On this page

All pages




If you are interested in how Totara Learn has been updated to support GDPR compliance please read our GDPR page and additional supporting collateral in the Totara community site. You can also read about how Totara is a GDPR compliant LMS, as well as learning more about compliance management

Below is a statement for Totara as an organisation:

All of our staff and contractors are familiar with GDPR and their personal responsibilities. 

We have a privacy notice which informs people what we do with their personal data and this is available in the footers of our website and community site.

We operate a robust consent framework for any marketing materials made available via our website.

We have a right to erasure process. If you wish to be erased, please contact us via [email protected].

Where data is transferred outside of the EU, we have the relevant intercompany agreements in place to ensure the protection of this data.

When processing data we undertake the following:

  • The processing is lawful, fair and transparent
  • Transparent about what the data is being used for
  • Data is collected for a specific purpose
  • The data is necessary for the purpose
  • The data is accurate and kept up to date
  • Data is not kept for longer than necessary
  • The data is kept safe and secure

We do not process sensitive information directly or process personal data of minors intentionally.

All storage is secure and our suppliers have GDPR procedures in place.

We have a notification process in place for any breach.