Last updated 11 May 2025
This Privacy Policy explains how Chinese‑English Legal Education Limited ("CELE", "we", "us", or "our") collects, uses, discloses, stores and protects your personal information when you use our website https://zh.celetsqe.com, the PASS SQE mobile application, and any related products or services that link to this notice (collectively, the "Services"). It also informs you of your privacy rights and how the law protects you.
Important – please read this Privacy Policy carefully. If you do not agree with any part of it, you should not use the Services.
Data Controller. Chinese‑English Legal Education Limited is the controller and responsible for your personal information. We are registered in England and Wales (company number 14424178) and our registered office is at 61 Bridge Street, Kington, HR5 3DJ, United Kingdom.
If you have any questions about this Privacy Policy or any request to exercise your legal rights, please contact us:
We are registered with the UK Information Commissioner's Office (ICO) under registration number ZB539217.
"Personal data" (or "personal information") means any information that identifies or can be used to identify a living individual. We may collect, use, store and transfer different kinds of personal data, which we group as follows:
We do not intentionally collect any Special Category Data (such as information about your health or ethnicity) or information about criminal convictions and offences. If you choose to provide such information voluntarily, you consent to our processing it as described in this Policy.
We use different methods to collect information from and about you, including through:
We will only use your personal data when the law allows us to. The UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018 require that we identify a "lawful basis". Below is a summary:
| Purpose | Type of data | Legal basis |
|---|---|---|
| Register you as a new user | Identity, Contact | Performance of a contract with you |
| Process and deliver your order, manage subscriptions, take payments | Identity, Contact, Transaction | Performance of a contract; compliance with legal obligations (tax); legitimate interests (to recover debts) |
| Provide and personalise learning content, track progress | Identity, Profile, Usage | Performance of a contract; legitimate interests (to improve our Services) |
| Administer and protect our business, website and App (troubleshooting, data analysis, testing, system maintenance, support, reporting, hosting) | Identity, Contact, Technical | Legitimate interests (for running our business, provision of administration and IT services, network security, to prevent fraud) |
| Deliver relevant website/App content and advertisements, measure or understand the effectiveness of the advertising | Identity, Contact, Profile, Usage, Marketing & Communications, Technical | Consent (for cookies/marketing where required); legitimate interests (to study how customers use our Services, to develop them, to grow our business) |
| Send marketing communications | Identity, Contact, Marketing & Communications | Consent (electronic marketing); legitimate interests (to promote similar products and services) |
We will seek your consent before sending third‑party direct marketing or where required by e‑privacy laws. You can withdraw consent at any time (see Your Rights).
You will receive marketing emails or push notifications from us if you have requested information from us or purchased services and, in each case, you have not opted out of receiving that marketing. You can ask us to stop sending you marketing messages at any time by clicking the unsubscribe link in any email or by contacting us.
We use cookies, SDKs and similar technologies to recognise you and/or your device(s). Some are necessary for the Services to function ("strictly necessary cookies"); others are optional and help us improve performance, analytics and advertising. We will obtain your consent for optional cookies in accordance with the UK Privacy and Electronic Communications Regulations (PECR). For full details, please review our Cookie Policy.
We may share your personal data with the parties set out below for the purposes outlined above:
We require all third parties to respect the security of your personal data and to treat it in accordance with the law. We do not sell your personal data.
Our servers are located in the United Kingdom. However, some of our external service providers are based outside the UK so their processing of your personal data will involve a transfer outside the UK (and, where applicable, the European Economic Area).
Whenever we transfer your personal data out of the UK/EEA, we ensure a similar degree of protection by implementing at least one of the following safeguards:
If you are based in mainland China, you acknowledge that your personal information will be transferred to, and stored on, servers located in the United Kingdom. We rely on your explicit consent for such cross‑border transfers to the extent required by the Chinese Personal Information Protection Law (PIPL).
We have put in place appropriate technical and organisational security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. These include encryption in transit (HTTPS), role‑based access controls, regular backups, penetration testing and staff training.
We will only retain your personal data for as long as reasonably necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, tax, accounting or reporting requirements.
To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal, regulatory, tax, accounting or other requirements.
In general, we keep basic user information (Identity, Contact, Transaction Data) for up to seven years after you cease being a customer for tax and legal purposes but may retain some data for shorter periods where appropriate. Usage Data may be retained in an aggregated, anonymised form beyond this period.
Under the UK GDPR and the Data Protection Act 2018, you have the following rights in relation to your personal data:
These rights are not absolute and certain exemptions may apply. You can exercise your rights by contacting us using the details in Section 1.
You will not have to pay a fee to access your personal data or to exercise any of your other rights. However, we may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive. We may also refuse to comply with your request in these circumstances.
Time limit to respond: We try to respond to all legitimate requests within one month. Occasionally it may take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.
Our Services are not intended for children under the age of 18. We do not knowingly collect personal data from children under 18. If you are a parent or guardian and you are aware that your child has provided us with personal data, please contact us so that we can take necessary action. If we become aware that we have collected personal data from children without verification of parental consent, we take steps to remove that information from our servers.
The Services may include links to third-party websites, plug-ins, and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. When you leave our website or app, we encourage you to read the privacy policy of every website you visit.
We may update this Privacy Policy from time to time in response to changing legal, technical or business developments. When we update our Privacy Policy, we will take appropriate measures to inform you, consistent with the significance of the changes we make. We will obtain your consent to any material Privacy Policy changes if and where this is required by applicable data protection laws.
You can see when this Privacy Policy was last updated by checking the "last updated" date displayed at the top of this Privacy Policy.
If you have any concerns about our use of your personal information, you can make a complaint to us using the contact details in Section 1.
You also have the right to complain to the Information Commissioner's Office (ICO), the UK data protection regulator:
Information Commissioner's Office
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF
Helpline number: 0303 123 1113
Website: https://www.ico.org.uk
If you are based outside the UK, you may have the right to lodge a complaint with your local data protection authority.