GRC Days is committed to protecting your privacy and developing technology that gives you the most powerful and safe online experience. This Privacy Policy applies to the GRC Days Website and governs data collection and usage. By using the GRC Days Website, you consent to the data practices described in this policy. This policy was recently adopted to comply with the European Union (EU) General Data Protection Regulation (GDPR), in addition to the laws of United States. It applies only to visitors to our Website. You are encouraged to review this policy in detail to provide a detailed understanding of how GRC Days collects, uses, protects, and secures your information and data.

Collection Of Your Personal Information

GRC Days collects personally identifiable information, such as your e-mail address, name, home or work address, or telephone number for the purpose of outreach regarding our products, service, and support. GRC Days also collects anonymous demographic information, which is not unique to you, such as your ZIP code, preferences, interests, and favorites for the purposes of appropriate and relevant communications.

There is also information about your computer hardware and software that is automatically collected by GRC Days. This information can include: your IP address, browser type, domain names, access times, and referring Website addresses. This information is used by GRC Days for the operation of the service, to maintain quality of the service, and to provide general statistics regarding use of the GRC Days Website.

Any personally identifiable information you elect to make publicly available on our Website, such as posting comments on any public message board, will be available to others. If you remove information that you have made public on our Website, copies may remain viewable in cashed or archived pages of our Website, or other users may have copied or saved that information.

GRC Days encourages you to review the privacy policies of Websites you choose to link to from GRC Days so that you can understand how those Websites collect, use, and share your information. GRC Days is not responsible for the privacy policies or other content on Websites outside of the GRC Days and GRC Days’s family of Websites.

Use Of Your Personal Information

GRC Days collects and uses your personal information to operate the GRC Days Website and deliver the services you have requested. GRC Days also uses your personally identifiable information to inform you of other products or services available from GRC Days and its affiliates. GRC Days may also contact you via surveys to conduct research about your opinion of current services or of potential new services that may be offered. By entering personally identifiable information on our Website, you consent to the collection and use of your personal information for the above purposes.

GRC Days does not sell, rent, or lease its customer lists to third parties. GRC Days may, from time to time, contact you on behalf of external business partners about an offering that may be of interest to you. In those cases, your unique personally identifiable information (e-mail, name, address, telephone number) is not transferred to the third party. In addition, GRC Days may share data with trusted partners to help perform statistical analysis, send you email, or postal mail, provide customer support, or arrange for deliveries. All such third parties are prohibited from using your personal information except to provide these services to GRC Days, and they are required to maintain the confidentiality of your information. By entering personally identifiable information on our Website, you consent to the collection and use of your personal information for the above purposes.

GRC Days does not use or disclose sensitive personal information, such as race, religion, or political affiliations, without your explicit consent.

GRC Days keeps track of the Websites and pages our customers visit within GRC Days to determine what GRC Days services are the most popular. This data is used to deliver customized content and advertising within GRC Days to customers whose behavior indicates that they are interested in a particular subject area.

Instances Where We Are Required To Share Your Personal Information

GRC Days Websites will disclose your personal information, without notice, only if required to do so by law or in the good faith belief that such action is necessary to: (a) conform to the edicts of the law or comply with legal process served on GRC Days or the site; (b) protect and defend the rights or property of GRC Days; and, (c) act under exigent circumstances to protect the personal safety of users of GRC Days, or the public.

Your Choices

If we are using, collecting, or storing any of your personal data, you may request a copy of your personal data. You may obtain and reuse your personal data for your own purposes, across different services. If you wish to amend, correct or delete any of your personal data, you may do so by contacting us. We will reply within 30 days of your request for rectification. You may object to the processing of your personal data, on legitimate ground, unless otherwise permissible by applicable law. When processing is restricted, we are permitted to store the personal data, but not use it. You have the right to be free from decisions based solely on automated processing of your personal data. You also have the right to be free of profiling driven by automated decision making. Unless, in both these situations, processing is required for entering into, or the performance of, a contract between you and us, or you provide your explicit consent to such processing of your personal data.

You can contact us by using the information provided under the “Contact Information” section below.

Use Of Cookies And Tracking Technology

The GRC Days Website uses "cookies" to help you personalize your online experience. A cookie is a text file that is placed on your hard disk by a Web page server. Cookies are uniquely assigned to you and can only be read by a web server in the domain that issued the cookie to you.
One of the primary purposes of cookies is to provide a convenience feature to save you time. The purpose of a cookie is to tell the Web server that you have returned to a specific page. For example, if you personalize GRC Days pages, or register with GRC Days sites or services, a cookie helps GRC Days recall your specific information on subsequent visits. This simplifies the process of recording your personal information, such as billing addresses, shipping addresses, and so on. When you return to the same GRC Days Website, the information you previously provided can be retrieved, so you can easily use the GRC Days features that you customized. You have the ability to accept or decline cookies. Most Web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer. If you choose to decline cookies, you may not be able to fully experience the interactive features of the GRC Days services or Websites you visit.

Data Transfer

GRC Days uses NetSuite, Microsoft Dynamics CRM, and HubSpot to review the information collected from you. This information is stored and processed on servers located in the United States. GRC Days has reviewed the compliance status of these vendors regarding EU GDPR and the EU-US Privacy Shield framework, as part of our Information Security program. Your information will also be treated in accordance with this Privacy Policy when we store and process your information.

Security Of Your Personal Information

GRC Days secures your personal information from unauthorized access, use or disclosure. GRC Days secures the personally identifiable information you provide on computer servers in a controlled, secure environment, protected from unauthorized access, use or disclosure. When personal information (such as a credit card number) is transmitted to other Websites, it is protected by encryption, such as the Secure Socket Layer (SSL) protocol.

Changes To This Statement

GRC Days will occasionally update this Privacy Policy to reflect company and customer feedback. GRC Days encourages you to periodically review this Policy to be informed of how GRC Days is protecting your information.

Contact Information

GRC Days welcomes your comments regarding this Statement of Privacy. If you believe that GRC Days has not adhered to this Statement, please contact GRC Days at We will use commercially reasonable efforts to promptly determine and remedy the problem. If you have a GDPR DSR request, please contact GRC Days at

Governance, Risk, and Compliance (GRC) Days is a multi-day educational event for those interested in hearing from industry experts and customers, sharing insights into both ERP specific security best practices, as well as general security, risk, and compliance issues and resolutions.
© 2022 All Rights Reserved.