App Logo
Schedule Demo

Privacy Policy

Our privacy policy and how we use your data

1. Who Collects Information

Gora provides self-hosted digital asset verification solutions exclusively to financial institutions. We do not collect or store personal data from end users. All data collection is performed and managed by each institution that deploys our platform.

2. Use of Information

Because our platform is self-hosted, financial institutions directly manage how information such as identity documents, transaction histories, and biometric data is used. Gora does not access or utilize this information for its own purposes.

Each institution is responsible for compliance with applicable laws and for implementing appropriate data handling procedures. Gora’s role is limited to providing the tools and technologies that facilitate verification processes.

3. Data Storage and Security

All data is stored on infrastructure controlled by the financial institution. Gora does not maintain direct access to user information once the platform is deployed. Institutions are responsible for implementing encryption, secure hosting, audits, and access controls.

4. Data Sharing

Any sharing of data with regulatory authorities, partner financial institutions, or service providers is conducted solely by the institution hosting the solution. Gora does not share end-user data on its own behalf.

5. User Rights

End users should direct any requests for data access, correction, or deletion to the institution operating the Gora platform. Gora has no control over data once it is captured by the institution’s self-hosted environment.

6. Data Retention

Retention policies are at the discretion of the hosting institution. Gora does not retain, archive, or dictate the storage duration of any user data.

7. International Transfers

Institutions deploying the self-hosted Gora platform are responsible for ensuring compliance with all data transfer requirements, including any cross-border data transfers. Gora does not have a role in deciding where or how data is geographically stored.

8. Contact Information

For privacy concerns, contact: communications@gora.io

9. Data Encryption & Protection

While Gora provides encryption frameworks and security guidelines, the actual implementation is conducted by each institution. Gora does not store or decrypt any end-user data on its own systems.

10. Use of Sub-processors

Any engagement with sub-processors is arranged by the institution hosting the Gora solution. Gora does not contract directly with third parties for end-user data processing. Institutions assume full responsibility for sub-processor compliance and obligations.