// WDC POLICIES & STANDARDS

Privacy
Policy

This Privacy Policy explains how World Design Council (WDC) collects, uses, stores, shares, and protects your personal information when you use our website, membership services, and WDC Learning platform. It also explains your privacy rights and how the law protects you.

Last Updated: 01/01/2026

We use your personal data to provide, manage, and improve our services. By using our website, membership services, or WDC Learning, you agree to the collection and use of information in accordance with this Privacy Policy.

1. Interpretation and Definitions

1.1 Interpretation

Words with initial capital letters have meanings defined under the following conditions. These definitions apply whether they appear in singular or plural.

1.2 Definitions

For the purposes of this Privacy Policy:

  • “Account” means a unique account created for you to access our services or parts of our services.
  • “Company”, “WDC”, “We”, “Us”, or “Our” refers to World Design Council (WDC).
  • “Country” refers to the United Kingdom.
  • “Cookies” are small files placed on your computer, mobile device, or other device by a website, containing details of your browsing history and preferences.
  • “Device” means any device that can access the service, such as a computer, mobile phone, or tablet.
  • “Personal Data” means any information that relates to an identified or identifiable individual.
    • For the purposes of GDPR, personal data means any information relating to you, such as a name, identification number, location data, online identifier, or one or more factors specific to your identity.
    • For the purposes of CCPA, personal data means information that identifies, relates to, describes, or could reasonably be linked, directly or indirectly, with you.
  • “Service” refers to the WDC website, membership portal, WDC Learning platform, event registration systems, application forms, and digital interfaces provided by WDC.
  • “Service Provider” means any natural or legal person who processes data on behalf of WDC. This includes third-party companies or individuals used to facilitate our services, provide payment processing, analytics, communication, or technical support.
  • “Usage Data” refers to data collected automatically, either generated by the use of the service or from the service infrastructure itself, such as page visits, session duration, and browser activity.
  • “Website” refers to the official WDC website accessible from www.worlddesigncouncil.org.
  • “You” means the individual accessing or using the service, or the company or legal entity on behalf of which such individual is accessing or using the service, as applicable. Under GDPR, you may also be referred to as the Data Subject or User.

2. Data Collection

2.1 Types of Data Collected

2.1.1 Personal Data

While using our services, we may ask you to provide certain personally identifiable information that can be used to contact or identify you. This may include, but is not limited to:

  • Full name
  • Email address
  • Phone number
  • Postal address
  • City, state/province, postal code, & country
  • Date of birth, where required
  • Occupation or professional designation
  • Educational background/work experience
  • Profile photo, portfolio links, or docs
  • Payment and transaction references
  • Membership application details
  • Course enrolment & completion records
  • Usage data

2.1.2 Usage Data

Usage data is collected automatically when using the service. This may include:

  • IP address
  • Browser type and version
  • Device type
  • Pages visited
  • Time and date of visits
  • Time spent on pages
  • Referring URLs
  • Unique device identifiers
  • Diagnostic and performance data

When you access the service through a mobile device, we may also collect:

  • Mobile device type
  • Mobile operating system
  • Mobile browser type
  • Unique mobile device identifiers
  • IP address of the mobile device

2.2 Tracking Technologies and Cookies

We use cookies and similar tracking technologies to track activity on our service and store certain information. These technologies may include cookies, scripts, tags, and web beacons.

2.2.1 Cookies or Browser Cookies

A cookie is a small file placed on your device. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, some parts of the service may not function properly without cookies.

2.2.2 Web Beacons

Certain sections of our service and emails may contain small electronic files known as web beacons, pixel tags, or single-pixel gifs. These help us understand page visits, email opens, and related service performance.

2.2.3 Types of Cookies We Use

Necessary and Essential Cookies

Type: Session Cookies | Administered by: Us

Purpose: These cookies are essential for authentication, account access, fraud prevention, and enabling core website and portal functions.

