top of page

Gangkhar

Logo-g.png

Privacy Policy

1. Introduction

Gangkhar Inc. (“we,” “us,” or “our”) is a Delaware corporation providing artificial intelligence–based infrastructure for embedded insurance services

We enable our business partners (such as insurers, distributors, and technology platforms) to design, launch, and optimize protection solutions globally through a single intelligent platform. We do not provide services or sell products directly to consumers.

We are committed to protecting the privacy, security, and integrity of all information processed through our systems.

2. Scope

This Privacy Policy describes how we collect, use, share, and protect information when operating our business, including through:

  • Our corporate website at www.gangkhar.com

  • Business communications with our partners, clients, and vendors, and

  • Technology platforms, APIs, and AI systems operated by us.

This Policy does not apply to insurance customers or policyholders who interact directly with our partners. In those cases, our partners are the data controllers, and their respective privacy policies govern.

3. Information We Collect

We collect and process only the information necessary for our legitimate business operations, which may include:

  • Business contact data: names, email addresses, phone numbers, and professional titles of client and partner representatives.

  • Account and usage data: activity logs, API usage, authentication records, and system diagnostics.

  • Technical information: IP addresses, browser type, operating system, and device identifiers used for analytics and security.

  • Contractual and billing data: business identifiers, tax information, and related payment details (for corporate counterparties only).

We do not knowingly collect or process personal data of individual consumers or policyholders on our own behalf.

4. How We Use Information

We use collected data solely to:

  • Provide, maintain, and improve our AI and distribution infrastructure.

  • Manage business relationships and fulfill contractual obligations.

  • Monitor and secure our platforms and systems.

  • Conduct research and development, including AI model optimization.

  • Communicate with clients and partners; and

  • Comply with legal, regulatory, and audit requirements.

5. Legal Basis for Processing (GDPR Compliance)

When applicable under the EU General Data Protection Regulation (GDPR) or similar laws, we process information on one or more of the following legal bases:

  • Performance of a contract with our business partners.

  • Legitimate interests, such as maintaining service security and improving performance.

  • Compliance with legal obligations; or

  • Consent, where explicitly obtained.

6. Data Sharing and Disclosure

We may share information with:

  • Service providers supporting our operations (e.g., cloud hosting, analytics, communication tools);

  • Affiliates and subsidiaries within our corporate group.

  • Legal and regulatory authorities, when required by law; and

  • Business partners/TPA´s, strictly as necessary to deliver contracted services.

We do not sell, rent, or commercially trade any personal or business data.

7. International Data Transfers

As a U.S.-based company with global operations, we may transfer information to and from the United States or other jurisdictions where we and our partners operate.
We implement appropriate safeguards (such as EU Standard Contractual Clauses) to ensure that data remains protected according to applicable privacy laws.

8. Data Retention

We retain information only as long as necessary for the purposes outlined in this Policy or to meet legal, regulatory, or contractual requirements. Once data is no longer needed, it is securely deleted or anonymized.

9. Data Security

We apply administrative, technical, and physical measures to protect data from unauthorized access, alteration, or disclosure. These include encryption, role-based access controls, secure infrastructure, and regular monitoring.

10. Rights of Individuals

To the extent applicable under data protection laws, individuals whose personal data we process (such as representatives of our partners) have the right to:

  • Access and obtain a copy of their information.

  • Request correction or deletion;

  • Object to or restrict processing; and

  • Withdraw consent (where applicable).

Requests should be directed to:
📧 privacy@gangkhar.com

We will respond to all legitimate requests within the timeframes required by applicable law.

11. Cookies and Tracking

Our website may use cookies or similar technologies for functionality, analytics, and security. You can control cookie settings through your browser preferences.
We do not use cookies for advertising or tracking across unrelated websites.

12. Children’s Privacy

We do not provide services to, or knowingly collect data from, individuals under 18 years of age.

13. Changes to This Policy

We may update this Privacy Policy from time to time to reflect on operational or legal changes. The latest version will always be posted on this page, with the “Last Updated” date at the top.

14. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us at:

Gangkhar Inc.
Attn: Privacy Office
Email: privacy@gangkhar.com
Address: 8 The Green, Suite A, Dover, Delaware 19901, USA

bottom of page