Privacy Policy

Understanding IVS: The Foundations of Global Valuation Practice
International Valuation Standards Council (IVSC)

1. Introduction

1.1 This Privacy Policy explains how the International Valuation Standards Council (“IVSC”, “we”, “us”, or “our”) collects, uses, and protects personal data in connection with the online course titled Understanding IVS: The Foundations of Global Valuation Practice (the “Course”).

1.2 IVSC acts as the data controller for personal data processed in connection with the Course.

1.3 This Policy applies to personal data processed through the Course Platform.

2. Data Controller Details

International Valuation Standards Council (IVSC)
20 St Dunstan’s Hill
London EC3R 8HL
United Kingdom

Email for privacy enquiries:
contact@ivsc.org

2.1 IVSC is headquartered in the United Kingdom. For the purposes of the Course, IVSC acts as data controller under UK data protection law and, where applicable, the EU General Data Protection Regulation (EU GDPR).

2.2 The IVSC Asia Office at 55 Newton Road, #03-02, Singapore 307987 supports regional outreach but is not the contracting entity for this Course.

3. Global Access

3.1 The Course is accessible to individuals worldwide.

3.2 By registering for or accessing the Course, you acknowledge that your personal data may be processed in the United Kingdom and the European Union, regardless of your country of residence.

3.3 Where personal data is processed outside your country of residence, it will be handled in accordance with applicable data protection law.

4. Eligibility

4.1 The Course is intended for individuals aged 18 and above, as registration and purchase require the ability to enter into a binding contract.

4.2 We do not knowingly collect personal data from individuals under the age of 18.

5. Personal Data We Collect

We may collect and process the following categories of personal data:

5.1 Registration Information

  1. Name (as entered by you)
  2. Email address
  3. Organisation name (if provided)
  4. Country or region
  5. Account credentials

5.2 Course Participation Data

  1. Enrolment status
  2. Module progress
  3. Quiz results
  4. Certificate issuance records

5.3 Payment Information

  1. Payments are processed via Stripe.
  2. IVSC does not collect or store full payment card details and is not responsible for the independent security or data handling practices of Stripe.
  3. We may receive limited information such as:
    1. Transaction confirmation
    2. Payment status
    3. Limited billing metadata

5.4 Technical and Usage Data

  1. IP address
  2. Browser type
  3. Device information
  4. Login timestamps
  5. Activity within the Course Platform

5.5 Communications

  1. Correspondence sent to contact@ivsc.org
  2. Marketing consent preferences
  3. Support requests

6. How We Use Personal Data

We process personal data to:

  1. Register and manage Course accounts
  2. Provide access to the Course
  3. Track progress and generate Certificates
  4. Process payments
  5. Administer affiliate revenue arrangements
  6. Respond to enquiries
  7. Maintain platform security and integrity
  8. Comply with legal and regulatory obligations
  9. Send marketing communications where you have provided consent

7. Lawful Bases for Processing

We rely on the following lawful bases under UK GDPR and, where applicable, EU GDPR:

7.1 Performance of a Contract

Processing necessary to provide access to the Course after purchase.

7.2 Legal Obligation

Processing required for accounting, taxation, or regulatory compliance.

7.3 Legitimate Interests

Processing necessary to:

  1. Maintain platform security
  2. Prevent misuse or fraud
  3. Administer affiliate arrangements
  4. Improve Course functionality

We ensure our legitimate interests do not override your rights.

7.4 Consent

Where you have explicitly opted in to receive marketing communications, you may withdraw marketing consent at any time by using the unsubscribe link or contacting us.

8. Affiliate Partner Data Sharing

8.1 Where the Course is accessed via an Affiliate Partner, IVSC may share limited Participant information only where reasonably necessary and where a lawful basis exists under applicable data protection law, including for:

  1. CPD verification;
  2. Compliance confirmation;
  3. Revenue reconciliation;
  4. Processing refund requests;
  5. Responding to Participant enquiries;
  6. Notification of Course updates.

8.2 We do not routinely disclose full Participant records to Affiliate Partners. Affiliate Partners act as independent data controllers only in respect of any Personal Data they receive under this Privacy Policy.

9. Payment Processing

9.1 Payments are processed by Stripe, an independent third-party payment service provider.

9.2 Stripe processes personal data in accordance with its own privacy policy and applicable law.

9.3 IVSC is not responsible for Stripe’s independent data handling practices.

10. Data Hosting and International Transfers

10.1 The Course Platform is hosted on servers located in the United Kingdom. Encrypted backups are stored within the European Union (Germany).

10.2 Where personal data is processed by third-party service providers outside the United Kingdom or European Union, IVSC ensures appropriate safeguards are implemented in accordance with applicable data protection law.

11. Data Retention

11.1 We retain personal data only as long as necessary for the purposes described in this Policy.

11.2 Specifically:

  1. Course completion records and Certificates are retained for three (3) years from the date of issue.
  2. Payment records are retained in accordance with statutory accounting requirements.
  3. Marketing preferences are retained until consent is withdrawn.
  4. Technical logs are retained for security and operational purposes.

11.3 Data may be retained longer where required by law or to establish, exercise, or defend legal claims.

12. Data Security

12.1 We implement reasonable technical and organisational measures to protect personal data, including:

  1. Secure hosting infrastructure
  2. Encrypted communications (HTTPS)
  3. Restricted administrative access
  4. Payment processing via secure third-party providers

12.2 No online platform can guarantee absolute security.

13. Cookies and Tracking Technologies

13.1 The Course Platform uses cookies and similar technologies.

13.2 These may include:

  1. Essential cookies required for login and functionality
  2. Performance or analytics cookies
  3. Marketing or advertising cookies

13.3 If analytics tools are implemented, they will be disclosed in the cookie banner and used in accordance with applicable data protection law.

13.4 Where required by law, non-essential cookies are deployed only with your consent.

13.5 You may manage cookie preferences via the cookie banner or browser settings.

14. Your Rights

14.1 Depending on your jurisdiction, you may have the right to:

  1. Request access to your personal data
  2. Request correction of inaccurate data
  3. Request erasure of personal data, subject to contractual and legal retention obligations.
  4. Request restriction of processing
  5. Object to certain processing
  6. Withdraw marketing consent
  7. Lodge a complaint with a supervisory authority

14.2 To exercise your rights, contact:
contact@ivsc.org

14.3 Nothing in this Privacy Policy confers additional rights beyond those provided under applicable data protection law.

15. Automated Decision-Making

15.1 IVSC does not use automated decision-making or profiling to evaluate individuals.

15.2 Course access and certificates are generated through the Course Platform’s standard functions, not through automated assessments of personal characteristics.

16. Changes to This Policy

16.1 We may update this Privacy Policy from time to time.

16.2 Updated versions will be published on the Course Platform with a revised effective date.

Last updated on 24 February 2026.