Your data protection rights under the General Data Protection Regulation
Galio Inurb is committed to protecting the privacy and security of personal data in accordance with the General Data Protection Regulation (GDPR). This page outlines how we comply with GDPR requirements and explains your rights as a data subject.
Galio Inurb acts as the data controller for personal information collected through our website and educational services. Our contact details are:
Galio Inurb
71 Robinson Road, #14-01 Robinson Centre
Singapore 068895
Email: [email protected]
We process personal data under the following lawful bases:
As a data subject, you have the following rights:
You have the right to request copies of your personal data. We may charge a small fee for this service if the request is excessive or repetitive.
You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.
You have the right to request that we erase your personal data under certain conditions, such as when the data is no longer necessary for the purpose it was collected.
You have the right to request that we restrict the processing of your personal data under certain conditions, such as when you contest the accuracy of the data.
You have the right to object to our processing of your personal data under certain conditions, particularly for direct marketing purposes.
You have the right to request that we transfer the data we have collected to another organization, or directly to you, under certain conditions.
Where we rely on your consent to process your personal data, you have the right to withdraw that consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
To exercise any of these rights, please submit a request to our Data Protection Officer at [email protected]. We will respond to your request within one month. In complex cases or when handling multiple requests, we may extend this period by two additional months.
To verify your identity and protect your personal data, we may request additional information before processing your request.
When we transfer personal data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as:
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including satisfying legal, accounting, or reporting requirements. Student records are typically retained for seven years after course completion to support certification verification and transcript requests.
We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including:
In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours of becoming aware of the breach. If the breach is likely to result in a high risk to you, we will also notify you directly.
We do not use automated decision-making, including profiling, in a way that produces legal effects or similarly significantly affects you.
If you believe we have not handled your personal data appropriately, you have the right to lodge a complaint with a supervisory authority. For EU residents, this is typically the data protection authority in your country of residence.
We may update this GDPR compliance notice from time to time. Any changes will be posted on this page with an updated revision date.
For any questions regarding GDPR compliance or to exercise your rights, please contact:
Data Protection Officer
Galio Inurb
Email: [email protected]