Privacy Policy

Published on 2 August, 2023 | Legal Terms | 401 views | 3 minutes read

Last updated: 10 July 2025

Operated by: GLOBAL DIGITAL IDENTITY LTD – Company No. 16339013 – Companies House UK

1. COMMITMENT TO PRIVACY

1.1 GLOBAL DIGITAL IDENTITY LTD, operator of the .com.rich platform, is committed to protecting the privacy and personal data of its users, in accordance with the United Kingdom General Data Protection Regulation (UK GDPR) and other applicable laws.

1.2 This Privacy Policy describes how we collect, use, store, protect and share your personal data, as well as your rights over such information.

2. DATA WE COLLECT

2.1 We only collect data strictly necessary to provide our services securely, personally and efficiently.

2.2 Data provided directly by the user:

• Full name
• Email address
• Phone number with country code
• Complete postal address
• Country of residence
• Login credentials (username and encrypted password)

2.3 Data collected automatically:

• IP address
• Browser type and version
• Operating system and device type
• Approximate geolocation
• Cookies and session identifiers
• Pages visited and time spent on the platform

2.4 Identity verification data (when applicable):

• Live facial image (biometric liveness test)
• Official identification document (e.g., passport, national ID)
• Technical metadata from submitted documents

3. PURPOSES OF DATA PROCESSING

3.1 We process your data for the following purposes:

• Creation and management of your user account
• Registration and maintenance of your .com.rich domain
• Issuance of invoices, receipts and operational communications
• Technical support and customer service
• Identity verification and authentication
• Analysis of platform usage to improve user experience
• Compliance with legal, regulatory and contractual obligations
• Ensuring the security, authenticity and integrity of the platform

4. LEGAL BASIS FOR PROCESSING

4.1 Data is processed based on the following legal grounds:

• Consent – for optional cookies and communications
• Contract performance – to deliver contracted services
• Legal obligation – for tax and regulatory compliance
• Legitimate interest – for fraud prevention and platform protection

5. DATA STORAGE AND RETENTION

5.1 All data is securely stored using encryption and restricted access.

5.2 Retention periods are based on legal and operational needs:

• Account data – while active and up to 5 years after termination
• Payment data – as required by tax legislation
• Access and browsing logs – up to 12 months
• Identity verification data – during the contract or as required by law

6. DATA SHARING

6.1 We do not sell your personal data.

6.2 We may share data with:

• Payment processors (e.g., Stripe, PayPal, Wise)
• Hosting and technology providers (e.g., Google Cloud)
• Authorised identity verification services
• Legal or regulatory authorities when required by law

6.3 All third parties are contractually required to maintain confidentiality and implement appropriate security measures.

7. INTERNATIONAL DATA TRANSFERS

7.1 Some data may be processed outside the United Kingdom (e.g., in the European Union or the United States).

7.2 Such transfers comply with legally recognised mechanisms, including:

• Adequacy decisions by the UK Information Commissioner’s Office (ICO)
• Standard Contractual Clauses (SCCs)

8. YOUR RIGHTS UNDER UK GDPR

8.1 You have the following rights over your personal data:

• Access the data we hold about you
• Request correction of inaccurate data
• Request deletion of your data (“right to be forgotten”)
• Restrict processing under specific conditions
• Request data portability
• Object to processing based on legitimate interest
• Withdraw consent (where applicable)
• Lodge a complaint with the ICO (UK authority)

8.2 Requests can be submitted to: [email protected]

9. DATA SECURITY

9.1 We apply strict technical and organisational security measures, including:

• Encryption of sensitive data
• Firewall protection and continuous monitoring
• Multi-factor authentication
• Automated backups and secured server environments

10. COOKIES AND TRACKING TECHNOLOGIES

10.1 We use cookies to enhance your browsing experience.

10.2 Types of cookies used:

• Essential – required for basic platform functionality
• Analytics – used to analyse performance and improve services
• Functional – used to remember user preferences
• Marketing – for targeted campaigns (only with your consent)

10.3 You can manage cookies via your browser or our preference panel.

11. POLICY UPDATES

11.1 This policy may be updated at any time to reflect legal or operational changes.

11.2 The latest version will always be available on this page with the date of last revision.

12. DATA CONTACT INFORMATION

12.1 For any questions, requests or complaints regarding data use, contact:

GLOBAL DIGITAL IDENTITY LTD

Email: [email protected]

Address: 71–75 Shelton Street, Covent Garden, London WC2H 9JQ – United Kingdom

Company No. 16339013 – Companies House UK

13. LANGUAGE AND PRECEDENCE

13.1 In the event of any conflict between translations of this policy, the English version shall prevail for all legal purposes, and shall be considered the sole official version before authorities, courts or third parties.