Privacy Policy

INTRODUCTION

GAHL Services Limited (“GUS”, “we”, “us” or “our”)  respects your privacy and we are committed to protecting your personal data.

This Privacy Policy describes how we collect and process your personal data when you visit or use https://www.globaluniversitysystems.com/ (our “Website”), as well as when you register an account with us, when you contact us or interact with us online or via telephone.

This Website is not intended for children and we do not knowingly collect data relating to children on this Website.

IMPORTANT INFORMATION AND WHO WE ARE

DATA CONTROLLER

For the purposes of data protection laws, we are the “controller” of the processing of your personal data.  This means that we decide why and how your personal information is processed. It also means that we are responsible to you under the law for that processing.

GAHL Services Limited is a company registered in England and Wales under company number 13390120 and registered office at 30 Holborn, Buchanan House, London, England, EC1N 2HS. GAHL Services Limited is registered with the Information Commissioner’s Office (ICO) with registration number ZB380080. Notification details can be accessed by searching the Data Protection Public Register.

We are part of a group of companies made up of different legal entities, details of which can be found here https://www.globaluniversitysystems.com/our-network

We have appointed a data protection officer (DPO) who is responsible for overseeing questions in relation to this privacy notice. If you have any questions about this privacy notice, including any requests to exercise your legal rights, please contact the DPO using the details set out below.

CONTACT DETAILS

FAO Data Protection Officer

Email address: dataprotection@gus.global

Postal address: Legal Department, 30 Holborn, London, EC1N 2LX,

Telephone number: + 44 (0) 20 3435 4455

CHANGES TO THE PRIVACY NOTICE AND YOUR DUTY TO INFORM US OF CHANGES

This version was last updated 11 March 2025 and historic versions can be obtained by contacting us.

We may from time to time change the detail in this notice. Any changes we may make in the future will be posted on this page. Please check back frequently to see any such updates or changes.

It is important that the personal data we hold about you is accurate and current. Please keep us informed if your personal data changes during your relationship with us.

THIRD-PARTY LINKS

This Website may include links to third-party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. When you leave our Website, we encourage you to read the privacy notice of every website you visit.

TYPES OF PERSONAL INFORMATION WE COLLECT

When you visit our Website, we collect, use and store different types of personal information about you, which we have grouped together as follows:

Types of Personal InformationDescription
Identity and Contact DataName, title, date of birth, address, type of address (e.g. home, second home, work), email address and telephone numbers
Transaction DataBank account and payment card data, details about payments to and from you, other details of products and services purchased from us
Account DataYour username and password, your interests, preferences and any feedback/survey responses
Voice DataYour voice from call recordings when you contact our Customer Services team by phone.
Publicly Available DataDetails about you that are publicly available, such as on Companies House or elsewhere on the internet.
Marketing DataDetails about your preferences in receiving marketing communications from us
Consents DataAny permissions, consents or preferences that you give us
Usage DataInformation about how you use our Website, products and services, including usage reports, call summaries and field reports when you contact us by phone and generated by our service provider (see below for further details).
Technical DataIP address, login data, browser type, time zone setting and location, browser plug-in types, operating systems, device ID and other technology on your device.

How we use your information

Cookies

Our Website  uses cookies. For more information on our cookies use, please read our cookies statement on our Website.

Generally

The table below outlines how we use your personal information and our reasons. Where these reasons include legitimate interests, we explain what these legitimate interests are.

