Privacy Policy
INTRODUCTION
GAHL Services Limited (“GUS”, “we”, “us” or “our”) respects your privacy and we are committed to protecting your personal data.
This Privacy Policy describes how we collect and process your personal data when you visit or use https://www.globaluniversitysystems.com/ (our “Website”), as well as when you register an account with us, when you contact us or interact with us online or via telephone.
This Website is not intended for children and we do not knowingly collect data relating to children on this Website.
IMPORTANT INFORMATION AND WHO WE ARE
DATA CONTROLLER
For the purposes of data protection laws, we are the “controller” of the processing of your personal data. This means that we decide why and how your personal information is processed. It also means that we are responsible to you under the law for that processing.
GAHL Services Limited is a company registered in England and Wales under company number 13390120 and registered office at 30 Holborn, Buchanan House, London, England, EC1N 2HS. GAHL Services Limited is registered with the Information Commissioner’s Office (ICO) with registration number ZB380080. Notification details can be accessed by searching the Data Protection Public Register.
We are part of a group of companies made up of different legal entities, details of which can be found here https://www.globaluniversitysystems.com/our-network
We have appointed a data protection officer (DPO) who is responsible for overseeing questions in relation to this privacy notice. If you have any questions about this privacy notice, including any requests to exercise your legal rights, please contact the DPO using the details set out below.
CONTACT DETAILS
FAO Data Protection Officer
Email address: dataprotection@gus.global
Postal address: Legal Department, 30 Holborn, London, EC1N 2LX,
Telephone number: + 44 (0) 20 3435 4455
CHANGES TO THE PRIVACY NOTICE AND YOUR DUTY TO INFORM US OF CHANGES
This version was last updated 11 March 2025 and historic versions can be obtained by contacting us.
We may from time to time change the detail in this notice. Any changes we may make in the future will be posted on this page. Please check back frequently to see any such updates or changes.
It is important that the personal data we hold about you is accurate and current. Please keep us informed if your personal data changes during your relationship with us.
THIRD-PARTY LINKS
This Website may include links to third-party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. When you leave our Website, we encourage you to read the privacy notice of every website you visit.
TYPES OF PERSONAL INFORMATION WE COLLECT
When you visit our Website, we collect, use and store different types of personal information about you, which we have grouped together as follows:
| Types of Personal Information | Description |
|---|---|
| Identity and Contact Data | Name, title, date of birth, address, type of address (e.g. home, second home, work), email address and telephone numbers |
| Transaction Data | Bank account and payment card data, details about payments to and from you, other details of products and services purchased from us |
| Account Data | Your username and password, your interests, preferences and any feedback/survey responses |
| Voice Data | Your voice from call recordings when you contact our Customer Services team by phone. |
| Publicly Available Data | Details about you that are publicly available, such as on Companies House or elsewhere on the internet. |
| Marketing Data | Details about your preferences in receiving marketing communications from us |
| Consents Data | Any permissions, consents or preferences that you give us |
| Usage Data | Information about how you use our Website, products and services, including usage reports, call summaries and field reports when you contact us by phone and generated by our service provider (see below for further details). |
| Technical Data | IP address, login data, browser type, time zone setting and location, browser plug-in types, operating systems, device ID and other technology on your device. |
How we use your information
Cookies
Our Website uses cookies. For more information on our cookies use, please read our cookies statement on our Website.
Generally
The table below outlines how we use your personal information and our reasons. Where these reasons include legitimate interests, we explain what these legitimate interests are.
