Privacy Policy
Privacy Policy
Effective Date: 01st April 2026
The Institute of Chartered Professional Managers of Sri Lanka (“CPM Sri Lanka”, “we”, “our”, or “us”) is committed to protecting the privacy and security of personal information of our members, students, partners, and website users. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you interact with us through our website, Learning Management System (LMS), Membership Database and CPD System, and related services.
1. Information We Collect
We may collect and process the following categories of personal information:
1.1 Personal Identification Information
-
-
-
- Full name
- National Identity Card (NIC) / Passport details
- Date of birth
- Gender (where applicable)
-
-
1.2 Contact Information
-
-
-
- Residential or mailing address
- Email address
- Telephone numbers
-
-
1.3 Professional and Academic Information
-
-
-
- Employment details
- Educational qualifications
- Professional membership
- Career history
-
-
1.4 Financial Information
-
-
-
- Payment details related to course fees, membership fees, and event registrations
-
-
1.5 Technical Data
-
-
-
- IP address
- Browser type and version
- Device information
- Website usage data (via cookies and analytics tools)
-
-
1.6 Learning Management System (LMS) Data
When you access our LMS, we may collect:
-
-
-
- Login credentials and authentication data
- Course enrolment and participation records
- Assessment results, grades, and feedback
- Learning progress, completion status, and certifications
- Interaction data (discussion forums, submissions, attendance in virtual sessions)
-
-
2. How We Use Your Information
We use the information collected for the following purposes:
-
- To process membership registrations and maintain member records
- To administer academic and professional programmes
- To deliver and manage LMS-based learning and assessments
- To facilitate training, workshops, conferences, and events
- To process payments and issue receipts
- To communicate important updates, announcements, and notices
- To improve our website, LMS, and overall user experience
- To comply with legal and regulatory obligations in Sri Lanka
3. Membership Lifecycle Data Handling
As a professional body, CPM Sri Lanka maintains records throughout the membership lifecycle, including:
-
- Application Stage: Collection of personal, academic, and professional information for eligibility assessment
- Active Membership: Ongoing record management including CPD (Continuous Professional Development), participation in events, certifications, and professional status updates
- Upgrades and Progression: Tracking advancement across qualification levels (e.g., Certificate to Chartered status)
- Renewals and Compliance: Monitoring membership renewals, subscriptions, and compliance with professional standards
- Post-Membership / Alumni: Retention of limited data for historical records, certification verification, and alumni engagement
All such data is handled with strict confidentiality and in line with regulatory and professional requirements.
4. Sharing and Disclosure of Information
We do not sell or rent personal information. However, we may share information in the following circumstances:
-
- With regulatory authorities or government institutions when required by law
- With academic or professional partners for programme delivery
- With LMS providers, IT service providers, and payment processors under strict confidentiality obligations
- Within CPM Sri Lanka for administrative and operational purposes
5. Marketing Communications, Consent, and Opt-Out
CPM Sri Lanka may use your contact details to share:
-
- Programme information and new course offerings
- Events, conferences, and workshops
- Membership updates and professional opportunities
- Newsletters and institutional announcements
Where required, such communications will be sent based on your consent.
You have the right to:
-
- Opt out of receiving marketing communications at any time
- Unsubscribe using the link provided in emails or by contacting us directly
Please note that service-related communications (e.g., enrolment confirmations, payment receipts, regulatory notices) will continue to be sent as they are essential.
6. Data Security
We implement appropriate technical and organizational measures to safeguard personal data against unauthorized access, loss, misuse, or disclosure, including within our LMS and digital platforms.
While we strive to protect your information, no method of transmission over the internet is completely secure.
7. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes outlined in this policy, including:
-
- Academic and certification record retention
- Membership history and verification
- Legal, regulatory, and audit requirements
8. Your Rights
You have the right to:
-
- Access your personal data
- Request corrections to inaccurate or incomplete information
- Request deletion of your data, subject to legal and professional obligations
- Withdraw consent for marketing communications
Requests can be made by contacting us using the details below.
9. Cookies and Website Usage
Our website may use cookies and similar technologies to enhance user experience and analyze website traffic. You may choose to disable cookies through your browser settings.
10. Third-Party Links
Our website and LMS may contain links to third-party websites. CPM Sri Lanka is not responsible for the privacy practices of such external sites.
11. Updates to This Policy
We may update this Privacy Policy from time to time. Any changes will be published on this page with the updated effective date.
12. Data Protection Officer (DPO)
CPM Sri Lanka has designated a Data Protection Officer (DPO) to oversee data protection, privacy compliance, and the secure handling of personal information across all its operations, including its website and Learning Management System (LMS).
The DPO is responsible for:
-
- Monitoring compliance with applicable data protection laws and internal policies
- Advising on data protection obligations and best practices
- Handling data protection-related inquiries, requests, and complaints
- Ensuring the secure processing and storage of personal data
If you have any questions, concerns, or requests regarding your personal data or this Privacy Policy, you may contact the Data Protection Officer at:
Data Protection Officer (DPO)
The Institute of Chartered Professional Managers of Sri Lanka (CPM Sri Lanka)
No. 11, Melbourne Avenue, Colombo 04, Sri Lanka.
+94 112 590 995
13. Contact Us
If you have any questions or concerns regarding this Privacy Policy or your personal data, please contact:
The Institute of Chartered Professional Managers of Sri Lanka (CPM Sri Lanka)
No. 11, Melbourne Avenue, Colombo 04, Sri Lanka.
+94 112 590 995
