How FreeGCP uses cookies and similar technologies to run the platform, protect your account, and improve the learning experience.
Under GDPR and CCPA regulations, we are required to obtain your explicit consent before placing non-essential cookies on your device. Essential cookies required for basic website functionality are exempt from this requirement but are listed for transparency.
By continuing to use our website, you acknowledge that you have read and understood this comprehensive Cookie Policy. You can manage your preferences at any time through your account settings.
Cookies are small text files (typically 4KB or less) that websites place on your device when you visit them. They contain unique identifiers and sometimes other information that helps websites recognize your browser across visits. This comprehensive policy explains in detail how FreeGCP.com ("we", "us", "our") uses cookies and similar tracking technologies in compliance with global privacy regulations.
Similar Technologies: We also use Local Storage, Session Storage, IndexedDB, and ETags which function similarly to cookies. This policy covers all such technologies. Web beacons and pixels may be used for analytics but do not store data on your device.
Under the General Data Protection Regulation (GDPR) and the ePrivacy Directive (Cookie Law), we process cookie data based on the following legal grounds:
We conduct Legitimate Interest Assessments (LIAs) for all processing under Article 6(1)(f) and maintain Records of Processing Activities (RoPA) as required under Article 30.
Under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA), we provide:
We comply with Lei Geral de Proteção de Dados requirements including consent, purpose limitation, and data subject rights for Brazilian residents.
We follow Personal Information Protection and Electronic Documents Act principles including accountability, consent, and limiting collection.
Post-Brexit, we maintain compliance with UK GDPR which mirrors EU GDPR requirements with UK-specific guidance from the ICO.
We adhere to Protection of Personal Information Act requirements for lawful processing and data subject participation.
IMPORTANT: We perform quarterly cookie audits to ensure this information remains accurate. Last audit: September 21, 2025
Purpose:
Essential for website operation, security, and legal compliance. Cannot be disabled.
Legal Basis:
Legitimate Interest (GDPR Art. 6(1)(f))
Cookie Examples:
Data Collected:
Deleted when browser closes or after 12 months of inactivity
None - strictly first-party only
Purpose:
Monitor website performance, identify technical issues, and improve user experience through aggregated analytics.
Legal Basis:
Consent (GDPR Art. 6(1)(a))
Cookie Examples:
Data Collected:
_ga: 2 years, _gid: 24 hours, custom: 13 months
Analytics providers (see Data Processing Agreements)
Purpose:
Remember your choices and provide enhanced, personalized features without identifying you.
Legal Basis:
Consent (GDPR Art. 6(1)(a))
Cookie Examples:
Data Collected:
6-12 months from last interaction
Limited to essential service providers under strict DPAs
Purpose:
Measure advertising effectiveness, deliver relevant content, and prevent showing repetitive ads. We do NOT sell your data.
Legal Basis:
Consent (GDPR Art. 6(1)(a)) / Legitimate Interest for limited analytics
Cookie Examples:
Data Collected:
90 days for conversion data, up to 2 years for attribution
Google Ads, Facebook (Meta), LinkedIn - all under Standard Contractual Clauses
We implement security best practices for all cookies:
Data Processing Agreements (DPAs): We maintain executed DPAs with all third-party services that process personal data on our behalf. These agreements ensure GDPR Article 28 compliance and include Standard Contractual Clauses (SCCs) for international transfers where required.
We carefully vet all third-party services for privacy compliance and data security. Each service listed below has been assessed for GDPR compliance, data minimization practices, and security measures:
Purpose:
Secure user authentication, session management, and access control
Cookies Set:
Data Shared:
United States, EU (adequacy decision)
Active account + 90 days
Account deletion removes all data
Yes - Data Processing Agreement in place
Purpose:
Anonymous website performance monitoring and Core Web Vitals tracking
Cookies Set:
Data Shared:
Global CDN (primarily US/EU)
14 months
Opt-out via cookie settings
Yes - DPA with SCCs in place
Purpose:
Secure payment processing, fraud prevention, and PCI DSS compliance
Cookies Set:
Data Shared:
United States (Privacy Shield certified)
As required by law (typically 7 years)
Data deletion requests via support
Yes - DPA with enhanced security measures
Purpose:
DDoS protection, bot mitigation, and content delivery optimization
Cookies Set:
Data Shared:
Global network (data localization available)
24 hours for logs
Limited - essential for security
Yes - Enterprise agreement with GDPR compliance
Our third-party services may use subprocessors. We maintain a current list of all subprocessors and notify users of changes via our privacy updates. Key subprocessors include:
If you are located in the European Union, European Economic Area, or United Kingdom, you have the following rights regarding cookie data under GDPR Articles 15-22:
You can request a copy of all cookie data we hold about you, including:
You can request correction of inaccurate cookie data or completion of incomplete data. This is limited as cookies typically contain identifiers rather than descriptive personal data.