| What we use information for | Description | Our legal basis |
|---|---|---|
| To operate our business, we use: Identity and Contact Data Transaction Data Account Data Voice Data Publicly Available Data Usage Data Technical Data | We use your personal data to ensure we can run our business, by enabling you to create an account, browse our Website, use our services, and so that we can provide and maintain our Website’s functionality. We will also use such personal data to (a) hold events, such as seminars, webinars, open days or corporate hospitality to promote our business and its services, and (b) operate and develop our alumni network and the activities of our alumni programme, if you opt into either. We also use your personal data where it is necessary to verify your identity and to satisfy legal or regulatory requirements to which we are subject. Further, we use your personal data in order to exercise and protect our legal rights. For example, to detect, prevent and respond to: (i) fraudulent activity and claims, such as creation of new accounts by banned users; (ii) intellectual property infringement claims; or (iii) violations of law or our terms. | Legitimate interest to operate our business in an efficient, safe and lawful way and protect it from unlawful activity. In some cases, we are under a legal obligation (whether by a regulatory authority or a court order) to conduct certain checks and disclose personal data. |
| To provide you with information you may ask for, we use: Identity and Contact Data Account Data Transaction Data | We may use your personal data when we communicate with you, for example, if you contact us with questions about any products, services or our business in general. | Consent Legitimate interests to fulfil enquires you might make of us so that we are able to respond to your queries in an appropriate and personalised way and also assist you with your experience with us. |
| To allow you to register for updates or for notifications of blog posts on our Website, or to allow you to register for events that we may be hosting, we use: Identity and Contact Data Account Data Marketing Data Consents Data | We use your personal data to better understand your preferences and to personalise the messages we send to you. This includes sending you information by email and/or post about our products and services, as well as news or events that may be of interest to you. | Consent |
| To allow you to register as a member of our alumni network, we use: Identity and Contact Data Account Data Marketing Data Consents Data | We use your personal data to better understand your preferences to join our alumni network. This includes sending you information by email and/or post about our alumni network. | Consent |
| To improve, administer and protect our business and this Website (including troubleshooting, data analysis, testing, system maintenance, support, reporting and hosting of data), we use: Identity and Contact Data Account Data Usage Data Technical Data | We analyse data about your use of and feedback on our Website, products and services to provide an improved customer experience. We may use your personal data for product testing and development, as well as site analytics and infrastructure monitoring. We may also use the usage reports, call summaries and field reports when you contact us by phone via our service provider, who provides an efficient AI inbound and outbound call service. | Legitimate interests: To provide efficient client care and services To ensure that our technology operates efficiently and without error To develop new products and services and improve existing ones |
| To manage our relationship with you which will include notifying you about changes to our privacy notice and our Website terms and conditions, we use: Identity and Contact Data Account Data Transaction Data Consents Data | We may use your personal data when we communicate with you, for example, if we are providing information about changes to our services or our relationship. | Legitimate interests: To provide efficient client care and services To keep you updated about changes in the legal terms that apply to the use of our Website For record keeping and firm management Contract performance |
| To manage the systems that contain our marketing database, and to manage marketing preferences and keep our records up to date, we use: Marketing Data Consents Data Usage Data Technical Data | For data management for marketing and business development purposes. | Legitimate interests: To improve our systems and services, and to manage marketing preferences To seek feedback |
| Sharing information with third parties, we use: Usage Data Technical Data | To facilitate data-gathering to improve our educational services, our Website, and our marketing efforts. | To improve our marketing strategy and the services that we provide |
WHERE WE COLLECT YOUR PERSONAL INFORMATION FROM
We may collect personal information about you from the following sources:
Directly from you when you visit our Website or subscribe to our marketing via our mailing list or when you otherwise interact with us online
From data we generate about you during our relationship with you, such as data collected from cookies and other similar technologies – see our cookie policy which can be accessed from our Website
Other sources, such as our third party sub-contractors like analytics providers, such as Google Analytics.
WHO WE SHARE YOUR INFORMATION WITH
We share your personal data with our service providers, business partners and other organisations. We may share your personal information with the following third parties:
Our agents and service providers who we use to help us with marketing.
Service providers that help us monitor and analyse Website traffic, including Google Analytics.
Professional service providers, such as messaging services, telephony providers, website hosts and IT software providers who help us run our business. This includes our service provider who provide the automated AI services for phone calls that you make to us and provide the Usage Data detailed above to us.
