top of page

PRIVACY POLICY

1. Introduction

GCII values your privacy and is committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your data when you visit our website (www.gcii.one) or engage with our services. We comply with applicable data protection laws, including the General Data Protection Regulation (GDPR).

2. Legal Basis for Data Processing (GDPR Compliance)

Under GDPR, we process your personal data under the following legal bases:

  • Legitimate interest: To improve our services, security, and user experience.

  • Contractual necessity: To process transactions, memberships, and services requested by users.

  • Consent: Where required, we will obtain explicit consent before processing your personal data (e.g., for marketing communications).

  • Legal obligation: To comply with applicable legal and regulatory requirements.

3. Information We Collect

We collect the following types of information:

  • Personal Information: Name, email address, phone number, company details, and payment information when you register for membership, events, or newsletters.

  • Usage Data: IP address, browser type, operating system, website activity, and interaction data.

  • Cookies and Tracking Technologies: We use cookies to enhance user experience, analyze traffic, and personalize content (see our Cookie Policy for more details).

4. How We Use Your Information

We use your data to:

  • Provide and improve our services.

  • Process transactions, memberships, and event registrations.

  • Send updates, newsletters, and promotional materials (with your consent).

  • Enhance website security and user experience.

  • Comply with legal obligations and prevent fraud.

5. Your Rights Under GDPR

As per GDPR, you have the following rights:

  • Right to Access: Request a copy of your personal data.

  • Right to Rectification: Correct any inaccurate or incomplete data.

  • Right to Erasure (Right to be Forgotten): Request deletion of your personal data (subject to legal retention requirements).

  • Right to Restrict Processing: Request restriction of your data processing in certain cases.

  • Right to Data Portability: Receive your personal data in a structured, commonly used format.

  • Right to Object: Object to processing based on legitimate interest or direct marketing.

  • Right to Withdraw Consent: Withdraw your consent at any time for data processing based on consent.

  • Right to Lodge a Complaint: File a complaint with your local data protection authority.

To exercise these rights, contact us at connect@gcii.one.

6. Data Retention Policy

We retain your personal data only as long as necessary for the purposes outlined in this policy or as required by law. Retention periods include:

  • Membership data: Retained for the duration of your membership + 2 years.

  • Transactional data: Retained for 7 years for accounting and legal purposes.

  • Marketing data: Retained until you withdraw consent.

Once retention periods expire, data is securely deleted or anonymized.

7. International Data Transfers

If you are located in the EU/EEA, your personal data may be transferred outside of the EU (e.g., to India). We ensure adequate safeguards are in place, including:

  • Standard Contractual Clauses (SCCs) as approved by the European Commission.

  • Data Processing Agreements (DPAs) with service providers ensuring GDPR compliance.

  • Adequacy decisions where applicable.

8. Data Security Measures

We implement robust security measures to protect your personal data, including:

  • Encryption of sensitive data.

  • Secure storage and restricted access controls.

  • Regular security assessments and compliance checks.

However, while we strive for security, no system is 100% secure, and users should take necessary precautions.

9. Data Breach Notification

In case of a personal data breach, we will:

  • Notify affected individuals if the breach poses a risk to their rights and freedoms.

  • Report the breach to relevant authorities within 72 hours, as per GDPR requirements.

10. Third Party Links and Data Sharing

  • We do not sell or rent your data to third parties.

  • We may share your data with trusted service providers for processing payments, analytics, and IT support under strict Data Processing Agreements (DPAs).

  • Our website may contain links to third-party websites. GCII is not responsible for their privacy practices.

11. Data Protection Officer (DPO) and Contact Information

  • If you have questions or concerns about data privacy, you may contact our Data Protection Officer (DPO):

  • Email: dpo@gcii.one
    Phone: +91 98318 50000
    Website: www.gcii.one

  • Supervisory Authority Contact: If you are in the EU, you may contact your local Data Protection Authority (DPA) for any complaints related to our handling of your data.

12. Changes to This Privacy Policy

GCII reserves the right to update this policy at any time. We will notify users via email or website announcements before any significant changes take effect.

bottom of page