You can request deletion of cookie data when:
You can request we limit cookie processing while disputes are resolved regarding accuracy, lawfulness, or our legitimate interests.
You can receive your cookie data in a structured, commonly used, machine-readable format (JSON/CSV) and transmit it to another controller.
You can object to cookie processing based on legitimate interests or for direct marketing. We must stop unless we demonstrate compelling legitimate grounds.
You have the right not to be subject to decisions based solely on automated cookie data processing that significantly affects you.
The California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA) provide California residents with specific rights regarding personal information collected through cookies:
You can request disclosure of:
You can request deletion of personal information collected via cookies, subject to exceptions:
You have the right to opt-out of the "sale" or "sharing" of personal information:
WE DO NOT SELL PERSONAL INFORMATION
However, some cookie data sharing might be considered a "sale" under CCPA's broad definition.
We will not discriminate against you for exercising privacy rights. You will not experience:
Request correction of inaccurate personal information in our cookie data.
Limit use and disclosure of sensitive personal information collected via cookies.
Methods to Submit Requests:
Verification Process: We verify identity through account authentication or government ID to prevent fraud.
Response Time: 45 days (extendable by additional 45 days with notice)
Annual Privacy Rights Metrics: As required by CCPA, we disclose that in the previous calendar year, we received 0 verifiable consumer requests. We maintain metrics on request types, response times, and outcomes.
Disabling essential cookies may prevent you from accessing certain features of our platform, including course content and progress tracking. We recommend keeping essential cookies enabled for the best learning experience.
You can manage your cookie preferences directly on our platform:
Cookie data may be transferred internationally as part of our global service delivery. We ensure all transfers comply with applicable data protection laws through appropriate safeguards:
For transfers to US-based services certified under the new framework replacing Privacy Shield.
EU Commission-approved clauses ensuring adequate protection for data transfers outside the EEA.
Transfers to countries deemed adequate by the EU Commission (UK, Canada, Japan, etc.)
For transfers within multinational organizations with approved internal policies.
Following Schrems II requirements, we conduct assessments for each international transfer:
You have the right to:
Under GDPR and similar laws, valid consent for non-essential cookies must be:
First-time visitors see a clear banner with options to accept all, reject non-essential, or customize preferences.
Separate toggles for each cookie category allow specific consent choices.
We maintain records of consent including timestamp, version, and specific categories accepted.
You can withdraw cookie consent at any time. This is as easy as giving consent:
Note: Withdrawing consent doesn't affect lawfulness of processing before withdrawal.
We do NOT use "cookie walls" that require accepting non-essential cookies to access our service. You can use FreeGCP with only essential cookies enabled, though some features may be limited:
Age Restrictions and Protections
FreeGCP is designed for adult learners and professionals. We do not knowingly collect cookie data from children under 16 (or applicable age of consent in your jurisdiction). If we discover such collection, we immediately delete the data.
If you believe your child has accessed our services without permission:
We comply with the Children's Online Privacy Protection Act by not collecting data from users under 13 without verifiable parental consent.
For EU residents, we apply enhanced protections for users under 16, including no profiling or marketing cookies for detected minors.
We conduct comprehensive cookie audits to ensure ongoing compliance:
Latest Audit Summary
Last audit completed: September 6, 2025
We maintain a detailed inventory of all cookies including:
You have full control over cookies and how we use them. Your rights include:
We may update this Cookie Policy from time to time to reflect changes in our practices or for legal, operational, or regulatory reasons. When we make changes:
If you have any questions about our Cookie Policy or how we use cookies, we're here to help:
For questions specifically about cookies and privacy preferences
Contact Privacy TeamYour privacy matters to us. We're committed to transparency and giving you control over your data.
