Who we are
We are MPA International School
Media
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website. If you upload suspicious content to our site, we have the right to ban you from our website.
Cookies
If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
Embedded content from other websites
Embedded content from other websites behaves in the same way as if the visitor has visited the other website.These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.
Understanding the Data Protection Act 2018
The Data Protection Act 2018 (DPA 2018) is a pivotal piece of legislation in the United Kingdom that governs the processing of personal data. It was designed to ensure the rights of individuals are upheld concerning their personal information and is built upon the principles established in the General Data Protection Regulation (GDPR). The act aims to provide clarity on how personal data should be handled, emphasizing the importance of protecting individuals’ privacy in today’s digital landscape.
Although our organisation is based in Myanmar (Burma), as ethical IT professionals, we will adhere to the UK standards.
Our Approach to Customer Data Collection
At our organization, we recognize the importance of customer data protection and are committed to ensuring compliance with the Data Protection Act 2018 in the UK. Our approach to customer data collection is rooted in transparency and the principle of consent. We strive to inform our customers clearly about the types of data we collect and how it will be used, which is essential in building and maintaining trust.
We collect non-sensitive customer data, including username, Gmail and transaction history. This information is necessary for providing our services and enhancing customer experience. We are diligent in informing customers about specific data collection practices through our privacy notices, which explain the nature of data collected and the purposes for which it will be utilized. Our communication is designed to be clear and straightforward, ensuring that customers fully comprehend the rationale behind our data collection.
Consent is a fundamental component of our data collection strategy. Before collecting any personal data, we ensure that customers actively provide their consent in an informed manner. For example, when customers sign up for our services or newsletters, they are presented with detailed information about what data will be collected and how it will be processed. We facilitate easy opt-in mechanisms, allowing customers to agree to data collection practices with full understanding and control over their personal information.
In addition to transparent communication, we regularly review our data collection processes to ensure they align with best practices in the industry. We are committed to ethical data practices, emphasizing the importance of customer trust in our operations. Our proactive approach not only helps us comply with legal requirements but also fosters a strong relationship with our customers based on shared values of respect and integrity.
Data Security Measures We Implement
- Encryption technologies are utilised for data both in transit and at rest, ensuring it remains unreadable and unusable even if unauthorised parties gain access.
- Secure data storage solutions include stringent cloud providers and on-site data centres equipped with physical controls like firewalls and intrusion detection systems.
- Strict access controls are enforced, employing role-based access and the principle of least privilege to ensure only authorised personnel can view sensitive data.
- Comprehensive incident response strategies are in place, with continuous system monitoring enabling early detection and swift mitigation of potential vulnerabilities or breaches.
- Regular employee training on data security best practices fosters a culture of security awareness throughout the organisation.
Customer Rights and Our Compliance Efforts
The Data Protection Act 2018 grants essential rights to customers regarding their personal data. These rights are fundamental to ensuring transparency and protection, empowering individuals to control their information. Key among these rights are the right to access, rectify, and erase personal data. Our organisation recognises the importance of these rights and has implemented robust processes to ensure compliance and customer satisfaction.
Customers have the right to access their personal data that we hold. We facilitate this through a straightforward request process. When a customer reaches out to us for access, we verify their identity to protect their data from unauthorised access. Upon verification, we provide them with a copy of the relevant personal data and details about its processing, ensuring that they are fully informed about how their information is used.
The right to rectify personal data allows customers to request changes to their information if they believe it is inaccurate or incomplete. Our compliance efforts include establishing clear channels for customers to submit such requests. Once received, we investigate the necessity and validity of the requested changes. If the correction is justified, we promptly update our records while informing the customer about the changes made. This ensures that our data is always accurate and reflects the current situation.
Additionally, customers can request the erasure of their personal data under certain conditions, which we take seriously. We have outlined specific guidelines to assess these requests. If the request meets the necessary criteria, we actively remove the data from our systems, ensuring it is no longer accessible. These processes not only fulfill our legal obligations under the Data Protection Act 2018 but also underscore our commitment to maintaining customer trust and delivering exceptional service.