Only limited personal data should be submitted, and only where it is necessary for account setup, onboarding, participation, identity, billing, conflict disclosure, visibility settings, or role review.
Appropriate personal data may include your name, professional email, country pathway, professional title, organization for context, sector background, areas of interest, billing contact details, and participation status. Additional information may be needed for specific role reviews, but it should be limited to what is necessary.
You should not submit unnecessary personal data about yourself or others. Do not submit personal addresses, identification numbers, passport scans, national IDs, health information, family details, political opinions, sensitive personal characteristics, client records, employee records, or other personal information unless specifically required through an approved and secure process.
You should not submit another person’s personal data without proper authority or consent.
GRA’s recordkeeping model depends on accurate participant identity, but it does not require unnecessary personal exposure. Personal data should be minimized, relevant, accurate, protected, and corrected when needed.
If sensitive personal information is submitted accidentally, report it through the official correction or support pathway so access can be reviewed and the record can be handled appropriately.
