1. INTRODUCTION & SCOPE

Global Mentor Corporation ("Company," "we," "us," or "our") operates the website globalmentorcorporation.com (the "Website") and provides consulting, advisory, and technology services. This Privacy Policy describes how we collect, use, store, share, and protect your personal information when you visit our Website, use our services, or otherwise interact with us.

This Policy applies to all visitors, users, clients, and business partners worldwide. By accessing or using our Website, you acknowledge that you have read, understood, and agree to the practices described in this Privacy Policy. If you do not agree with any part of this Policy, please discontinue use of our Website immediately.

⚠ Important Notice: This Privacy Policy is provided for informational purposes and represents our best efforts to comply with applicable data protection laws globally. It does not constitute legal advice. We strongly recommend that visitors from all jurisdictions review this Policy carefully and use our Website at their own discretion. If you are unsure about your rights under your local data protection law, please consult a qualified legal professional in your jurisdiction.

2. INFORMATION WE COLLECT

2.1 Information You Provide Directly

We may collect personal information that you voluntarily provide to us, including but not limited to:

• Contact Information: Name, email address, phone number, company name, job title, and mailing address.

• Inquiry & Communication Data: Messages, feedback, and correspondence submitted through contact forms, email, or other communication channels.

• Contractual & Business Data: Information necessary to deliver consulting services, including project details, billing information, and business requirements.

• Account Information: If applicable, username, password (stored in encrypted form), and account preferences.

2.2 Information Collected Automatically

When you visit our Website, we may automatically collect certain technical and usage information, including:

• Device & Browser Information: IP address, browser type and version, operating system, device type, screen resolution, and language preferences.

• Usage Data: Pages visited, time spent on pages, click patterns, referring URLs, and navigation paths.

• Location Data: Approximate geographic location derived from your IP address.

2.3 Information from Third Parties

We may receive information about you from third-party sources such as analytics providers, advertising partners, publicly available databases, social media platforms (when you interact with our social media pages), and business partners.

3. HOW WE USE YOUR INFORMATION

We use the information we collect for the following purposes:

• Service Delivery: To provide, maintain, and improve our consulting services, respond to your inquiries, and fulfil contractual obligations.

• Communication: To send you relevant updates, newsletters, marketing communications (where you have opted in), and service-related notices.

• Website Improvement: To analyse usage patterns, diagnose technical issues, optimise user experience, and develop new features.

• Legal & Compliance: To comply with applicable laws, regulations, and legal processes; to enforce our terms of service; and to protect the rights, property, and safety of our Company, our users, and the public.

• Security: To detect, investigate, and prevent fraudulent, unauthorized, or illegal activity.

• Business Operations: For internal administration, auditing, record-keeping, and business analytics.

4. LEGAL BASES FOR PROCESSING (GDPR)

For individuals located in the European Economic Area (EEA), the United Kingdom (UK), or any jurisdiction where a lawful basis for processing is required, we rely on one or more of the following legal bases:

• Consent: Where you have provided explicit consent for a specific processing activity (e.g., subscribing to our newsletter). You may withdraw consent at any time.

• Contractual Necessity: Where processing is necessary to perform a contract with you or to take steps at your request prior to entering into a contract.

• Legitimate Interests: Where processing is necessary for our legitimate business interests (such as improving our services, marketing, and fraud prevention), provided these interests are not overridden by your fundamental rights and freedoms.

• Legal Obligation: Where processing is necessary to comply with a legal obligation to which we are subject.

ℹ GDPR Compliance Note: We endeavour to comply with the General Data Protection Regulation (EU) 2016/679 and the UK GDPR. However, as a consulting company primarily based outside the EEA/UK, our compliance framework may not address every requirement in full. EEA/UK visitors are encouraged to review this Policy carefully and use our services at their own discretion.

5. COOKIES & TRACKING TECHNOLOGIES

Our Website may use cookies, web beacons, pixels, and similar tracking technologies to enhance your browsing experience, analyse site traffic, and understand user behaviour.

