admin@baecons.co.uk

Last updated: [09.10.2025]
Effective from: [09.10.2025]

1. Introduction

Welcome to Baecons.com (“we”, “us”, “our”, “Baecons”). We are committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you use our website and services, in compliance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

By accessing or using our website (https://baecons.com) or interacting with our services (e.g. applying, contacting us), you accept and consent to the practices described in this policy.

2. Who We Are / Contact Information

Data Controller / Company Name: BA Educational Consultancy Ltd (trading as Baecons)
Registered / Operational Addresses:
• London Office: 23A Tarves Way, Greenwich, London SE10 9JU (baecons.com)
• Manchester Office: 2 Pendlebury Road, Manchester, M27 4AR (baecons.com)
• Lagos, Nigeria Office: Plot 5a, Block A10, Admiralty Way, Lekki Phase 1, Lagos (baecons.com)
Contact Emails / Phones:
• General / administrative: admin@baecons.co.uk (baecons.com)
• Phones: +44 (0) 203 602 5080 (London) (baecons.com),

3. What Personal Data We Collect

We may collect the following categories of personal data from visitors, users, and clients:

Category	When / How Collected	Purpose / Use
Identity & contact information (name, email address, phone number, postal address)	When you fill out contact / “Apply Now” / enquiry forms on the site (baecons.com)	To respond to enquiries, to process your application, to communicate with you
Academic / educational background, course preferences	If you provide them when applying or during counselling / course selection	To assess your profile, recommend courses / institutions, support admission, visa advice, etc.
Payment or financial information	If payments are processed (e.g. for professional courses or training)	To process payments, issue invoices, refunds, and maintain financial records
Technical & usage data (IP address, device identifiers, browser info, operating system, pages visited, referral / click data, time stamps)	Automatically when you browse the website or interact with it	For security, analytics, site performance, fraud detection, and improving user experience
Cookies / tracking data	Via your browser (if you accept cookies) or similar technologies	To personalise content, remember preferences, measure traffic and marketing effectiveness
Other information you voluntarily provide (e.g. messages, feedback, survey responses)	When you write to us, contact us, or fill in forms	To respond to requests, improve services, maintain records of correspondence

4. Lawful Basis for Processing Your Data

We rely on one or more of the following lawful bases for processing your personal data:

Contractual necessity: processing is necessary to fulfil a contract you have with us (e.g. providing course admission services, processing payments).
Consent: for instances where you explicitly agree (e.g. receiving marketing emails, certain cookies).
Legitimate interests: where we have an interest (e.g. improving the site, fraud prevention, analytics) and you would reasonably expect it, provided it doesn’t override your rights.
Legal obligations: to comply with statutory and regulatory obligations (e.g. accounting, tax, reporting)

We will always ensure the processing is proportionate, necessary, and balanced in relation to your rights.

5. How We Use Your Personal Data

We use your data for the following purposes (subject to applicable lawful bases):

To handle enquiries, applications and provide consultancy / admission / visa / course support services
To communicate with you: send confirmations, updates, notices, reminders, customer support
To process payments, issue invoices, manage refunds
To personalise your experience on the website (preferences, content adjustments)
To monitor, analyse and improve site usage and performance
To detect and prevent fraud, misuse, security breaches
To send you marketing communications (if you consent) about courses, training, promotions, events
To comply with legal and regulatory obligations (e.g. record-keeping, audits)
For internal business administration and records

6. Sharing & Disclosure of Your Information

We may share your personal data with the following categories of recipients:

Service providers / processors: those we engage to assist us (e.g. payment gateways, email platforms, hosting, IT, analytics, marketing, CRM tools)
Affiliated or partner institutions: for admissions, course providers, universities or colleges, where needed for your application
Legal / regulatory authorities: where required by law, court order, or for protection/enforcement of rights
Business transfers: in connection with merger, acquisition, sale of business or assets
Aggregated / anonymised data: we may share non-identifiable, aggregated data publicly

We require any third-party processor to abide by contractual obligations and applicable data protection law.

