OnTargetCompliance (“OTC”) provides a compliance automation platform that processes and stores customer data, including potentially confidential business information, employee (team member) data, and internal policies and documentation. As such, OTC acts as a data processor and, in certain contexts, a data controller, depending on how the platform is used.

​

This Privacy Policy is intended to outline how OTC collects, uses, stores, and safeguards information provided through the platform. Given the nature of compliance workflows, the data processed may include sensitive or regulated information, and OTC is committed to maintaining appropriate administrative, technical, and organizational safeguards aligned with applicable frameworks such as GDPR, UK GDPR, and SOC 2.

 

The information provided on this page is intended to offer a general overview of privacy considerations within the OTC platform and should not be interpreted as legal advice or a complete representation of all regulatory obligations that may apply to your organization. Each customer’s compliance requirements may vary depending on jurisdiction, industry, and use case.

​

Customers, partners, and consultants using OTC remain responsible for ensuring that their own privacy policies, notices, and data handling practices are compliant with applicable laws and regulations, particularly where they collect, input, or manage personal data within the platform.

​

We recommend that you seek qualified legal counsel to ensure that your organization’s privacy documentation and practices are appropriately tailored to your specific regulatory and operational requirements.

​