Courses Solutions Case Studies & Testimonials News & Insights About Us Contact Us
Public Sector Graduate Training Schemes Learning & Development Corporate & Volume Pricing Custom Learning Paths

Public Sector

We've had the pleasure of working with UK and overseas central and local government departments, including Healthcare (NHS and Foundation Trusts), Defence, Education (Universities and colleges), many of the main Civil Service departments, Emergency Services; also public-owned corporations including the BBC, Bank of England, Ordnance Survey, and regulatory bodies such as Ofgem.

We are registered on Crown Commercial Service’s (CCS) Dynamic Purchasing System (RM6219 Training and Learning) and also with numerous tender portals such as Ariba, Coupa and Delta E-Sourcing.

Read more...

Graduate Training Schemes

Framework Training has a strong track record of providing a solid introduction into the working world for technical graduates across myriad industries. We provide the opportunity to learn and gain valuable hands-on experience in a supportive, friendly and sociable training environment.

Attract & retain the brightest new starters

We know it is vital for our clients to invest in the future of their talented grads; not only to provide them with high-quality, professional training essential for their roles, but to embed them within the organisation’s culture and guide them on the right path to a successful career.

After all, your new hires could well be the next leaders and their creative ideas and unique insights are invaluable to your business.

Read more ...

Learning & Development

Our unique portfolio of high-quality technical courses and training programmes are industry-respected. They’re carefully designed so that delegates can seamlessly apply what they’ve learnt back in the workplace. Our team of domain experts, trainers, and support teams know our field — and all things tech — inside out, and we work hard to keep ourselves up to speed with the latest innovations. 

We’re proud to develop and deliver innovative learning solutions that actually work and make a tangible difference to your people and your business, driving through positive lasting change. Our training courses and programmes are human-centred. Everything we do is underpinned by our commitment to continuous improvement and learning and generally making things much better.

Read more...

Corporate & Volume Pricing

Whether you are looking to book multiple places on public scheduled courses (attended remotely or in our training centres in London) or planning private courses for a team within your organisation, we will be happy to discuss preferential pricing which maximise your staff education budget.

Enquire today about:

  • Training programme pricing models  

  • Multi-course voucher schemes

Read more...

Custom Learning Paths

We understand that your team training needs don't always fit into a "one size fits all" mould, and we're very happy to explore ways in which we can tailor a bespoke learning path to fit your learning needs.

Find out about how we can customise everything from short overviews, intensive workshops, and wider training programmes that give you coverage of the most relevant topics based on what your staff need to excel in their roles.

Read more...

Privacy Policy

We care about your data privacy and security

Framework Training Privacy Statement

Principles

1. An organisation that processes personal data (Data Controller/ the controller) is required to handle personal data in accordance with the data protection principles. A data controller may choose to use another organisation to process personal data on its behalf – a data processor. The data controller remains responsible for ensuring its processing complies with the DPA, whether it processes in-house or engages a data processor. Where a data processor is used the data controller must ensure that suitable security arrangements are in place in order to comply with the seventh data protection principle.

2. The seventh data protection principle provides that: “Appropriate technical and organisational measures shall be taken against unauthorised or unlawful processing of personal data and against accidental loss or destruction of, or damage to, personal data”.

3. Where processing of personal data is carried out by a data processor on behalf of a data controller, the data controller is not to be regarded as complying with the seventh principle unless – (a) the processing is carried out under a contract – (i) which is made or evidenced in writing, and (ii) under which the data processor is to act only on instructions from the data controller, and (b) the contract requires the data processor to comply with obligations equivalent to those imposed on a data controller by the seventh principle”.

4. The DPA requires the controller to have a written contract with their chosen processor. The contract must ensure that Framework Training Ltd:

a. may only use and disclose the personal data in accordance with their instructions; and

b. must take appropriate security measures to protect the data.

In summary, there are legal obligations that a Data Processor such as Framework Training Ltd is obliged to undertake when processing data on behalf of a client. However, the Data Protection Act and the Information Commissioners Office do not stipulate what measures should be undertaken. Instead they state:

“Appropriate technical and organisational measures shall be taken against unauthorised or unlawful processing of personal data and against accidental loss or destruction of, or damage to, personal data.”