5.1 Types of Cookies We May Use

• Strictly Necessary Cookies: Essential for the Website to function correctly. These cannot be disabled.

• Analytics & Performance Cookies: Help us understand how visitors interact with our Website by collecting anonymised usage data (e.g., Google Analytics).

• Functional Cookies: Remember your preferences and settings to provide a personalised experience.

• Marketing & Advertising Cookies: Used to deliver relevant advertisements and track the effectiveness of marketing campaigns.

5.2 Managing Cookies

You can manage your cookie preferences through your browser settings. Most browsers allow you to refuse or delete cookies. Please note that disabling certain cookies may affect the functionality and your experience of our Website. For more details, consult your browser's help documentation.

6. DATA SHARING & THIRD-PARTY DISCLOSURES

We do not sell, rent, or trade your personal information. We may share your data in the following limited circumstances:

• Service Providers: Trusted third-party vendors who assist us with website hosting, analytics, email delivery, payment processing, and other operational services—subject to contractual confidentiality and data protection obligations.

• Legal Requirements: When required by law, regulation, legal process, or governmental request; or when we believe disclosure is necessary to protect our rights, your safety, or the safety of others.

• Business Transfers: In connection with any merger, acquisition, reorganisation, or sale of assets, your information may be transferred as part of that transaction, subject to the receiving party's commitment to honour the terms of this Privacy Policy.

• With Your Consent: In any other circumstances where you have provided explicit consent for disclosure.

7. INTERNATIONAL DATA TRANSFERS

As a globally operating consulting company, your personal data may be transferred to, stored, and processed in countries other than the one in which you reside. These countries may have data protection laws that differ from—and may be less protective than—the laws of your home country.

Where we transfer personal data internationally, we take reasonable steps to ensure appropriate safeguards are in place, which may include Standard Contractual Clauses (SCCs), adequacy decisions, binding corporate rules, or your explicit consent.

⚠ Cross-Border Transfer Notice: By using our Website and providing your information, you acknowledge and consent to the transfer and processing of your data in jurisdictions outside your country of residence. If you do not consent to such transfers, please refrain from submitting personal information through our Website.

8. DATA RETENTION

We retain your personal information only for as long as is reasonably necessary to fulfil the purposes for which it was collected, including to satisfy any legal, regulatory, accounting, or reporting requirements. Retention periods may vary depending on the context of the processing and our legal obligations.

When personal data is no longer required, we will securely delete or anonymise it. If deletion is not immediately possible (for example, because data is stored in backup archives), we will securely isolate it from further processing until deletion is feasible.

9. YOUR RIGHTS & CHOICES

Depending on your jurisdiction, you may have one or more of the following rights regarding your personal data:

• Right of Access: Request a copy of the personal data we hold about you.

• Right to Rectification: Request correction of inaccurate or incomplete personal data.

• Right to Erasure ("Right to be Forgotten"): Request deletion of your personal data, subject to applicable legal exceptions.

• Right to Restrict Processing: Request that we limit the processing of your personal data under certain conditions.

• Right to Data Portability: Request a copy of your data in a structured, commonly used, and machine-readable format.

• Right to Object: Object to processing based on legitimate interests, direct marketing, or profiling.

• Right to Withdraw Consent: Where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of prior processing.

• Right to Lodge a Complaint: You have the right to lodge a complaint with your local data protection authority if you believe your data has been processed unlawfully.

To exercise any of these rights, please contact us using the details provided in the "Contact Us" section below. We will respond to your request within a reasonable timeframe and in accordance with applicable law.

10. CHILDREN'S PRIVACY

Our Website and services are not directed at individuals under the age of 16 (or the applicable age of consent in your jurisdiction). We do not knowingly collect personal information from children. If we become aware that we have inadvertently collected personal data from a child without proper parental or guardian consent, we will take prompt steps to delete such information. If you believe a child has provided us with personal data, please contact us immediately.

