Below is a ready-to-use Privacy Policy for the GAFAI Global Members Platform. This is a strong general draft, but it should be reviewed by a qualified legal professional before publication to ensure compliance with the laws and jurisdictions relevant to GAFAI and its members.

Privacy Policy

Effective Date: April 5, 2026

The GAFAI Global Members Platform respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, share, and protect information when you access or use the platform, including its website, member services, communications, events, forums, groups, courses, and related features.

By using the platform, you acknowledge that your information may be processed as described in this Privacy Policy.

1. Who we are

The GAFAI Global Members Platform is operated for the benefit of the Global Alliance for Artificial Intelligence and its member community. This platform supports global engagement, collaboration, education, networking, and responsible participation across the GAFAI ecosystem.

For the purposes of applicable data protection laws, the organization operating the platform will generally act as the controller of personal data collected through the platform, except where another role is expressly stated.

2. Information we collect

We may collect personal data that you provide directly, data collected automatically through your use of the platform, and data received from trusted third parties or organizational representatives.

Information you provide directly

This may include:

• Full name

• Email address

• Phone number

• Organization name

• Job title or professional role

• Country, city, or region

• Profile photo

• Biography or professional summary

• Username and account credentials

• Membership application details

• Billing or payment-related details, if applicable

• Messages, forum posts, comments, uploads, and other content you submit

• Event registrations, survey responses, and course participation data

• Support requests and administrative communications

Information collected automatically

This may include:

• IP address

• Browser type and version

• Device type

• Operating system

• Referral source

• Pages viewed

• Access times and dates

• Platform interactions and usage patterns

• Log data, error reports, and security events

• Cookie and similar technology data, where used

Information from third parties

We may receive information from:

• Organization administrators or member representatives

• Payment processors

• Event or webinar tools

• Authentication or sign-in providers

• Public professional sources where relevant to membership verification

• Partners, affiliates, or service providers supporting platform operations

3. How we use your information

We use personal data only where there is a legitimate purpose for doing so. Depending on the nature of your relationship with the platform, we may use your information to:

• Create and manage your account

• Process membership applications and approvals

• Provide access to member-only features and services

• Display profile information within the community

• Facilitate networking, collaboration, and communication

• Manage groups, forums, pages, blogs, events, and courses

• Send platform-related announcements, updates, and service messages

• Respond to support requests and administrative needs

• Improve platform functionality, performance, and user experience

• Monitor usage, detect abuse, and maintain security

• Process payments, invoices, or membership-related transactions, if applicable

• Comply with legal obligations

• Protect the rights, safety, integrity, and mission of GAFAI and its community

4. Legal bases for processing

Where required by applicable law, we process personal data on one or more of the following legal bases:

• Your consent

• Performance of a contract or membership relationship

• Compliance with legal obligations

• Legitimate interests, such as platform administration, security, community management, service improvement, and organizational communication

• Protection of vital interests where relevant

Where processing is based on consent, you may withdraw that consent where permitted by law.

5. Member profiles and community visibility

Because the platform is designed as a member community, some profile and participation information may be visible to other users, depending on your role, settings, or the features you use.

This may include:

• Your name

• Organization

• Title

• Photo

• Biography

• Country or region

• Public posts, comments, event participation, or shared content

You should only post information that you are comfortable sharing within the platform environment. We encourage users to avoid posting sensitive personal data unless clearly necessary and appropriate.

6. Cookies and similar technologies

The platform may use cookies and similar technologies to support essential functions, remember preferences, analyze usage, improve performance, and enhance user experience.

These technologies may be used for purposes such as:

• Authentication and session management

• Security

• Site functionality

• Analytics and performance measurement

• User preference recognition

Where required by law, we will request consent before using non-essential cookies or similar technologies. More specific information may be provided in a separate Cookie Policy or cookie notice.

7. How we share information

We do not sell personal data. We may share personal data only where necessary and appropriate, including with:

• Platform administrators and authorized personnel

• Service providers that help operate the platform

• Hosting, email, analytics, security, and payment providers

• Event, webinar, communication, or learning service providers

• Professional advisors, auditors, or legal counsel

• Public authorities or regulators where required by law

• Other members, where sharing is part of the platform’s intended functionality

• Successor organizations or authorized entities in connection with restructuring, merger, transfer, or similar organizational changes, where permitted by law

All third-party access should be limited to what is reasonably necessary for the relevant purpose.

8. International data transfers

Because GAFAI operates in an international context, personal data may be accessed, processed, or stored in multiple countries. Where required by applicable law, we will take appropriate steps to ensure that international transfers are protected through lawful safeguards and reasonable data protection measures.

These safeguards may include contractual protections, organizational controls, technical security measures, or transfers to jurisdictions recognized as providing adequate protection where applicable.

9. Data retention

We keep personal data only for as long as reasonably necessary for the purposes described in this Privacy Policy, including to:

• Maintain your membership or account

• Provide services and community functions

• Meet legal, accounting, tax, or reporting obligations

• Resolve disputes

• Enforce our terms and policies

• Protect the platform and community from misuse or harm

Retention periods may vary depending on the type of data, the purpose for which it was collected, and applicable legal requirements. When data is no longer needed, we will delete, anonymize, or securely archive it as appropriate.

10. Data security

We take reasonable technical, administrative, and organizational measures to help protect personal data against unauthorized access, loss, misuse, disclosure, alteration, or destruction.

These measures may include:

• Access controls

• Account authentication protections

• Encrypted connections

• Server and application security measures

• Monitoring and logging

• Role-based administrative restrictions

• Internal procedures for handling data responsibly

However, no platform or transmission method can be guaranteed to be completely secure. You are also responsible for protecting your login credentials and using the platform safely.

11. Your privacy rights

Depending on your jurisdiction, you may have the right to:

• Access the personal data we hold about you

• Correct inaccurate or incomplete data

• Request deletion of your data

• Restrict or object to certain processing

• Request portability of your data

• Withdraw consent where processing is based on consent

• Complain to a relevant supervisory authority or regulator

These rights are not absolute and may be subject to legal or operational limitations. We may need to verify your identity before responding to a request.

12. Children’s privacy

The platform is not intended for use by children unless expressly stated for a specific educational or supervised program. We do not knowingly collect personal data from children in violation of applicable law. If we learn that personal data has been provided by a child inappropriately, we will take reasonable steps to delete it or otherwise handle it in accordance with legal requirements.

13. Third-party services and links

The platform may contain links to third-party websites, tools, payment systems, social media services, event platforms, or embedded content. We are not responsible for the privacy, security, or content practices of those third parties. Your use of third-party services is subject to their own terms and privacy policies.

14. Communications

We may send you service-related communications necessary for account management, membership administration, security, event participation, and platform operations. We may also send newsletters, updates, invitations, or promotional communications where permitted by law or where you have chosen to receive them.

You may opt out of non-essential communications using available unsubscribe options or by contacting the platform administrator. Operational messages may still be sent where necessary.

15. Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in law, platform features, operations, or data practices. The updated version will become effective when posted, unless a different date is stated.

Your continued use of the platform after an update may indicate acceptance of the revised policy to the extent permitted by law.

16. Contact us

If you have questions, requests, or concerns about this Privacy Policy or the handling of your personal data, please contact:

GAFAI Global Members Platform
Global Alliance for Artificial Intelligence
Email: support@gafai.org