1. Who we are

GenderRecognition.org (“we”, “us”, “our”) provides gender recognition certificates and related documentation for personal use and private organisational contexts.

We are the data controller for the personal data collected through this website. Contact: hello@genderrecognition.org

2. Scope of this policy

This Privacy Policy applies to:

• Visitors to GenderRecognition.org
• Individuals who submit forms or enquiries
• Customers who purchase certificates or related services
• Communications by email or contact forms

It does not apply to third-party websites or services linked from our site.

3. Personal data we collect

3.1 Information you provide

• Name (including current legal name where required)
• Email address
• Postal address (for printed delivery)
• Country of residence
• Information submitted through forms or email
• Details necessary to produce your certificate

3.2 Payment information

Payments are processed via third-party payment providers (such as Stripe). We do not store full payment card details on our servers.

3.3 Technical data

• IP address
• Browser type and device information
• Pages visited and interactions
• Cookies and similar technologies (see Cookie Policy)

4. Special category data

Information relating to gender identity may be considered special category personal data under data protection laws.

We only process such information where:

• You have voluntarily provided it
• It is necessary to provide the service you requested
• You have given explicit consent

5. How we use your data

We use personal data to:

• Provide and fulfil certificate orders
• Verify submissions and prevent misuse
• Communicate with you about your order
• Respond to enquiries and support requests
• Maintain internal records and audit trails
• Improve website functionality and content
• Comply with legal obligations

6. Legal bases for processing

We process personal data under the following legal bases:

• Contract — to provide services you request
• Consent — where you explicitly provide it
• Legal obligation — where required by law
• Legitimate interests — for security, fraud prevention, and service improvement

7. How we store and protect data

We take data security seriously and apply appropriate technical and organisational measures, including:

• Restricted access to personal data
• Secure hosting environments
• Encrypted connections (HTTPS)
• Limited internal access on a need-to-know basis

No system is completely secure, but we take reasonable steps to protect your information.

8. Data retention

We retain personal data only for as long as necessary to:

• Provide the requested services
• Maintain records related to issued certificates
• Comply with legal and regulatory requirements
• Resolve disputes or enforce agreements

Retention periods may vary depending on the type of data and purpose.

9. Sharing your data

We do not sell personal data.

We may share limited data with:

• Payment processors (for transactions)
• Delivery providers (for physical documents)
• IT and security service providers
• Legal or regulatory authorities where required

All third parties are required to handle data securely and lawfully.

10. International transfers

Your data may be processed or stored outside your country of residence, including in jurisdictions with different data protection laws.

Where required, we use appropriate safeguards to protect your information.

11. Your rights

You may have the right to:

• Access your personal data
• Request correction of inaccurate data
• Request deletion (where legally permitted)
• Restrict or object to processing
• Withdraw consent
• Lodge a complaint with a supervisory authority

Requests can be made by contacting hello@genderrecognition.org.

12. Cookies

We use cookies and similar technologies to operate and improve the Website. For full details, see our Cookie Policy.

13. Changes to this Privacy Policy

We may update this Privacy Policy from time to time. The “Last updated” date indicates when changes were made.

14. Contact

If you have questions about this Privacy Policy or how we handle personal data, contact: hello@genderrecognition.org