Back to Home

Privacy Policy

GRC-Enterprise (“we”, “us”, or “our”) is fully committed to robust data privacy, operational integrity, and compliance with the world’s leading regulatory frameworks. We maintain strict internal controls and routinely review our policies in consultation with legal counsel and compliance advisors.

Compliance Frameworks

Our data handling and privacy practices are structured to align with the General Data Protection Regulation (GDPR), applicable Cambodian laws, and industry standards for information security. Our compliance is overseen by our internal legal and compliance team.

Information We Collect

We collect information you voluntarily provide via our website, contact forms, or email, including your name, email address, organization, and any relevant business or project details you choose to submit.

How We Use and Safeguard Your Information

• To respond to your inquiry or request with senior-level oversight
• To provide information or services as requested by you or your organization
• To comply with legal, regulatory, and audit obligations
• To monitor, audit, and improve the integrity of our compliance and information security programs

Security, Access, and Data Integrity

All submissions and data transmissions are encrypted using secure (SSL/TLS) protocols. Access to personal or business information is restricted to authorized GRC-Enterprise executives, legal staff, and compliance personnel. Data is stored on secure servers and reviewed periodically for accuracy and integrity. We employ technical, administrative, and procedural safeguards to prevent unauthorized access, loss, or misuse of your data.

Data Retention and Deletion

Information is retained only as long as necessary to fulfill the purpose for which it was collected, or as required by law, regulation, or audit procedures. You may request deletion or correction of your data at any time by contacting us directly.

Audit, Review, and Incident Response

Our privacy and data handling processes are subject to regular internal review and audit by our compliance team. In the unlikely event of a data breach or incident, we follow established notification and remediation protocols, and will inform affected parties as required by law.

Your Rights

You have the right to request access to your information, correct inaccuracies, or request deletion. Please direct all such requests to our compliance contact below.

Contact & Compliance Team

For privacy-related questions or to exercise your rights, please contact our compliance team at compliance@grc-enterprise.com. You may also contact our legal counsel at legal@grc-enterprise.com.

Last updated: July 2025