Disclaimer: This website is not an official GS1 publication and is currently in development. The content, mappings, and AI-generated responses are for testing and demonstration purposes only and should not be used for compliance decisions or official reporting. Always refer to official GS1 documentation and regulatory texts for authoritative information.
Last updated: January 2, 2026
Welcome to the Intelligent Standards Architect (ISA), operated by GS1 Netherlands. We are committed to protecting your personal data and respecting your privacy. This privacy policy explains how we collect, use, and safeguard your information when you use our platform.
ISA is designed to help organizations navigate ESG regulations and GS1 standards. We process minimal personal data necessary to provide our services and comply with applicable data protection laws, including the General Data Protection Regulation (GDPR).
The data controller responsible for your personal data is:
We collect and process the following types of information:
When you create an account or log in via Manus OAuth, we collect:
We automatically collect information about how you use ISA:
When you use ISA's features, we store:
We use your personal data for the following purposes:
To provide and maintain ISA's core functionality, including regulation tracking, standards mapping, AI-powered analysis, and personalized recommendations.
Legal basis: Performance of contract (GDPR Article 6(1)(b))
To send you important updates about regulations, system notifications, and responses to your inquiries.
Legal basis: Legitimate interests (GDPR Article 6(1)(f))
To analyze usage patterns, improve our services, and develop new features based on aggregated, anonymized data.
Legal basis: Legitimate interests (GDPR Article 6(1)(f))
To protect against fraud, ensure platform security, and comply with legal obligations.
Legal basis: Legal obligation (GDPR Article 6(1)(c)) and legitimate interests (GDPR Article 6(1)(f))
We do not sell your personal data. We may share your information only in the following circumstances:
We work with trusted third-party service providers who assist in operating ISA:
All service providers are contractually bound to protect your data and use it only for the purposes we specify.
We may disclose your information if required by law, court order, or governmental authority, or to protect our rights, property, or safety.
We retain your personal data only as long as necessary for the purposes outlined in this policy:
After the retention period, we securely delete or anonymize your data.
Under GDPR, you have the following rights regarding your personal data:
You can request a copy of the personal data we hold about you.
You can request correction of inaccurate or incomplete data.
You can request deletion of your personal data ("right to be forgotten").
You can request a copy of your data in a structured, machine-readable format.
You can object to processing based on legitimate interests.
Where processing is based on consent, you can withdraw it at any time.
To exercise any of these rights, please contact us at [email protected]. We will respond to your request within 30 days.
We implement appropriate technical and organizational measures to protect your personal data:
Your data is primarily stored and processed within the European Economic Area (EEA). If we transfer data outside the EEA, we ensure adequate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission.
ISA uses minimal cookies necessary for functionality:
We do not use advertising or tracking cookies. You can manage cookie preferences in your browser settings.
ISA is not intended for individuals under 16 years of age. We do not knowingly collect personal data from children. If you believe we have inadvertently collected data from a child, please contact us immediately.
We may update this privacy policy from time to time to reflect changes in our practices or legal requirements. We will notify you of significant changes by email or through a prominent notice on ISA. The "Last updated" date at the top indicates when the policy was last revised.
If you have questions about this privacy policy or how we handle your data, please contact us:
GS1 Netherlands
Email: [email protected]
Phone: +31 (0)33 450 11 00
Address: Stationsplein 9K, 3818 LE Amersfoort, The Netherlands
You also have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) if you believe we have not handled your data appropriately.