7. International Transfers

Because you and we may be located in different jurisdictions (UK, Nigeria, elsewhere), some data transfers may cross borders. Where we transfer personal data outside the UK or to countries without adequate data protection, we will ensure appropriate safeguards, such as:

Standard Contractual Clauses (SCCs)
Adequacy decisions
Other legal mechanisms approved under UK / EU law

We will inform you, where required, about any such international transfers and your rights regarding them.

8. Data Retention

We will retain your personal data only as long as necessary for the purposes for which it was collected, plus any additional period required by law (e.g. financial, tax, audit requirements).

When the data is no longer needed, we will securely delete, anonymise, or destroy it.

Retention criteria include:

Duration of our relationship (e.g. you remain a client or applicant)
Legal obligations (e.g. accounting or education regulations)
Whether retention is needed to defend or bring legal claims
Whether you have consented to a longer retention

9. Cookies & Tracking Technologies

We use cookies and similar technologies to enhance your experience and for analytics / marketing.

On your first visit, we will display a cookie notice / banner to inform you and ask for consent (where required).
You may manage or block cookies via your browser settings or via a cookie preference panel (if provided).
Some cookies are strictly necessary (e.g. for functioning of forms or session management), while others are optional (e.g. analytics, marketing).
You should publish a Cookie Table / Cookie Policy listing each cookie, its purpose, its duration, and whether it is essential or optional.

10. Your Rights

Under UK GDPR and related law, you have the following rights (subject to limitations):

Right of access: request a copy of your personal data held by us
Right to rectification: request correction of inaccurate or incomplete data
Right to erasure (“right to be forgotten”): request deletion of your data under certain conditions
Right to restrict processing: ask us to limit how we use your data
Right to data portability: request that your data be transmitted to another controller, where technically feasible
Right to object: to processing based on legitimate interests or to direct marketing
Right to withdraw consent: when processing is based on consent, you can withdraw it at any time
Right to lodge complaint: with the UK Information Commissioner’s Office (ICO) or relevant supervisory authority

To exercise any of these rights, contact us using the contact information in Section 2. We aim to respond within statutory time periods (usually one month, may extend by two months in complex cases).

11. Security

We implement appropriate technical and organisational measures to protect your personal data from unauthorized or unlawful processing, accidental loss, damage, or destruction. Examples include:

Encryption (in transit via HTTPS / SSL)
Access controls, authentication, role-based access
Regular security reviews and testing
Backups, firewall, intrusion detection
Internal procedures for staff handling sensitive data

Although we strive to use secure systems, no system is 100% impervious. You should also help by using strong passwords and being cautious with disclosure of your credentials.

12. Children & Minors

Our services are not intended for children under [16] (or appropriate age in your jurisdiction). We do not knowingly collect personal data from minors. If you believe we have collected data from a minor without appropriate consent, please contact us, and we will delete it.

13. Links to Other Websites

Our site may contain links to external websites operated by third parties (e.g. universities, partner services). This Privacy Policy does not apply to those sites. Please check the privacy policies of those third parties when you navigate away from our site.

14. Changes to This Policy

We may update this Privacy Policy from time to time (e.g. because of changes in law, business practices, or data processing). When we do:

We will post the revised policy on our site with a “Last updated” date.
If the changes are significant, we may notify you by email or via a notice on our site.

Your continued use of our services after changes indicates your acceptance of the revised policy.

15. Governing Law & Miscellaneous

This policy is governed by the law of England and Wales (or specify which UK jurisdiction you prefer).
If any provision of this Policy is found to be invalid or unenforceable, the remainder will continue to apply.
Nothing in this policy limits your statutory rights under applicable data protection law.

Contact Us

Email: info@baecons.com | Phone: +44 1234 567890

Offices in London, Manchester, Lagos