period | Basis |
|---|---|---|
| Registration data (name, email) | 12 months after the webinar series concludes | Consent / Contract |
| Contact form submissions | 24 months from date of submission | Legitimate interest |
| Analytics cookies | 13 months from the date of creation | Consent |
| Server logs (IP addresses) | 90 days | Legitimate interest |
| Cookie consent preferences | 12 months | Legal obligation (PECR) |
When the retention period expires, we securely delete or anonymize the data so that it can no longer be associated with you. If you request deletion of your data before the retention period ends, we will process your request promptly (see Section 9 below).
We do not sell, rent, lease, or trade your personal data to any third party. We do not share your personal information with advertisers, data brokers, or marketing companies. Your data may be shared only with the following limited categories of recipients, and only to the extent necessary:
All third-party processors with whom we share data are bound by data processing agreements that require them to implement appropriate technical and organizational measures to protect personal data. We verify that these processors provide sufficient guarantees regarding the security and confidentiality of data before sharing any information with them.
Our organization is based in the United Kingdom, and we primarily process data within the UK. However, some of our service providers (such as Google Analytics) may process data outside the United Kingdom or the European Economic Area (EEA). Where personal data is transferred to a country outside the UK or EEA that does not have an adequacy decision from the UK Government or the European Commission, we ensure that appropriate safeguards are in place.
These safeguards may include:
You may request further details about the specific safeguards applied to international data transfers by contacting us at the email address provided in Section 13.
Under the UK GDPR and Data Protection Act 2018, you have the following rights regarding your personal data. These rights are not absolute and may be subject to certain conditions and exceptions as defined by law:
Right of access (Article 15)
You have the right to request a copy of the personal data we hold about you and to receive information about how it is processed.
Right to rectification (Article 16)
You have the right to request correction of inaccurate or incomplete personal data that we hold about you.
Right to erasure (Article 17)
You have the right to request deletion of your personal data where there is no compelling reason for us to continue processing it, such as when consent is withdrawn or data is no longer needed.
Right to restriction of processing (Article 18)
You have the right to request that we limit the processing of your personal data under certain circumstances, such as when you contest the accuracy of data or object to processing.
Right to data portability (Article 20)
You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit it to another controller where processing is based on consent or contract.
Right to object (Article 21)
You have the right to object to the processing of your personal data based on legitimate interest. We will cease processing unless we can demonstrate compelling legitimate grounds that override your interests.
Right to withdraw consent
Where we rely on your consent to process data, you may withdraw that consent at any time without affecting the lawfulness of processing carried out before the withdrawal.
How to exercise your rights: To exercise any of these rights, please send an email to [email protected] with the subject line "Data Rights Request." We will respond to your request within 30 days. We may ask you to verify your identity before processing your request to prevent unauthorized access to personal data.
Right to lodge a complaint: If you believe that your data protection rights have been violated, you have the right to lodge a complaint with the Information Commissioner's Office (ICO), the UK's supervisory authority for data protection. The ICO can be contacted through their website at ico.org.uk or by telephone at 0303 123 1113.
This website and the AI for Learning 2026 webinar series are not directed at children under the age of 16. We do not knowingly collect, store, or process personal data from individuals under 16 years of age. If we become aware that we have inadvertently collected personal data from a child under 16 without appropriate parental or guardian consent, we will take immediate steps to delete that data from our records.
If you are a parent or guardian and believe that your child has provided personal information to us without your consent, please contact us at [email protected] so that we can take appropriate action promptly.
We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or operational needs. When we make changes, we will update the "Last Updated" date at the top of this page. If the changes are significant, we will take reasonable steps to notify you, such as posting a prominent notice on our website or sending an email to registered participants.
We encourage you to review this Privacy Policy periodically to stay informed about how we protect your personal data. Your continued use of the website after any changes to this policy constitutes your acknowledgment of the updated terms.
If you have any questions, concerns, or requests regarding this Privacy Policy or our data processing practices, please contact us using the details below:
Registered Address
C/O Brodies LLP, Edinburgh, EH3 8BP, United Kingdom
Company Number
SC482238
Privacy Contact Email
We aim to respond to all privacy-related inquiries within 30 calendar days. For data rights requests (access, rectification, erasure, etc.), we will verify your identity and process your request in accordance with the timelines established by the UK GDPR.