top of page

Privacy Policy

This Privacy Policy explains how DTMK Limited uses and protects your personal information.

 

Contents

  • Data controller and contact details

  • What information we collect, use, and why

  • Lawful bases and your data protection rights

  • Where we get personal information from

  • How long we keep information

  • CCTV, dashcam, and video recording

  • Who we share information with

  • Marketing communications

  • Automated decision making

  • International data transfers

  • How to complain

  • Policy review

Data controller and contact details

DTMK Limited is the data controller responsible for your personal data.

Responsible person: Christopher Cook, Managing Director

Company details:
DTMK Limited
Company registration number: 15882526

Registered office address:
DTMK Limited
Unit 7, Ryland Mews
Lake Street
Leighton Buzzard
Bedfordshire
LU7 1SP

Contact details:
Email: enquiries@dtmk.co.uk
Telephone: 01908 112111

DTMK Limited trades under two business names:

  • DTMK Training Services, delivering regulated qualifications and family and community-based training

  • DTMK Driving School, delivering learner driver tuition, advanced driver training, and related driving services

What information we collect, use, and why

We may collect or use the following personal information to provide our services and goods:

  • Names and contact details

  • Addresses

  • Date of birth

  • Purchase or account history

  • Payment details, including card or bank information for transfers or direct debits

  • Health information, such as dietary needs, allergies, or relevant health conditions

  • Photographs or video recordings

  • Records of meetings and decisions

  • Identification documents

  • Enquiry records and correspondence, including emails, messages, and attachments

  • Telephone numbers, call records, and message history, where used for business communication

  • Reviews, testimonials, feedback, compliments, or complaints that may identify an individual

We also collect and use information for the following purposes:

  • Operation of accounts and service delivery: names, addresses, contact details, payment information, service history, and correspondence

  • Service updates and administration: booking confirmations, reminders, and essential service communications

  • Marketing communications: names, contact details, marketing preferences, mailing list records, and consent records

  • Legal and regulatory compliance: names, contact details, identification documents, and correspondence

  • Queries, complaints, or claims: names, addresses, contact details, service history, enquiry records, correspondence, dashcam or CCTV footage, witness statements, investigation records, financial transactions, and related communications

Lawful bases and your data protection rights

Under UK data protection law, we must have a lawful basis for processing your personal data. Depending on the activity, this may include:

  • Contract: where processing is necessary to deliver driving lessons, training, assessments, or related services

  • Legal obligation: where we are required to process data to comply with the law or regulatory requirements

  • Legitimate interests: where processing is necessary for the safe and effective operation of our services, including quality assurance, incident investigation, safeguarding, and protection against allegations

  • Consent: where you have given clear permission, such as for marketing communications or the provision of health information

Where we process special category data, such as health information, this is done with your explicit consent, or where necessary to protect vital interests.

You have the right to:

  • Access your personal data

  • Request rectification of inaccurate data

  • Request erasure where applicable

  • Restrict processing

  • Object to processing

  • Data portability

  • Withdraw consent at any time, where consent is the lawful basis

Requests will normally be acknowledged within five working days and completed within one month. We may need to verify your identity before processing a request.

Where we get personal information from

We collect personal information from the following sources:

  • Directly from you

  • Parents or guardians where the individual is under 18

  • Website forms and mailing list sign up via our website

  • CCTV or dashcam systems

  • Insurance companies

  • Awarding Organisations or regulatory bodies where applicable

We process children’s personal data only where necessary for training, safeguarding, or legal purposes, and with appropriate protections in place.

How long we keep information

We only keep personal data for as long as necessary for the purpose it was collected. Retention periods follow our Data Retention Schedule (Appendix A).

As a guide:

  • Learner registration records: 6 years

  • Assessment and IQA records: 5 years, or longer if required by an Awarding Organisation

  • Complaints, appeals, and malpractice records: 5 years

  • Certification records: 6 years

  • Safeguarding records: until the individual reaches age 25, or longer if a case remains active

  • Employment records: 6 years after leaving

  • Financial and contractual records: 6 years

  • Health and safety records: 3 years, or longer if linked to a serious incident

  • Marketing data: until consent is withdrawn, or 2 years from last contact

Where different retention periods apply, the longest period will be used.

Data is stored securely on internal systems, encrypted storage, and through third party systems including the Total Drive App and Wix. Further information is available in the relevant provider privacy policies.

CCTV, dashcam, and video recording

CCTV and dashcam systems are used to enhance the delivery of driving lessons and may be referred to for learning, incident review, or quality purposes.

CCTV is also in place to protect both instructors and customers in the event of an allegation or dispute.

Dashcam footage is retained for a maximum of 31 days, unless it is required as part of an insurance claim or legal process.

Occasionally, video recordings may be taken during classroom training scenarios for the purpose of remote Quality Assurance. In these cases, recordings are shared electronically only with authorised employees of DTMK Limited or the verification team of an Ofqual Approved Awarding Organisation. Recordings are not used for marketing purposes unless separate consent has been obtained.

Who we share information with

We may share personal information with:

  • Insurance companies

  • Professional or legal advisors

  • Organisations we are legally required to share information with

  • Awarding Organisations, for registration, assessment, moderation, or certification purposes

  • Software and system providers acting as data processors, including website, booking, accounting, and training management systems

We only share information where necessary and ensure appropriate safeguards are in place.

Marketing communications

We may contact you with marketing information about our services where you have consented or where permitted by law. Marketing communications may be sent by:

  • Email, including via mailing lists managed through our website

  • Post

SMS and WhatsApp are used only for service-related communications such as bookings, reminders, or updates, and are not used for direct marketing.

We may also advertise roles or services via third party platforms such as LinkedIn. These platforms operate under their own privacy policies.

You can withdraw marketing consent at any time by contacting us or using the unsubscribe options provided.

Automated decision making

DTMK Limited does not use automated decision making or profiling that produces legal or similarly significant effects on individuals. All decisions relating to services, training, recruitment, complaints, or disclosures involve human judgement.

International data transfers

Personal data is primarily processed within the United Kingdom. Where third party service providers process data outside the UK, appropriate safeguards are in place to ensure an adequate level of protection in accordance with UK data protection law.

How to complain

If you have concerns about how your personal data is handled, you can contact us at:
enquiries@dtmk.co.uk

If your concern cannot be resolved, you have the right to complain to the Information Commissioner’s Office (ICO):

Information Commissioner’s Office
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF

Helpline: 0303 123 1113
Website: www.ico.org.uk make a complaint

Policy review

  • Last reviewed: February 2026

  • Next review due: 28 February 2027

  • Responsible person: Christopher Cook, Managing Director

  • Contact email: enquiries@dtmk.co.uk

bottom of page