Cookie Consent Cookies

Type: Persistent Cookies | Administered by: Us

Purpose: These cookies identify whether users have accepted the use of cookies on the website.

Functionality Cookies

Type: Persistent Cookies | Administered by: Us

Purpose: These cookies remember user choices such as login preferences, form progress, and display settings.

Tracking and Performance Cookies

Type: Persistent Cookies | Administered by: Third Parties

Purpose: These cookies help us understand website traffic, measure user engagement, test new features, and improve performance.

Examples: Cookiebot, Google Analytics, Microsoft Clarity.

3. Use of Your Personal Data

WDC may use personal data for the following purposes:

  • To provide and maintain our services
  • To manage your account and membership registration
  • To process course enrolments, event registrations, and learning access
  • To review membership applications and activate certificates, membership IDs, and badges
  • To provide access to WDC Learning and related resources
  • To process transactions and send payment confirmations
  • To communicate with you by email, phone, SMS, or other electronic means where necessary
  • To send newsletters, event invites, learning updates, and promotional information, where permitted by law
  • To respond to your enquiries, requests, and support tickets
  • To personalise your learning, membership, and website experience
  • To analyse usage trends and improve our services, website, and communications
  • To maintain security, detect fraud, and prevent misuse
  • To comply with legal and regulatory obligations
  • To support audits, reporting, accreditation, and internal administration
  • To evaluate business transfers, mergers, restructuring, or similar corporate events

4. Sharing of Your Personal Data

We may share your personal data in the following situations:

4.1 With Service Providers

We may share your information with third-party providers who help us operate our website, manage communications, process payments, deliver learning services, host data, or analyse service usage.

4.2 With Affiliates

We may share information with affiliated organisations, partners, or entities under common control, provided they follow appropriate privacy and confidentiality obligations.

4.3 With Business Partners

We may share information with selected partners to provide events, training, promotions, certifications, or collaborative services relevant to WDC members and learners.

4.4 With Your Consent

We may disclose your personal information for any other purpose with your consent.

4.5 For Business Transfers

Your information may be shared or transferred as part of a merger, acquisition, financing, restructuring, sale of assets, or similar transaction.

4.6 For Legal Reasons

We may disclose information if required by law, regulation, court order, or other valid legal process.

5. Retention of Your Personal Data

We will retain your personal data only for as long as necessary for the purposes described in this Privacy Policy, including to:

  • Provide membership and learning services
  • Maintain records of certifications and credentials
  • Comply with legal, tax, accounting, and regulatory obligations
  • Resolve disputes
  • Enforce agreements and policies
  • Support internal reporting and audit requirements

Standard Retention Period

Up to 3 years from the date of account closure, or earlier where deletion is requested and permitted by law.

Usage data is generally retained for a shorter period unless it is needed for security, functionality improvement, or legal compliance.

6. Transfer of Your Personal Data

Your information may be processed at WDC offices and other locations where our service providers or technology systems operate. This may involve transfers to countries outside your own jurisdiction.

Where personal data is transferred internationally, WDC will take reasonable steps to ensure that appropriate safeguards are in place and that your data is treated securely and in accordance with this Privacy Policy.

By using our service and submitting your information, you agree to this transfer, storage, and processing where applicable.

7. Disclosure of Your Personal Data

7.1 Business Transactions

If WDC is involved in a merger, acquisition, reorganisation, or sale of assets, your personal data may be transferred as part of that transaction. We will provide notice where required.

7.2 Law Enforcement

We may disclose your personal data where required by law or in response to valid requests by public authorities.

7.3 Other Legal Requirements

WDC may disclose your personal data in good faith where necessary to:

  • Comply with legal obligations
  • Protect and defend our rights or property
  • Prevent or investigate possible wrongdoing
  • Protect the safety of users or the public
  • Protect against legal liability

8. Security of Your Personal Data

The security of your personal data is important to us. We use commercially reasonable administrative, technical, and organisational measures to protect your information from unauthorised access, disclosure, alteration, or destruction.

