0

  • No products in the cart.

Privacy Policy

Privacy Policy

This Privacy Policy outlines how the Global Association of Certified Crypto Compliance Officers (AC3O) (“we”, “our”, “us”) collects, uses, discloses, and protects your personal data when you visit www.ac3o.org or engage with our programs, courses, and certification services.

1. Information We Collect

  • Personal Information: Name, email address, phone number, country, nationality, job title, and organization.
  • Account & Certification Data: User credentials, exam results, certificates issued, and verification records.
  • Payment & Transaction Data: Billing information, order details, and payment confirmations (processed securely by authorized third-party gateways such as Stripe, Razorpay, or PayPal).
  • Technical & Usage Data: IP address, device type, browser version, referring URLs, session durations, and interactions with our site.
  • Communications Data: Emails, inquiries, support tickets, and feedback submitted through our forms or chat systems.

2. How We Use Your Data

  • To create and manage your learning or certification account.
  • To deliver educational content, assessments, and certification materials.
  • To issue, verify, and renew professional certifications.
  • To communicate with you regarding program updates, policy changes, and marketing (with your consent).
  • To maintain compliance with accreditation, audit, and legal requirements.
  • To analyze usage trends and improve user experience through analytics tools.

3. Legal Basis for Processing

We process your personal data based on one or more of the following legal bases:

  • Your consent for marketing or communication purposes.
  • Performance of a contract (e.g., course enrollment, certification issuance).
  • Legitimate interests in improving our services and maintaining academic records.
  • Compliance with legal or regulatory obligations.

4. Data Sharing & Disclosure

We do not sell or rent your personal information. Data may be shared only with:

  • ONRIGA Accreditation Board – for certification validation and compliance assurance.
  • Trusted service providers – hosting, analytics, email delivery, or payment processing, bound by strict confidentiality and data protection clauses.
  • Regulatory or legal authorities – when required to comply with applicable laws or respond to lawful requests.

5. Cookies & Tracking Technologies

We use cookies and analytics tools such as Google Analytics to understand visitor behavior, improve performance, and deliver a personalized experience. You can modify your cookie preferences in your browser settings at any time.

6. Data Retention

We retain your data only as long as necessary for certification validation, compliance audits, or legal obligations. Certification records and verification details may be kept permanently to ensure authenticity for employers and regulators.

7. Data Security

We employ encryption, firewalls, and secure access protocols to protect your information. While we take all reasonable measures to safeguard your data, no online platform can guarantee absolute security.

8. International Data Transfers

Your information may be transferred and stored across countries where our servers, partners, or accrediting bodies operate. We ensure all transfers comply with the EU General Data Protection Regulation (GDPR) and equivalent international data protection standards through appropriate safeguards.

9. Your Rights

  • Access, correct, or delete your personal information.
  • Withdraw consent at any time for non-essential processing.
  • Request a copy or transfer (portability) of your data.
  • Restrict or object to data processing in certain circumstances.
  • Lodge a complaint with your local data protection authority if you believe your rights have been violated.

To exercise any of these rights, contact us at support@ac3o.org.

10. Children’s Privacy

Our services are not directed to individuals under 16 years of age. We do not knowingly collect or process data from minors. If such information is discovered, it will be deleted promptly.

11. Data Breach Protocol

In the event of a data breach, we will notify affected individuals and relevant authorities within legally mandated timelines, providing details of the breach and recommended actions.

12. Policy Updates

We may update this Privacy Policy periodically to reflect legal or operational changes. The latest version will always be available on this page, with the “Last Updated” date indicated below.

Last Updated: 01, October 2025

Select your currency
USD United States (US) dollar
AED United Arab Emirates dirham
CAD Canadian dollar
EUR Euro
GBP Pound sterling
INR Indian rupee
SGD Singapore dollar