Privacy Policy

1. Privacy at UpSkillNowTop: An Overview

The responsible and confidential handling of your personal information is a fundamental cornerstone of UpSkillNowTop. This Privacy Policy comprehensively and transparently informs you about what types of data we collect, for what purposes, how we process it, and what rights you have as a data subject. We are committed to complying with all applicable data protection regulations and to protecting your privacy with the same professionalism we bring to our training programs.

The data protection terms used in this statement follow the definitions of the General Data Protection Regulation (GDPR) and applicable Swiss privacy laws including the revised Federal Act on Data Protection (FADP).

2. Responsibility and Contact Information

The entity responsible for processing personal data in connection with our professional development programs and training services is:

UpSkillNowTop
Bahnhofstrasse 127
8001 Zürich
Switzerland

Email: info@upskillnowtop.com
Phone: +41 44 528 7394
CHE: 946.128.357

3. Data We Collect and Collection Methods

  • Personal and contact information (name, address, phone number, email)
  • Professional development interests (career goals, current skills, training objectives)
  • Educational and professional background information (qualifications, work experience, career level)
  • Program registration data and payment information
  • Course progress and assessment results (with your explicit consent)
  • Website usage data (IP address, browser type, access times)
  • Feedback and testimonials (with your permission)

4. Purposes of Data Processing

  • Delivery and personalization of our professional development and training programs
  • Contract fulfillment and billing for services
  • Communication regarding programs, courses, and career development opportunities
  • Quality enhancement and development of our educational services
  • Sending professional content and event notifications (only with your consent)
  • Compliance with legal retention obligations
  • Protection of our IT systems against misuse and security threats

5. Legal Basis for Data Processing

The processing of your personal data is based on the following legal grounds:

  • Performance of contracts and pre-contractual measures (Art. 6(1)(b) GDPR)
  • Compliance with legal obligations (Art. 6(1)(c) GDPR)
  • Legitimate interests (Art. 6(1)(f) GDPR)
  • Your explicit consent (Art. 6(1)(a) GDPR)

Corresponding provisions of Swiss privacy laws, including the FADP, also apply.

6. GDPR Compliance and Special Protection Measures

As an organization serving clients from the EU, UpSkillNowTop is committed to full compliance with the General Data Protection Regulation (GDPR). This includes:

  • We process personal data only in a lawful, fair, and transparent manner
  • We collect data only for specific, explicit, and legitimate purposes
  • We limit data collection to what is necessary for the purposes of processing (data minimization)
  • We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk
  • We conduct data protection impact assessments when required
  • We ensure that all team members are properly trained and have signed confidentiality agreements

In the event of a data breach that is likely to result in a risk to the rights and freedoms of individuals, we will inform the relevant supervisory authority within 72 hours and notify affected individuals promptly if there is a high risk.

For the transfer of personal data to countries outside the EU/EEA, we ensure that appropriate safeguards are in place, e.g., through EU standard contractual clauses or adequacy decisions of the EU Commission.

7. Data Security Measures

To protect your personal data with the same care we bring to professional training, we have implemented extensive technical and organizational measures, including:

  • Encrypted data transmission (SSL/TLS)
  • Access restrictions and authentication procedures
  • Regular security audits and system updates
  • Data backup systems and emergency concepts
  • Physical security measures for our IT infrastructure
  • Continuous training and regular training of our team members

8. Storage Duration and Deletion Concept

We store your personal data only as long as necessary for the purposes for which it was collected or as required by legal retention obligations. After these periods expire, your data will be securely and completely deleted or anonymized.

Training data is generally kept for the duration of the professional development relationship plus 7 years to comply with our legal retention obligations. Communication data is usually deleted 3 years after the last contact, unless longer retention is required.

9. Your Rights as a Data Subject

As a data subject, you have the following rights:

  • Right of access to the data stored about you
  • Right to rectification of inaccurate or incomplete data
  • Right to erasure ("right to be forgotten")
  • Right to restriction of processing
  • Right to data portability
  • Right to object to processing
  • Right to withdraw consent given with effect for the future
  • Right to lodge a complaint with the competent supervisory authority

To exercise your rights, please contact us using the contact details provided above.

10. Disclosure of Data to Third Parties

We only disclose your personal data to third parties:

  • To service providers who act on our behalf and under our instructions (processors)
  • To external training partners and professional instructors who are contractually bound to confidentiality
  • If there is a legal obligation to disclose the data
  • If you have explicitly consented

All processors have been carefully selected and are contractually bound to comply with data protection regulations.

11. Privacy Policy Updates

We reserve the right to update this Privacy Policy as needed to adapt it to changed legal situations or changes in our data processing activities. The current version is always available on our website.

We recommend you review this Privacy Policy regularly to stay informed about any changes. For significant changes, we will inform you through appropriate channels.

Last updated: January 2025