Privacy Policy

Your privacy and data security are our top priorities

Last Updated: 05 December 2025

The International Evaluation and Certification Center ("IECC", "we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or interact with our standards and accreditation ecosystem.

Privacy at a Glance

Information We Collect Personal identifiers, professional/educational data, application details, and technical data like your IP address.
How We Use It To provide and improve our services, process applications, communicate with you, and comply with legal obligations.
Information Sharing We do not sell your data. We may share it with trusted service providers, accredited bodies for service delivery, or legal authorities when required.
Your Rights You have rights to access, correct, or delete your data. Depending on your location (e.g., GDPR/CCPA), you may have additional rights.

This policy is designed to comply with applicable privacy laws, including the EU/UK GDPR and the California Consumer Privacy Act (CCPA/CPRA), where applicable.

0. Who We Are (Controller)

The International Evaluation and Certification Center (IECC) is a non-governmental organization registered in the State of Delaware, USA, through the Delaware Court of Chancery (Registration No. 646505). IECC is also registered in the United Nations Department of Economic and Social Affairs (UN DESA) NGO Branch through the eSANGO system under Profile Code 709400. IECC is a Delaware C Corporation (C-Corp) with its principal place of business at 8 The Green, Dover, DE 19904, USA. For privacy-related inquiries, you can email us at: privacy@iecc.world.

1. Information We Collect

Personal Information

We may collect personal information that you voluntarily provide to us when you:

  • Create an account for accessing partner resources
  • Submit applications related to accreditation or participation in our standards activities
  • Contact us for support or compliance inquiries
  • Subscribe to our newsletter

This information may include: name, email address, mailing address, phone number, account credentials, educational background, professional experience, payment information (processed securely via third-party payment gateways like Stripe), and identification documents where required for verification.

Categories of Personal Data

  • Identifiers (name, email, phone)
  • Professional/education information (CV, degrees, transcripts)
  • Application information (accreditation applications, partner submissions)
  • Internet/technical information (device, IP, usage data)

Automatically Collected Information

When you visit our website, we automatically collect certain information about your device, including:

  • IP address and browser type
  • Operating system and device information
  • Pages visited and time spent on pages
  • Referring website and search terms
  • Cookies and similar tracking technologies

2. How We Use Your Information

We use the information we collect to:

  • Process your applications (e.g., accreditation, partnership) and provide related services
  • Verify your identity and credentials (as applicable)
  • Communicate with you about your account and services
  • Send you important updates and notifications
  • Improve our website and services
  • Comply with legal obligations

3. Our Legal Bases (GDPR)

Where GDPR applies, we rely on the following lawful bases:

  • Performance of a contract (e.g., processing applications related to accreditation or partnerships)
  • Legitimate interests (e.g., service improvement, fraud prevention)
  • Compliance with legal obligations
  • Consent (e.g., certain marketing or non-essential cookies)

4. Information Sharing and Disclosure

We do not sell your personal information. We may share your information with:

  • Service Providers: Third-party vendors who assist us in operating our website and providing services (e.g., hosting, payment processing, analytics). These providers are contractually bound to protect your data and use it only for the purposes we specify.
  • Accredited Bodies: When coordination is needed to process your requests in the IECC standards & accreditation ecosystem (with your consent or other lawful bases)
  • Legal Authorities: When required by law or to protect our rights

5. International Transfers

Your data may be transferred to and processed in countries outside your country of residence. Where required, we implement appropriate safeguards such as Standard Contractual Clauses (SCCs) to protect your data.

6. Data Retention

We retain personal data only as long as necessary for the purposes described above, including to meet legal, accounting, or reporting requirements. Typical retention periods are 12�?4 months depending on the transaction type and applicable law.

7. Cookies and Tracking

We use cookies and similar technologies to operate and improve our services. For details and to manage preferences, see our Cookie Policy and Cookie Preferences.

8. Data Security

We implement appropriate technical and organizational measures to protect your personal information, including:

  • SSL/TLS encryption for data transmission
  • Secure servers and databases
  • Regular security audits and updates
  • Access controls and authentication
  • Employee training on data protection

9. Your Rights

GDPR (EU/UK) Rights

  • Access, rectification, erasure, restriction, portability, and objection
  • Right to withdraw consent where processing is based on consent
  • Right to lodge a complaint with a supervisory authority

Supervisory authorities resources:

CCPA/CPRA (California) Rights

  • Right to know, delete, and correct personal information
  • Right to opt-out of sale or sharing of personal information
  • Right to limit use of sensitive personal information
  • Right to non-discrimination for exercising your rights

To exercise your rights, contact us at privacy@iecc.world. We may request additional information to verify your identity.

10. Children’s Data

Our services are not directed to children under 16. We do not knowingly collect personal data from children under this age. If you believe a child has provided us with personal data, contact us to delete such information.

11. Automated Decision-Making

We do not engage in automated decision-making that produces legal effects concerning you or similarly significantly affects you.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will post the updated version on this page with a new “Last Updated�?date. Significant changes may be communicated via email or site notice.

12a. EEA/UK Representative

Based on our current activities, IECC is not required to appoint an Article 27 representative. If our activities change such that an EEA or UK representative becomes required, we will designate one and update this section accordingly. EEA/UK residents may contact us directly at privacy@iecc.world.

13. Contact Us

For questions about this Privacy Policy or to exercise your rights, please contact us at:

Email: privacy@iecc.world

Address: 8 The Green, Dover, DE 19904, USA

Your privacy is important to us. We are committed to protecting your personal information and being transparent about our data practices.