LIMITATION OF LIABILITY
TO THE MAXIMUM EXTENT PERMITTED BY LAW, FREEGCP AND ITS AFFILIATES, OFFICERS, EMPLOYEES, AGENTS, PARTNERS, AND LICENSORS WILL NOT BE LIABLE FOR ANY INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, OR PUNITIVE DAMAGES, OR ANY LOSS OF PROFITS OR REVENUES, WHETHER INCURRED DIRECTLY OR INDIRECTLY, OR ANY LOSS OF DATA, USE, GOODWILL, OR OTHER INTANGIBLE LOSSES RESULTING FROM YOUR USE OF COOKIES OR OUR SERVICES.
IN NO EVENT SHALL OUR AGGREGATE LIABILITY FOR ALL CLAIMS RELATED TO COOKIES OR THE SERVICES EXCEED ONE DOLLAR ($1.00 USD).
NO WARRANTIES
THE COOKIE FUNCTIONALITY AND RELATED SERVICES ARE PROVIDED "AS IS" AND "AS AVAILABLE" WITHOUT WARRANTY OF ANY KIND. WE DISCLAIM ALL WARRANTIES, EXPRESS OR IMPLIED, INCLUDING WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, AND NON-INFRINGEMENT.
INDEMNIFICATION
You agree to indemnify, defend, and hold harmless FreeGCP from any claims, losses, damages, liabilities, including legal fees and expenses, arising out of your use or misuse of cookies, violation of this policy, or violation of any third-party rights.
GOVERNING LAW & ARBITRATION
This Cookie Policy is governed by the laws of the State of California, USA. Any disputes must be resolved through binding arbitration in California in accordance with the American Arbitration Association rules. YOU WAIVE YOUR RIGHT TO A JURY TRIAL AND TO PARTICIPATE IN CLASS ACTIONS.
How FreeGCP uses cookies and similar technologies to run the platform, protect your account, and improve the learning experience.
Under GDPR and CCPA regulations, we are required to obtain your explicit consent before placing non-essential cookies on your device. Essential cookies required for basic website functionality are exempt from this requirement but are listed for transparency.
By continuing to use our website, you acknowledge that you have read and understood this comprehensive Cookie Policy. You can manage your preferences at any time through your account settings.
Cookies are small text files (typically 4KB or less) that websites place on your device when you visit them. They contain unique identifiers and sometimes other information that helps websites recognize your browser across visits. This comprehensive policy explains in detail how FreeGCP.com ("we", "us", "our") uses cookies and similar tracking technologies in compliance with global privacy regulations.
Similar Technologies: We also use Local Storage, Session Storage, IndexedDB, and ETags which function similarly to cookies. This policy covers all such technologies. Web beacons and pixels may be used for analytics but do not store data on your device.
Under the General Data Protection Regulation (GDPR) and the ePrivacy Directive (Cookie Law), we process cookie data based on the following legal grounds:
We conduct Legitimate Interest Assessments (LIAs) for all processing under Article 6(1)(f) and maintain Records of Processing Activities (RoPA) as required under Article 30.
Under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA), we provide:
We comply with Lei Geral de Proteção de Dados requirements including consent, purpose limitation, and data subject rights for Brazilian residents.
We follow Personal Information Protection and Electronic Documents Act principles including accountability, consent, and limiting collection.
Post-Brexit, we maintain compliance with UK GDPR which mirrors EU GDPR requirements with UK-specific guidance from the ICO.
We adhere to Protection of Personal Information Act requirements for lawful processing and data subject participation.
IMPORTANT: We perform quarterly cookie audits to ensure this information remains accurate. Last audit: September 21, 2025
Purpose:
Essential for website operation, security, and legal compliance. Cannot be disabled.
Legal Basis:
Legitimate Interest (GDPR Art. 6(1)(f))
Cookie Examples:
Data Collected:
Deleted when browser closes or after 12 months of inactivity
None - strictly first-party only
Purpose:
Monitor website performance, identify technical issues, and improve user experience through aggregated analytics.
