GDPR & Data Protection Compliance
Lans Multimedia Computer Training School adheres to the General Data Protection Regulation (GDPR) and Ghana's Data Protection Act (Act 843 of 2012). We implement robust measures to protect your personal information while ensuring transparency in our data practices.
1. Information We Collect
We collect various types of information to provide and improve our services:
Personal Identification Data
- Full name and title
- Contact information (email, phone)
- Government-issued ID for verification
- Date of birth and nationality
Academic Information
- Enrollment records
- Course progress and attendance
- Assignment submissions
- Certification details
Technical & Usage Data
- IP addresses and device information
- Browser type and version
- Pages visited and time spent
- Cookies and tracking data
Automated Data Collection
We use cookies and similar technologies to:
- Enhance website functionality
- Analyze traffic patterns
- Prevent fraudulent activity
- Personalize user experience
2. How We Use Your Information
| Purpose |
Legal Basis |
| Course enrollment and administration |
Contractual necessity |
| Academic progress tracking |
Legitimate interest |
| Website security and fraud prevention |
Legal obligation |
| Service improvements and analytics |
Consent (where required) |
| Regulatory compliance |
Legal obligation |
3. Data Sharing and Disclosure
We may share information with:
- Academic partners: For certification and accreditation purposes
- Payment processors: For secure transaction handling
- Government authorities: When legally required
- Service providers: Under strict confidentiality agreements
We never sell personal data to third parties.
4. Data Security Measures
We implement enterprise-grade security protocols:
- Encryption of sensitive data in transit and at rest
- Regular security audits and penetration testing
- Role-based access controls
- Multi-factor authentication for administrative access
- DDoS protection and web application firewalls
5. Your Data Protection Rights
Under GDPR and Ghanaian law, you have the right to:
- Access: Request copies of your personal data
- Rectification: Correct inaccurate information
- Erasure: Request deletion under certain conditions
- Restriction: Limit processing of your data
- Portability: Receive your data in a structured format
- Objection: Object to certain processing activities
6. International Data Transfers
When transferring data outside Ghana, we ensure:
- Adequacy decisions from the Data Protection Commission
- Standard Contractual Clauses where applicable
- Equivalent protection measures as domestic transfers
7. Retention Periods
We retain personal data only as long as necessary:
- Student records: 7 years post-graduation
- Financial transactions: 10 years for tax compliance
- Website analytics: 26 months
- Marketing data: Until consent withdrawal
8. Changes to This Policy
We may update this policy periodically. Significant changes will be:
- Posted on our website with 30 days' notice
- Communicated via email to registered users
- Archived with version history
Last Updated: August 11, 2025