Get Certified
Get Certified
Public Policy

Privacy Policy

This privacy policy explains how GCAI collects,uses, stores, protects, and shares personal information.

Document Type

Public Policy

Version

1.0

Effective Date

1 May 2026

Owner

Data Protection Officer

Review Cycle

Annual
Download Process PDF
Contact Team

We are committed to protecting your personal information and your privacy. This policy describes our practices in a clear and transparent way so you can understand how we handle your data.

Overview

This policy applies to all personal data collected by GCAI through our websites, services, communications, and business operations.

Information We Collect

We collect information you provide to us, information about your organization, and data collected automatically when you interact with our services.

How We Use Your Information

We use your information to provide and improve our services, process applications, communicate with you, and meet legal and regulatory obligations.

Legal Basis for Processing

We process your personal data based on consent, contractual necessity, legal obligation, legitimate interests, or to protect vital interests as permitted by applicable law.

Information Sharing & Disclosure

We do not sell your personal data. We may share information with trusted partners, service providers, or authorities where required by law.

Data Retention

We retain personal data only as long as necessary to fulfill the purposes outlined in this policy or as required by law and our record-keeping obligations.

Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, loss, alteration, or disclosure.

Your Rights

You have rights over your personal data, including access, correction, deletion, restriction, objection, portability, and the right to lodge a complaint.

Cookies & Website Analytics

We use cookies and similar technologies to enhance your experience, analyze site usage, and support the performance of our website.

Contact & Complaints

If you have any questions about this policy or how we handle your data, please contact our Data Protection Officer.

On this page

1

Overview

2

Information We Collect

3

How We Use Your Information

4

Legal Basis for Processing

5

Information Sharing & Disclosure

6

Data Retention

7

Data Security

8

Your Rights

9

Cookies & Website Analytics

10

Contact & Complaints

Quick actions

Download PDF
View Claim Guidelines
Contact the Team

Privacy Commitment

Your trust is important to us. We are committed to transparency, privacy by design,
and continuous improvement in the protection of your personal information.

  • Permitted Use
  • Access: Request a copy of your personal data.
  • Rectification: Ask us to correct inaccurate information.
  • Erasure: Request deletion of your personal data.
  • Restriction: Ask us to limit how we use your data.
  • Objection: Object to processing based on legitimate interests.
  • Data Portability: Receive your data in a structured format.
  • Complaint: Lodge a complaint with our DPO or a supervisory authority.
  • How We Protect Data
  • Encryption of data in transit and at rest.
  • Role-based access with least privilege.
  • Regular security monitoring and vulnerability assessments.
  • Retention controls and secure deletion practices.
  • Due diligence and security requirements for third parties.

Related pages

Certification Rules & Guidelines

How we make claims about certification.

Logo Usage Policy

Guidelines for using the GCAI Mark.

Complaints & Appeals Policy

How we handle complaints and appeals fairly.

Verify Certificate

Check the validity and status of a certificate.

Scroll to Top