11. SECURITY MEASURES

We implement reasonable administrative, technical, and physical safeguards designed to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include, but are not limited to, encryption of data in transit (TLS/SSL), access controls, regular security assessments, and employee confidentiality agreements.

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your personal data, we cannot guarantee its absolute security. You acknowledge that you provide personal information at your own risk.

12. REGION-SPECIFIC DISCLOSURES

12.1 European Economic Area & United Kingdom (GDPR / UK GDPR)

If you are located in the EEA or UK, you have additional rights under the General Data Protection Regulation, as outlined in Sections 4 and 9 above. We endeavour to process your data in compliance with the GDPR. Where full compliance is not achievable, we transparently disclose our practices and encourage you to use our services at your discretion.

12.2 California, USA (CCPA / CPRA)

If you are a California resident, you may have rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA), including the right to know what personal information is collected, the right to delete personal information, the right to opt out of the sale or sharing of personal information, and the right to non-discrimination. We do not sell personal information as defined under CCPA/CPRA. To exercise your rights, contact us using the information below.

12.3 Brazil (LGPD)

If you are located in Brazil, the Lei Geral de Proteção de Dados (LGPD) grants you rights similar to those under the GDPR, including access, correction, deletion, and data portability. We make reasonable efforts to honour these rights.

12.4 India (DPDP Act)

If you are located in India, the Digital Personal Data Protection Act, 2023 (DPDP Act) provides you with rights concerning your personal data. We are committed to processing your data in accordance with applicable Indian data protection laws.

12.5 Canada (PIPEDA)

If you are located in Canada, the Personal Information Protection and Electronic Documents Act (PIPEDA) may apply to our collection and use of your personal information. You have the right to access, correct, and challenge our compliance with PIPEDA.

12.6 Australia (Privacy Act 1988)

If you are located in Australia, the Privacy Act 1988 and the Australian Privacy Principles (APPs) regulate how we handle your personal information. You have the right to access and request correction of your data.

12.7 Other Jurisdictions

If you are located in any other jurisdiction with data protection laws, we make reasonable efforts to comply with applicable local regulations. Where our practices may not fully align with specific local requirements, we encourage you to review this Policy carefully and use our Website and services at your own discretion. We welcome queries from users in any jurisdiction—please contact us if you have questions about how your data is handled.

13. DISCLAIMER & LIMITATION OF LIABILITY

This Privacy Policy is provided in good faith and reflects our current data handling practices. While we strive to comply with data protection laws applicable to our operations, we make no representation or warranty that our practices are fully compliant with the laws of every jurisdiction from which our Website may be accessed.

To the fullest extent permitted by applicable law:

• We shall not be held liable for any indirect, incidental, consequential, or punitive damages arising from or related to data processing activities described in this Policy.

• Users from jurisdictions where our practices may not meet local regulatory standards are advised to use our Website and services at their own discretion and risk.

• We encourage all users to seek independent legal counsel if they are uncertain about their rights or our obligations under their local data protection laws.

⚠ Use at Your Own Discretion: Visitors from all countries access this Website voluntarily. If you are unsure whether our privacy practices meet the legal requirements of your jurisdiction, we advise you to refrain from submitting personal information or to consult with a local data protection expert before doing so.

14. CHANGES TO THIS POLICY

We reserve the right to update or modify this Privacy Policy at any time. When we make material changes, we will revise the "Last Updated" date at the top of this page and, where appropriate, provide additional notice (such as a prominent notice on our Website or via email). We encourage you to review this Policy periodically to stay informed about how we protect your information.

Your continued use of our Website after any changes to this Policy constitutes your acceptance of the revised Policy.

15. CONTACT US

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

Global Mentor Corporation Website: globalmentorcorporation.com Email: privacy@globalmentorcorporation.com Subject Line: Privacy Policy Inquiry

We will endeavour to respond to all legitimate requests within 30 days. In certain circumstances, it may take us longer, in which case we will notify you and keep you informed.