Global ISO Certification for Modern Business

Information We Collect

We collect information you provide directly to us, including: - Company and contact information (name, email, company name) - **Identity Verification Documents (Government ID, Business Registration)** where required for KYC/AML compliance - Documentation submitted for certification evaluation - Payment information (processed securely by third-party providers) - Communication records (emails, support tickets) Automatically Collected Data We may automatically collect device and usage data (e.g., IP address, browser type, operating system, pages visited, time on site) using cookies or similar technologies. See our Cookies Policy.

How We Use Your Information (Purposes & Legal Bases)

We use collected information to: - Process your certification applications - Communicate about your application status - Improve our services and customer experience - Comply with legal obligations - Prevent fraud and ensure security GDPR/UK GDPR Legal Bases: contract performance; legitimate interests (service improvement, security, anti-fraud); legal obligation (e.g., tax/accounting); and consent (e.g., marketing/advertising cookies) where required.

Information Sharing (Processors & Partners)

We do not sell your personal information. We may share information with: - International Evaluation and Certification Center (IECC) for oversight, where applicable - Payment processors/financial partners to complete transactions (e.g., Creem, PayPal, banking partners, cryptocurrency processors) - Analytics/advertising partners (e.g., Google Analytics/Ads, Meta) subject to consent where required - Legal authorities when required by law

Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction.

Data Retention

We retain your information for as long as necessary to provide services and comply with legal obligations. Certificate records are maintained for audit purposes. Indicative periods (subject to business/legal needs): application/account data up to 7 years; payment records per tax/accounting laws; analytics data per vendor defaults or shorter per your settings.

Your Rights

You have the right to: - Access your personal data - Correct inaccurate information - Request deletion of your data (subject to legal requirements) - Object to data processing - Withdraw consent at any time CCPA/CPRA (California) Rights: right to know/access, correction, deletion, portability, limit use of sensitive data, and right to opt out of sale/share for cross-context behavioral advertising. We do not sell personal data for monetary consideration. To exercise rights or submit a Do Not Sell/Share request, email [email protected]. We honor Global Privacy Control (GPC) where applicable.

Cookies & Ad Technologies

We use cookies to improve your browsing experience. See our Cookies Policy for categories and management. Analytics/advertising technologies (e.g., GA4, Meta Pixel) only load with your consent where required.

International Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place (e.g., Standard Contractual Clauses for EU/UK transfers) or other lawful mechanisms.

Children's Privacy

Our services are not directed to individuals under 18. We do not knowingly collect personal information from children.

Changes to Privacy Policy

We may update this policy from time to time. We will notify you of material changes via email or website notification.

Contact

Questions? Contact us at [email protected].