Corporate Training Data Agreement
Last updated: January 2026
This Corporate Training Data Agreement (“Agreement”) describes how AMC Academy Tech (“we”, “our”, “us”) manages, processes, and protects personal data related to corporate training programmes delivered to organisations (“Client”, “you”) and their nominated personnel (“Learners”).
1. Scope of This Agreement
This Agreement applies to all corporate training services provided by AMC Academy Tech, including online and blended learning, assessments, examinations, and certification activities delivered via our Learning Management System (LMS) or other platforms.
2. Roles & Responsibilities
For most corporate training engagements, AMC Academy Tech acts as a Data Processor on behalf of the Client, who is the Data Controller for Learner data. In some cases, AMC Academy Tech may act as a joint controller where we determine certain aspects of the training and assessment process.
3. Categories of Data Processed
We may process the following categories of personal data for corporate training:
- Identity data: name, email address, job title, department, vessel or unit, organisation.
- Account data: LMS username, enrolments, access logs.
- Training data: course registrations, progress, completion status.
- Assessment data: quiz results, exam scores, attempts, feedback, grading records.
- Certification data: certificates issued, dates, validity, verification records.
- Technical data: IP address, device type, browser information, access timestamps.
4. Purposes of Processing
We process corporate training data to:
- Deliver agreed training programmes and learning content to Learners.
- Administer assessments, examinations, and certification processes.
- Provide training progress and completion reports to authorised Client representatives.
- Support compliance, safety, and professional development objectives.
- Maintain accurate training and certification records for audit and verification.
5. Lawful Basis
The primary lawful basis for processing corporate training data is the performance of a contract between AMC Academy Tech and the Client, and/or the Client and the Learner. In some cases, processing may also be based on legitimate interests, legal obligations, or explicit consent where required.
6. Data Sharing with the Client
We may share Learner training and assessment data with authorised Client representatives, such as training managers, HR personnel, or compliance officers, for the purposes of:
- Monitoring participation, progress, and completion.
- Supporting internal compliance and competency frameworks.
- Planning further training or remedial actions.
The Client is responsible for ensuring that Learners are informed about such reporting and that any internal use of data complies with applicable data protection laws.
7. Third‑Party Processors
We may use trusted third‑party service providers to host our LMS, deliver communications, or provide analytics. These providers act as sub‑processors and are bound by data processing agreements that require them to:
- Process data only on our documented instructions.
- Implement appropriate technical and organisational security measures.
- Maintain confidentiality and restrict access to authorised personnel.
8. Data Security
We implement technical and organisational measures to protect corporate training data, including secure hosting, encryption in transit, access controls, activity logging, and regular security reviews. Access to Learner data is restricted to authorised AMC Academy Tech staff and approved sub‑processors.
9. Data Retention
We retain corporate training and assessment data only for as long as necessary to fulfil the purposes described in this Agreement and to meet legal, regulatory, or contractual requirements. Typical retention periods may include:
- Training and assessment records: up to 7 years from course completion.
- Certification records: retained for verification for an extended period.
- System logs: retained for a shorter period for security and audit purposes.
10. Data Subject Rights
Learners have rights under applicable data protection laws, including the right to access, correct, or request deletion of their personal data, subject to legal and contractual constraints. Requests may be directed to the Client as Data Controller, or to AMC Academy Tech where we act as joint controller or primary contact.
11. International Data Transfers
Where data is transferred outside the UK or EEA, we ensure that appropriate safeguards are in place, such as standard contractual clauses or equivalent mechanisms, in accordance with applicable data protection regulations.
12. Incident Management & Breach Notification
In the event of a data breach affecting corporate training data, we will investigate promptly, mitigate risks, and notify the Client without undue delay where required. We will cooperate with the Client in meeting any legal or regulatory notification obligations.
13. Changes to This Agreement
We may update this Corporate Training Data Agreement from time to time to reflect changes in our services, systems, or legal requirements. The “Last updated” date at the top of this page indicates the most recent revision.
14. Contact
For questions about this Agreement or corporate training data, please contact:
info@amcacademy.tech