ALX Policy and Guidelines Hub
Registration and Selection Policy
Learner code of conduct
Assessment Policy and Procedure
Course Delivery Policy and Procedure
Cancellation and Refund Policy
Certification Policy and Procedure
Health and Safety Policy
Appeals/Conduct Committee Guidelines
ALX Legacy Rewards term of use
ALX Legacy Points Guidelines
Learner Privacy Policy
Cookies Policy
Contract Privacy Policy
Data Processing
Terms & Conditions (Portal)

Data Processing

Our Data Processing Terms explain how personal information is handled, protected, and governed when delivering services, clearly defining the roles of Controller (who determines how data is used) and Processor (who processes data on behalf of the Controller). Personal data is processed only for agreed service delivery, based on documented instructions and in compliance with applicable data protection laws, with a strong focus on data minimisation and security through measures such as role-based access, multi-factor authentication, system monitoring, and secure data transfer protocols.

All personnel are bound by confidentiality, and processes support data subject rights, regulatory requirements, and impact assessments. Where sub-processors or international data transfers are involved, equivalent safeguards and legal mechanisms are applied, with the Processor remaining accountable. In the event of a security breach, prompt investigation, mitigation, and notification procedures are followed.

Personal data is retained only for the duration of the agreement and is securely returned or destroyed thereafter, with audit rights in place to ensure transparency and compliance please refer to the full document for detailed terms and technical measures

Key highlights:

👉 Read the full policy here:  Data Processing