What we use information forDescription Our legal basis
To operate our business, we use:

Identity and Contact Data
Transaction Data
Account Data
Voice Data
Publicly Available Data
Usage Data
Technical Data
We use your personal data to ensure we can run our business, by enabling you to create an account, browse our Website, use our services, and so that we can provide and maintain our Website’s functionality. We will also use such personal data to (a) hold events,  such as seminars, webinars, open days or corporate hospitality to promote our business and its services, and (b) operate and develop our alumni network and the activities of our alumni programme, if you opt into either.
We also use your personal data where it is necessary to verify your identity and to satisfy legal or regulatory requirements to which we are subject. Further, we use your personal data in order to exercise and protect our legal rights. For example, to detect, prevent and respond to: (i) fraudulent activity and claims, such as creation of new accounts by banned users; (ii) intellectual  property infringement claims; or (iii) violations of law or our terms.
Legitimate interest to operate our business in an efficient, safe and lawful way and protect it from unlawful activity. In some cases, we are under a legal obligation (whether by a regulatory authority or a court order) to conduct certain checks and disclose personal data. 
To provide you with information you may ask for, we use:

Identity and Contact Data
Account Data
Transaction Data
We may use your personal data when we communicate with you, for example, if you contact us with questions about any products, services or our business in general.Consent

Legitimate interests to fulfil enquires you might make of us so that we are able to respond to your queries in an appropriate and personalised way and also assist you with your experience with us.
To allow you to register for updates or for notifications of blog posts on our Website, or to allow you to register for events that we may be hosting, we use:

Identity and Contact Data
Account Data
Marketing Data
Consents Data
We use your personal data to better understand your preferences and to personalise the messages we send to you. This includes sending you information by email and/or post about our products and services, as well as news or events that may be of interest to you.Consent
To allow you to register as a member of our alumni network, we use:

Identity and Contact Data
Account Data
Marketing Data
Consents Data
We use your personal data to better understand your preferences to join our alumni network. This includes sending you information by email and/or post about our alumni network.Consent
To improve, administer and protect our business and this Website (including troubleshooting, data analysis, testing, system maintenance, support, reporting and hosting of data), we use:

Identity and Contact Data
Account Data
Usage Data
Technical Data
We analyse data about your use of and feedback on our Website, products and services to provide an improved customer experience. We may use your personal data for product testing and development, as well as site analytics and infrastructure monitoring.

We may also use the usage reports, call summaries and field reports when you contact us by phone via our service provider, who provides an efficient AI inbound and outbound call service.
Legitimate interests:


To provide efficient client care and services

To ensure that our technology operates efficiently and without error

To develop new products and services and improve existing ones
To manage our relationship with you which will include notifying you about changes to our privacy notice and our Website terms and conditions, we use:

Identity and Contact Data
Account Data
Transaction Data
Consents Data
We may use your personal data when we communicate with you, for example, if we are providing information about changes to our services or our relationship.Legitimate interests:

To provide efficient client care and services
To keep you updated about changes in the legal terms that apply to the use of our Website
For record keeping and firm management


Contract performance
To manage the systems that contain our marketing database, and to manage marketing preferences and keep our records up to date, we use:

Marketing Data
Consents Data
Usage Data
Technical Data
For data management for marketing and business development purposes.Legitimate interests:

To improve our systems and services, and to manage marketing preferences

To seek feedback
Sharing information with third parties, we use:

Usage Data
Technical Data
To facilitate data-gathering to improve our educational services, our Website, and our marketing efforts.To improve our marketing strategy and the services that we provide

WHERE WE COLLECT YOUR PERSONAL INFORMATION FROM

We may collect personal information about you from the following sources:

Directly from you when you visit our Website or subscribe to our marketing via our mailing list or when you otherwise interact with us online

From data we generate about you during our relationship with you, such as data collected from cookies and other similar technologies – see our cookie policy which can be accessed from our Website

Other sources, such as our third party sub-contractors like analytics providers, such as Google Analytics.

WHO WE SHARE YOUR INFORMATION WITH

We share your personal data with our service providers, business partners and other organisations.  We may share your personal information with the following third parties:

Our agents and service providers who we use to help us with marketing.

Service providers that help us monitor and analyse Website traffic, including Google Analytics.

Professional service providers, such as messaging services, telephony providers, website hosts and IT software providers who help us run our business. This includes our service provider who provide the automated AI services for phone calls that you make to us and provide the Usage Data detailed above to us.