Legal Basis:
Consent (GDPR Art. 6(1)(a))
Cookie Examples:
Data Collected:
_ga: 2 years, _gid: 24 hours, custom: 13 months
Analytics providers (see Data Processing Agreements)
Purpose:
Remember your choices and provide enhanced, personalized features without identifying you.
Legal Basis:
Consent (GDPR Art. 6(1)(a))
Cookie Examples:
Data Collected:
6-12 months from last interaction
Limited to essential service providers under strict DPAs
Purpose:
Measure advertising effectiveness, deliver relevant content, and prevent showing repetitive ads. We do NOT sell your data.
Legal Basis:
Consent (GDPR Art. 6(1)(a)) / Legitimate Interest for limited analytics
Cookie Examples:
Data Collected:
90 days for conversion data, up to 2 years for attribution
Google Ads, Facebook (Meta), LinkedIn - all under Standard Contractual Clauses
We implement security best practices for all cookies:
Data Processing Agreements (DPAs): We maintain executed DPAs with all third-party services that process personal data on our behalf. These agreements ensure GDPR Article 28 compliance and include Standard Contractual Clauses (SCCs) for international transfers where required.
We carefully vet all third-party services for privacy compliance and data security. Each service listed below has been assessed for GDPR compliance, data minimization practices, and security measures:
Purpose:
Secure user authentication, session management, and access control
Cookies Set:
Data Shared:
United States, EU (adequacy decision)
Active account + 90 days
Account deletion removes all data
Yes - Data Processing Agreement in place
Purpose:
Anonymous website performance monitoring and Core Web Vitals tracking
Cookies Set:
Data Shared:
Global CDN (primarily US/EU)
14 months
Opt-out via cookie settings
Yes - DPA with SCCs in place
Purpose:
Secure payment processing, fraud prevention, and PCI DSS compliance
Cookies Set:
Data Shared:
United States (Privacy Shield certified)
As required by law (typically 7 years)
Data deletion requests via support
Yes - DPA with enhanced security measures
Purpose:
DDoS protection, bot mitigation, and content delivery optimization
Cookies Set:
Data Shared:
Global network (data localization available)
24 hours for logs
Limited - essential for security
Yes - Enterprise agreement with GDPR compliance
Our third-party services may use subprocessors. We maintain a current list of all subprocessors and notify users of changes via our privacy updates. Key subprocessors include:
If you are located in the European Union, European Economic Area, or United Kingdom, you have the following rights regarding cookie data under GDPR Articles 15-22:
You can request a copy of all cookie data we hold about you, including:
You can request correction of inaccurate cookie data or completion of incomplete data. This is limited as cookies typically contain identifiers rather than descriptive personal data.
You can request deletion of cookie data when:
You can request we limit cookie processing while disputes are resolved regarding accuracy, lawfulness, or our legitimate interests.
You can receive your cookie data in a structured, commonly used, machine-readable format (JSON/CSV) and transmit it to another controller.
You can object to cookie processing based on legitimate interests or for direct marketing. We must stop unless we demonstrate compelling legitimate grounds.
You have the right not to be subject to decisions based solely on automated cookie data processing that significantly affects you.
The California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA) provide California residents with specific rights regarding personal information collected through cookies:
You can request disclosure of:
You can request deletion of personal information collected via cookies, subject to exceptions:
You have the right to opt-out of the "sale" or "sharing" of personal information:
WE DO NOT SELL PERSONAL INFORMATION
However, some cookie data sharing might be considered a "sale" under CCPA's broad definition.
We will not discriminate against you for exercising privacy rights. You will not experience:
Request correction of inaccurate personal information in our cookie data.
Limit use and disclosure of sensitive personal information collected via cookies.
Methods to Submit Requests:
Verification Process: We verify identity through account authentication or government ID to prevent fraud.
Response Time: 45 days (extendable by additional 45 days with notice)
Annual Privacy Rights Metrics: As required by CCPA, we disclose that in the previous calendar year, we received 0 verifiable consumer requests. We maintain metrics on request types, response times, and outcomes.
