Privacy Policy

Last updated March 19, 2026Version 2

1. Introduction

CPDunlimited ("we," "us," "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform. Please read it carefully.

2. Information We Collect

2.1 Information You Provide

  • Account information: name, email address, phone number, professional title, and password.
  • Professional details: professional council registration number, specialty, sub-specialty, licence expiry date, and employer or organisation.
  • Profile data: avatar, development goals, and notification preferences.
  • Payment information: transaction records processed through our third-party payment provider. We do not store full payment card details.

2.2 Information Collected Automatically

  • Usage data: pages visited, courses accessed, time spent on lessons, assessment attempts, and completion records.
  • Device information: browser type, operating system, IP address, and device identifiers.
  • Proctoring data: webcam snapshots, tab-switch logs, and browser focus events collected during proctored assessments (only when you consent to proctoring).

3. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our services.
  • Track your CPD progress and generate compliance reports.
  • Issue certificates upon course completion.
  • Submit CPD points to your Professional Council, which is supported and authorised by you.
  • Process payments and send transaction receipts.
  • Send notifications about course deadlines, assessment results, and platform updates.
  • Ensure academic integrity through proctoring.
  • Analyse platform usage to improve the user experience.

We process your personal data on the following legal grounds:

  • Contract performance: to deliver the services you have enrolled in.
  • Legitimate interests: to improve our platform, prevent fraud, and ensure academic integrity.
  • Consent: for optional features such as marketing communications and proctoring.
  • Legal obligation: to comply with applicable laws and regulations.

5. Information Sharing

We do not sell your personal information. We may share information with:

  • Professional Councils: CPD point records and completion data, where you have authorised submission.
  • Group administrators: organisations or employers who manage CPD compliance for their staff may access aggregated progress data for their members.
  • Service providers: third-party vendors who assist with payment processing, email delivery, hosting, and analytics, bound by confidentiality agreements.
  • Legal authorities: when required by law, court order, or to protect our rights.

6. Data Security

We implement appropriate technical and organisational measures to protect your personal information, including:

  • Encryption of data in transit and at rest.
  • Row-level security policies ensuring users can only access their own data.
  • Regular security reviews and access controls.
  • Secure authentication with password hashing.

While we strive to protect your information, no method of electronic storage is completely secure. We cannot guarantee absolute security.

7. Data Retention

We retain your information for as long as your account is active or as needed to:

  • Provide our services and maintain your CPD records.
  • Comply with legal and regulatory obligations.
  • Resolve disputes and enforce our agreements.

Certificate verification data may be retained indefinitely to support ongoing verification by employers and councils.

8. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access your personal data and obtain a copy.
  • Rectify inaccurate or incomplete information.
  • Delete your account and associated data, subject to legal retention requirements.
  • Restrict or object to certain processing activities.
  • Data portability: receive your data in a structured, machine-readable format.
  • Withdraw consent at any time for consent-based processing.

To exercise any of these rights, contact us using the details provided below.

9. Cookies and Tracking

We use essential cookies to maintain your session, remember your preferences, and ensure the Platform functions correctly. We do not use third-party advertising trackers. You can manage cookie preferences through your browser settings.

10. Children's Privacy

The Platform is designed for healthcare professionals and is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children.

11. International Data Transfers

Your information may be processed in countries other than your own. Where we transfer data internationally, we ensure appropriate safeguards are in place to protect your information in accordance with applicable data protection laws.

12. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated through the Platform or via email. The "Last updated" date at the top of this page indicates when this policy was last revised.

13. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us through the Platform or email us at the address provided on our website.

Also read

Terms of Service

Read Terms of Service