This notice applies to all personal data collected, processed, and stored by COMPASS in the context of our services, operations, and systems. It covers both electronic and physical data and outlines your rights and how to exercise them.

We may collect various categories of personal data, including but not limited to:

a. Identification Information: Full name, date of birth, government-issued identification numbers.

b. Contact Information: Email address, phone number, mailing/home address.

c. Professional Information: Job title, employer details, certifications, title/ranks.

d. Financial Information: Payment details, billing address.

e. Technical Information: IP address, browser type, device details, and usage data.

f. Training Records: Course enrollments, attendance, performance records, certifications.

g. Emergency Contact Information: Names and contact details of designated emergency contacts.

h. Health records: Blood type, medical history, basic laboratory test results.

i. Surveillance data: Images, videos, or audio recordings captured by our Closed-Circuit Television (CCTV) for security and monitoring purposes.

We collect personal data in the following ways:

a. Directly from You: When you register to our system, enroll for a course, fill out a form, participate in any of our programs, or engage with us.

b. From Third Parties: We may receive personal data from partner organizations or clients.

We use your personal data for legitimate business purposes, including:

a. To fulfill requirements related to training and certification purposes, including the submission of relevant personal data to the Maritime Industry Authority (MARINA) and/or other regulatory boards of the organization.

b. To comply with legal obligations, such as verifying identities and maintaining necessary records.

c. To provide, manage, and enhance our training programs and services.

d. To process personal accident insurance coverage related to your participation in our programs.

e. To address inquiries, complaints, and service requests.

f. To ensure the safety and security of our premises and services.

We rely on several legal basis for processing your personal data, including:

a. Where you have given us your consent or explicit permission.

b. To fulfill contractual obligations related to training and certification services.

c. To comply with applicable laws and regulations.

d. To support our operations and ensure service efficiency, provided these do not override your privacy rights.

We may share your personal data with:

a. MARINA: For submission of required data related to training and certification purposes.

b. Service Providers: Third-party vendors who assist us in our operations, such as insurance companies.

c. Legal Authorities: When required by law or to protect our rights, property, or safety.

d. Emergency Services: In case of medical emergencies or safety threats.

The personal data collected during your registration and enrollment will be securely stored in our system for as long as necessary to fulfill the purposes for which it was collected, in accordance with applicable laws and regulations.

At the end of the retention period, your personal data will be securely disposed of through appropriate methods such as shredding, digital wiping, or other secure data destruction techniques to prevent unauthorized access or misuse.

To ensure transparency and compliance with data protection regulations, we will seek your consent each time you access your account or avail of our services.

We safeguard the confidentiality, integrity, and availability of your personal data by maintaining a combination of organizational, physical, and technical security measures based on generally accepted data privacy and information security standards. Among the measures we implement are the following:

a. Policies on access control in both digital and physical infrastructures to prevent unauthorized access to personal information.

b. Security measures against natural disasters, power disturbances, external access, and similar threats.

c. Technical measures to protect our computers and databases against accidental, unlawful, or unauthorized usage, interference, or access.

Depending on your jurisdiction, you may have the following rights concerning your personal data:

a. The right to be informed when your personal data will be processed.

b. The right to access to your data.

c. The right to object to processing of your data.

d. The right to deletion of your data, subject to legal limitations.

e. The right to correct inaccurate or incomplete data.

f. The right to receive your data in a portable format.

g. The right to be indemnified for any damages sustained due to inaccurate, false, unlawful, or unauthorized use of your personal data.

h. The right to file a complaint for misused, malicious disclosure, or for any violation of your data privacy rights.

To exercise your rights, please contact our Data Protection Officer using the details below.

We may update this Data Privacy Notice from time to time. Any changes will be posted on our website. Please review this policy regularly for updates.

If you have any questions, concerns, or requests regarding your personal data or this notice, please contact our Data Protection Officer:

Name: Ma. Eunice R. Samonte
Email: dataprotection@compass.ph
Tel No.: 02 8536 2368

This notice serves as our commitment to protecting your privacy and ensuring the secure handling of your personal data. Thank you for trusting COMPASS Training Center, Inc.