From May 2018 GDPR comes into force and defines specific legal obligations for the Data Processor and Data Controller. Articles 28-36 specify that The Processor must:

  1. only act on the written instructions of the controller;

  2. ensure that people processing the data are subject to a duty of confidence;

  3. take appropriate measures to ensure the security of processing;

  4. only engage sub-processors with the prior consent of the controller and under a written contract;

  5. assist the controller in providing subject access and allowing data subjects to exercise their rights under the GDPR;

  6. assist the controller in meeting its GDPR obligations in relation to the security of processing, the notification of personal data breaches and data protection impact assessments;

  7. delete or return all personal data to the controller as requested at the end of the contract; and

  8. submit to audits and inspections, provide the controller with whatever information it needs to ensure that they are both meeting their Article 28 obligations, and tell the controller immediately if it is asked to do something infringing the GDPR or other data protection law of the EU or a member state.

Framework Training Ltd’s commitment to Clients

We have defined a set of data principles that go beyond the basic requirements of the DPA and ICO in order to allow clients to be confident in working with Framework Training. These principles have now been updated to include the requirements of GDPR.

Limitations

Data of the following types will not be accepted by or processed by Framework Training Ltd:

1. Personal data on individuals such as Date of Birth, National Insurance number, marital status, passwords, sexual preferences or other similar personal data

2. Any data relating to persons under the age of 18

Data to be processed

Framework Training Ltd will process data that is required for the successful fulfilment of its role as a provider of education, coaching and consultancy services. This may include sole traders and non-incorporated businesses.

This data can include:

1. Addresses, business names, contacts names, job titles, phone numbers, email address including similar and related data

2. Company data such as industry classification, number of employees, turnover and similar data

3. Past history of engagement, purchases, web site visits and related data

Keeping data secure

Framework Training Ltd takes appropriate measures to ensure that data is both safe and cannot be accidentally damaged or destroyed. These measures include:

  1. Storing data on a resilient file system and/or database (regularly backed up)

  2. Ensuring that access to the data is limited to approved staff members

  3. Limiting access to staff members to prevent accidental destruction or damage to the data

  4. Securing the database behind appropriate security systems to prevent unauthorised access.

  5. Training all staff that process data to do so in an approved manner.

  6. Remain ready to detect and deal with a data breach should it ever occur.

Contractual Terms

Process only on the written instructions of the controller

Framework Training Ltd may only process personal data in accordance with the controller’s written instructions (including when making an international transfer of personal data) unless required to do so by law.

Duty of confidence

Framework Training Ltd must obtain a commitment of confidentiality from anyone it allows to process the personal data, unless they are already under such a duty by law.

Using sub-processors

  1. Framework Training Ltd maintains appropriate contractual agreements covering the same strict data protection requirements with sub-processors who may have access to this data (namely CRM, Website and Email hosting);

  2. if another processor is employed under the controller’s prior general written authorisation, Framework Training Ltd should let the controller know of any changes it has made and give the controller a chance to object to them;

  3. if Framework Training Ltd employs another processor, then it must impose the contract terms that are required by Article 28.3 of the GDPR on the sub-processor; and

  4. if Framework Training Ltd employs another processor, then the original processor will still be liable to the controller for the compliance of the sub- processor.

Data subjects’ rights

  1. Framework Training Ltd must assist the controller in meeting their obligations to data subjects under chapter III of the GDPR, by having appropriate technical and organisational measures.

Assisting the Controller

  1. Framework Training Ltd must assist the controller in meeting their Article 32 obligation to keep personal data secure;

  2. Framework Training Ltd must assist the controller in meeting their Article 33 obligation to notify personal data breaches to their supervisory authority;

  3. Framework Training Ltd must assist the controller in meeting their Article 34 obligation to advise data subjects when there has been a personal data breach;

  4. Framework Training Ltd must assist the controller in meeting their Article 35 obligation to carry out data protection impact assessments (DPIAs); and

  5. Framework Training Ltd must assist the controller in meeting their Article 36 obligation to consult with their supervisory authority where their DPIA indicates there is an unmitigated high risk to the processing.

End of contract provision

  1. at the end of the contract Framework Training Ltd must, at The Controller’s choice, either delete or return to the controller all the personal data it has been processing for the controller; and

  2. an exception to this general rule applies if Framework Training Ltd is required to retain the personal data by law.

Audits and inspections

  1. Framework Training Ltd must provide the controller with all the information that is needed to show that that both of you have met the obligations of Article 28;

  2. Framework Training Ltd must submit and contribute to audits and inspections that the controller carry out, or another auditor appointed by the controller carries out; and

  3. Framework Training Ltd must tell the controller immediately if it thinks it has been given an instruction which doesn’t comply with the GDPR, or related data protection law.

Framework Training Ltd does not process data outside the EEA nor does it allow data to leave the EEA except where compliant with Article 29 Working Party guidelines.

We would love to hear from you

Get in touch

or call us on +44 (0) 20 3137 3920