All data submitted through our website, membership forms, and WDC Learning interfaces is processed using secure systems.

However, no method of transmission over the internet or electronic storage is completely secure. While we work hard to protect your information, we cannot guarantee absolute security.

9. Third-Party Processing

Our service providers may have access to your personal data only to perform services on our behalf and are expected to protect it in accordance with applicable privacy laws.

9.1 Analytics

We may use analytics tools to understand user behaviour, website performance, and service improvement needs.

Examples of tools we may use: Google Analytics, Microsoft Clarity.

9.2 Email and Communications

We may use your personal data to send newsletters, learning updates, marketing information, and service-related communications. You may opt out of marketing emails at any time through the unsubscribe link or by contacting us.

Examples of tools we may use: Gmail, Mailchimp, Other approved communication platforms.

9.3 Payments

If we offer paid memberships, courses, events, or services, we may use third-party payment processors.

We do not store or directly collect your full payment card details. Payment information is processed directly by secure payment providers whose use of your information is governed by their own privacy policies.

Examples of payment processors we may use: Stripe, Other PCI-compliant providers.

10. GDPR Privacy Rights

If you are in the UK, EU, or EEA, you may have rights under applicable data protection laws, including GDPR.

10.1 Legal Bases for Processing

We may process your personal data on one or more of the following legal bases:

  • Consent
  • Performance of a contract
  • Compliance with legal obligations
  • Legitimate interests
  • Vital interests
  • Public interest, where applicable

10.2 Your Rights Under GDPR

You may have the right to:

  • Access your personal data
  • Request correction of inaccurate or incomplete data
  • Request erasure of your data
  • Object to certain processing
  • Restrict processing
  • Request data portability
  • Withdraw consent, where processing is based on consent
  • Lodge a complaint with a supervisory authority

10.3 Exercising Your Rights

You may exercise your rights by contacting us using the details provided at the end of this Privacy Policy. We may ask you to verify your identity before responding.

11. California Privacy Rights (CCPA/CPRA)

If you are a California resident, you may have rights under the California Consumer Privacy Act and related laws. These may include the right to:

  • Know what personal information we collect
  • Know the sources of that information
  • Know how we use and disclose it
  • Request deletion of personal information, subject to legal exceptions
  • Request correction of inaccurate personal information
  • Opt out of sale or sharing of personal information, where applicable
  • Not be discriminated against for exercising your privacy rights

11.1 Sale of Personal Information

WDC does not sell personal information for monetary consideration.

11.2 Exercising California Rights

California residents may contact us to submit a verifiable request. We may need to confirm your identity before responding.

12. Children’s Privacy

Our services are not directed to children under the age of 13, and we do not knowingly collect personal data from children under 13 without appropriate consent where required.

If you believe a child has provided us with personal information without proper consent, please contact us so that we can review and remove the information where appropriate.

Where programs are used by school-aged learners, relevant consent and lawful basis requirements should be managed in accordance with applicable law and program structure.

13. Links to Other Websites

Our service may contain links to third-party websites that are not operated by WDC. If you click on a third-party link, you will be directed to that third party’s site.

We strongly advise you to review the privacy policy of every site you visit. WDC has no control over and assumes no responsibility for the content, privacy policies, or practices of third-party sites or services.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we make changes, we will post the updated version on this page and revise the “Last updated” date.

Where appropriate, we may also notify you by email or through a prominent notice on our website or WDC Learning before the changes take effect.

You are encouraged to review this Privacy Policy periodically.

15. Contact Us

If you have any questions about this Privacy Policy, or if you wish to exercise your privacy rights, you can contact us:

World Design Council (WDC)

7 Bell Yard
London, England
WC2A 2JR

Website: www.worlddesigncouncil.org

Email: info@worlddesigncouncil.org

Stay Updated

Join the Global Creative Community

Advance your career. Strengthen your professional standing. Stay future-ready.

Be part of a structured global community advancing standards in design, innovation and governance.

Become a WDC Member Partner with WDC