Disabling essential cookies may prevent you from accessing certain features of our platform, including course content and progress tracking. We recommend keeping essential cookies enabled for the best learning experience.
You can manage your cookie preferences directly on our platform:
Cookie data may be transferred internationally as part of our global service delivery. We ensure all transfers comply with applicable data protection laws through appropriate safeguards:
For transfers to US-based services certified under the new framework replacing Privacy Shield.
EU Commission-approved clauses ensuring adequate protection for data transfers outside the EEA.
Transfers to countries deemed adequate by the EU Commission (UK, Canada, Japan, etc.)
For transfers within multinational organizations with approved internal policies.
Following Schrems II requirements, we conduct assessments for each international transfer:
You have the right to:
Under GDPR and similar laws, valid consent for non-essential cookies must be:
First-time visitors see a clear banner with options to accept all, reject non-essential, or customize preferences.
Separate toggles for each cookie category allow specific consent choices.
We maintain records of consent including timestamp, version, and specific categories accepted.
You can withdraw cookie consent at any time. This is as easy as giving consent:
Note: Withdrawing consent doesn't affect lawfulness of processing before withdrawal.
We do NOT use "cookie walls" that require accepting non-essential cookies to access our service. You can use FreeGCP with only essential cookies enabled, though some features may be limited:
Age Restrictions and Protections
FreeGCP is designed for adult learners and professionals. We do not knowingly collect cookie data from children under 16 (or applicable age of consent in your jurisdiction). If we discover such collection, we immediately delete the data.
If you believe your child has accessed our services without permission:
We comply with the Children's Online Privacy Protection Act by not collecting data from users under 13 without verifiable parental consent.
For EU residents, we apply enhanced protections for users under 16, including no profiling or marketing cookies for detected minors.
We conduct comprehensive cookie audits to ensure ongoing compliance:
Latest Audit Summary
Last audit completed: September 6, 2025
We maintain a detailed inventory of all cookies including:
You have full control over cookies and how we use them. Your rights include:
We may update this Cookie Policy from time to time to reflect changes in our practices or for legal, operational, or regulatory reasons. When we make changes:
If you have any questions about our Cookie Policy or how we use cookies, we're here to help:
For questions specifically about cookies and privacy preferences
Contact Privacy TeamYour privacy matters to us. We're committed to transparency and giving you control over your data.
LIMITATION OF LIABILITY
TO THE MAXIMUM EXTENT PERMITTED BY LAW, FREEGCP AND ITS AFFILIATES, OFFICERS, EMPLOYEES, AGENTS, PARTNERS, AND LICENSORS WILL NOT BE LIABLE FOR ANY INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, OR PUNITIVE DAMAGES, OR ANY LOSS OF PROFITS OR REVENUES, WHETHER INCURRED DIRECTLY OR INDIRECTLY, OR ANY LOSS OF DATA, USE, GOODWILL, OR OTHER INTANGIBLE LOSSES RESULTING FROM YOUR USE OF COOKIES OR OUR SERVICES.
IN NO EVENT SHALL OUR AGGREGATE LIABILITY FOR ALL CLAIMS RELATED TO COOKIES OR THE SERVICES EXCEED ONE DOLLAR ($1.00 USD).
NO WARRANTIES
THE COOKIE FUNCTIONALITY AND RELATED SERVICES ARE PROVIDED "AS IS" AND "AS AVAILABLE" WITHOUT WARRANTY OF ANY KIND. WE DISCLAIM ALL WARRANTIES, EXPRESS OR IMPLIED, INCLUDING WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, AND NON-INFRINGEMENT.
INDEMNIFICATION
You agree to indemnify, defend, and hold harmless FreeGCP from any claims, losses, damages, liabilities, including legal fees and expenses, arising out of your use or misuse of cookies, violation of this policy, or violation of any third-party rights.
GOVERNING LAW & ARBITRATION
This Cookie Policy is governed by the laws of the State of California, USA. Any disputes must be resolved through binding arbitration in California in accordance with the American Arbitration Association rules. YOU WAIVE YOUR RIGHT TO A JURY TRIAL AND TO PARTICIPATE IN CLASS ACTIONS.