Event organisers (if we are organising an external event which you are attending)

The police, other law enforcement agencies, courts, government authorities or other third parties where we believe it is necessary to comply with a legal or regulatory obligation, or otherwise to protect our rights or the rights of a third party

Relevant regulators, including the Information Commissioner’s Office in the event of a personal data breach

Other companies within our group of companies. We may share your personal data with such companies for the purposes of security, optimisation of our products and services, as well as internal reporting.

Potential or actual purchasers of any part of our business or assets, or advisors and other third parties in the context of a possible transfer or restructuring of our business.

Further details about the specific third parties we engage can be provided on request.

We also share information (including your name, email address, telephone number) with GLS Global Services GmbH, an entity in our group, in relation to our service provider who provides the automated AI services for phone calls detailed above.  GLS Global Services GmbH is  a company registered in Switzerland registered with Tax ID number CHE-471.674.898 and registered address at Baarerstrasse 38, 6300 Zug, Switzerland.

HOW LONG WE KEEP YOUR PERSONAL INFORMATION

We take steps to ensure that the personal data that you provide is retained for only as long as it is necessary for the purpose for which it was collected. Where we have collected the personal data based on your consent (e.g for marketing purposes) and we have no other lawful basis to continue with that , if you subsequently withdraw your consent then we will delete your personal  data. We may also keep a record of correspondence with you (for example if you have made a complaint) for as long as is necessary to protect us from a legal claim.

Where you withdraw your consent to receiving marketing materials or otherwise ask us to stop marketing we will add your details to a suppression list which ensures that we remember not to contact you again.

For further information as to how to withdraw your consent or to ask us to stop other marketing activities see below. 

If you withdraw your consent to receiving marketing materials or ask us to stop our marketing activities, we will still communicate with you for other purposes in the normal course of any other relationship we may have with you.

INTERNATIONAL TRANSFERS

As a global company, we hold some personal information concerning our suppliers and their affairs within the United Kingdom. We do work with agents and service providers who may process your personal information on our behalf outside the UK. If your information is processed outside the UK, we will ensure that it is protected to the same standards as if it were being processed within the UK by putting in place a contract with our agents and service providers that provides adequate safeguards, such as Standard Contractual Clauses or equivalent measures.

If you require more information or have any queries, please contact our Data Protection Officer at: dataprotection@gus.global

YOUR RIGHTS

You have certain rights in relation to your personal data. These include: the right to object to the processing of your data for certain purposes, the right to access your personal data, and the ability to erase, restrict or receive a machine-readable copy of your personal data.

Where you have provided your consent to any use of your personal data, you can withdraw this consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal. We will handle any request to exercise your rights in accordance with applicable law and any relevant legal exemptions. If you wish to exercise any of these rights please contact us using the contact details above.

You have the right to make a complaint at any time to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk) and a list of the EU DPA’s can be found here. We consider that the ICO would also be the lead supervisory authority for GUS since the UK is the place of the majority of our operations. For data protection issues in other countries, you have the right to complain at any time to the supervisory authority for that country.

We would always prefer that you come to us to help address any concerns of a privacy nature however before you go to the ICO or other applicable supervisory authority, so please contact us in the first instance.

GLOSSARY

LAWFUL BASIS

Legitimate Interest means the interest of our business in conducting and managing our business to enable us to give you the best service/product and the best and most secure experience. We make sure we consider and balance any potential impact on you (both positive and negative) and your rights before we process your personal data for our legitimate interests. We do not use your personal data for activities where our interests are overridden by the impact on you (unless we have your consent or are otherwise required or permitted to by law). You can obtain further information about how we assess our legitimate interests against any potential impact on you in respect of specific activities by contacting our DPO (dataprotection@gus.global).

Contractual necessity means processing your data where it is necessary for the performance of a contract to which you are a party or to take preliminary pre-contractual steps at your request before entering into such a contract.

Comply with a legal or regulatory obligation means processing your personal data where it is necessary for compliance with a legal or regulatory obligation that we are subject to.

This policy was last updated on 11 March 2025.