This article provides an overview of GFoundry's commitment to maintaining a secure, transparent, and compliant platform.
We cover three critical areas: Information Security and Governance, Terms of Service, and Data Protection and Privacy.
Whether you're a new user or a long-time member of the GFoundry community, this guide is essential to understand how we safeguard your experience and data on our platform.
1. Information Security and Governance
GFoundry’s Governance Framework for Information Security. Best practices and guidelines for maintaining information security within the platform. Read more here.
2. Terms of Service
Comprehensive details about the terms and conditions of using the GFoundry platform. Explanation of user responsibilities and rights. Read more here.
3. Data Protection and Privacy
GFoundry’s Data Protection and Privacy Policy.
Information on how user data is collected, used, and protected.
Compliance information with relevant data protection laws and regulations. Read more here.
4. GFoundry Cookies Policy
At GFoundry, we are committed to protecting your privacy while ensuring the best possible experience on our platform. This Cookies Policy explains what cookies are, how we use them, and how you can manage your preferences. This policy aligns with the General Data Protection Regulation (GDPR) and other applicable privacy regulations. Read more here.
5. Privacy and Data Protection Policy for Gi Service Provided by OpenAI
This document ensures that GFOUNDRY, through the Gi service, complies with GDPR by protecting the privacy and security of personal data processed for educational content generation using OpenAI’s technology, incorporating terms from the Data Processing Agreement with OpenAI. Read more here.
6. Our Commitment to Transparency, Security, and Compliance
As part of our ongoing commitment to transparency, security, and legal compliance, we share that GFoundry maintains a comprehensive and up-to-date set of documents covering key areas such as compliance, information security, privacy, and auditing.
These documents include internal policies, independent audit reports (SOC 1, SOC 2, SOC 3, and Google’s C5 certification), legal agreements, and training procedures.
Below is an organized list by category:
1. Legal and Contractual
- Licensing Agreement
– Terms of Service
– Confidentiality Agreement with Google (NDA)
– Service Level Agreement (SLA)
– Data Processing Addendum with OpenAI (DPA)
2. Data Protection and Compliance
– Privacy Policy
– Cookie Policy
– Gi Learning Service Privacy Policy
– GDPR Compliance Measures
– AI Compliance Statement
– GiBot Security Overview
3. Google Certifications and Audits
– SOC 1, SOC 2, and SOC 3 Reports
– C5 Certification (Cloud Compliance – BSI)
4. Information Security
– Cryptographic Key Management Policy
– Incident Governance Framework
– Quality and Security Policies
– Access and Authentication Policy
5. Ethics and Governance
– Code of Ethics and Conduct
6. Training and Procedures
– Employee Training Procedure
– Client Training Procedure
7. Technical Architecture
– Services Overview
– Detailed Architecture Description
These documents can be shared upon request. If you are interested in reviewing any of them, simply reply to this message specifying which documents you would like to receive.