Event organisers (if we are organising an external event which you are attending)
The police, other law enforcement agencies, courts, government authorities or other third parties where we believe it is necessary to comply with a legal or regulatory obligation, or otherwise to protect our rights or the rights of a third party
Relevant regulators, including the Information Commissioner’s Office in the event of a personal data breach
Other companies within our group of companies. We may share your personal data with such companies for the purposes of security, optimisation of our products and services, as well as internal reporting.
Potential or actual purchasers of any part of our business or assets, or advisors and other third parties in the context of a possible transfer or restructuring of our business.
Further details about the specific third parties we engage can be provided on request.
We also share information (including your name, email address, telephone number) with GLS Global Services GmbH, an entity in our group, in relation to our service provider who provides the automated AI services for phone calls detailed above. GLS Global Services GmbH is a company registered in Switzerland registered with Tax ID number CHE-471.674.898 and registered address at Baarerstrasse 38, 6300 Zug, Switzerland.
HOW LONG WE KEEP YOUR PERSONAL INFORMATION
We take steps to ensure that the personal data that you provide is retained for only as long as it is necessary for the purpose for which it was collected. Where we have collected the personal data based on your consent (e.g for marketing purposes) and we have no other lawful basis to continue with that , if you subsequently withdraw your consent then we will delete your personal data. We may also keep a record of correspondence with you (for example if you have made a complaint) for as long as is necessary to protect us from a legal claim.
Where you withdraw your consent to receiving marketing materials or otherwise ask us to stop marketing we will add your details to a suppression list which ensures that we remember not to contact you again.
For further information as to how to withdraw your consent or to ask us to stop other marketing activities see below.
If you withdraw your consent to receiving marketing materials or ask us to stop our marketing activities, we will still communicate with you for other purposes in the normal course of any other relationship we may have with you.
INTERNATIONAL TRANSFERS
As a global company, we hold some personal information concerning our suppliers and their affairs within the United Kingdom. We do work with agents and service providers who may process your personal information on our behalf outside the UK. If your information is processed outside the UK, we will ensure that it is protected to the same standards as if it were being processed within the UK by putting in place a contract with our agents and service providers that provides adequate safeguards, such as Standard Contractual Clauses or equivalent measures.
If you require more information or have any queries, please contact our Data Protection Officer at: dataprotection@gus.global
YOUR RIGHTS
You have certain rights in relation to your personal data. These include: the right to object to the processing of your data for certain purposes, the right to access your personal data, and the ability to erase, restrict or receive a machine-readable copy of your personal data.
Where you have provided your consent to any use of your personal data, you can withdraw this consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal. We will handle any request to exercise your rights in accordance with applicable law and any relevant legal exemptions. If you wish to exercise any of these rights please contact us using the contact details above.
You have the right to make a complaint at any time to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk) and a list of the EU DPA’s can be found here. We consider that the ICO would also be the lead supervisory authority for GUS since the UK is the place of the majority of our operations. For data protection issues in other countries, you have the right to complain at any time to the supervisory authority for that country.
We would always prefer that you come to us to help address any concerns of a privacy nature however before you go to the ICO or other applicable supervisory authority, so please contact us in the first instance.
GLOSSARY
LAWFUL BASIS
Legitimate Interest means the interest of our business in conducting and managing our business to enable us to give you the best service/product and the best and most secure experience. We make sure we consider and balance any potential impact on you (both positive and negative) and your rights before we process your personal data for our legitimate interests. We do not use your personal data for activities where our interests are overridden by the impact on you (unless we have your consent or are otherwise required or permitted to by law). You can obtain further information about how we assess our legitimate interests against any potential impact on you in respect of specific activities by contacting our DPO (dataprotection@gus.global).
Contractual necessity means processing your data where it is necessary for the performance of a contract to which you are a party or to take preliminary pre-contractual steps at your request before entering into such a contract.
Comply with a legal or regulatory obligation means processing your personal data where it is necessary for compliance with a legal or regulatory obligation that we are subject to.
This policy was last updated on 11 March 2025.