Privacy Policy

GUR LAVI CORP. (GLC) values and prioritizes everyone’s right to privacy while providing valuable, efficient, and innovative customer service. We believe that ensuring data privacy allows information to flow freely and promotes innovation. By only processing necessary information from our customers in accordance with Republic Act No. 10173, otherwise known as the Data Privacy Act of 2012 (DPA), we can meet their needs and exceed expectations.

GLC has implemented policies and measures to ensure that all the personal information it processes adhere to the general principles of transparency, legitimate purpose, and proportionality in accordance with the DPA.


This Privacy Statement specifies how GLC processes and protects the personal information of this website’s users and visitors. This Privacy Statement may be updated from time to time, and all changes will be published on this website.


We may collect your personal information in order to fulfill our duty as your preferred provider. These collection processes may vary depending on the communication we establish with you. Below are some of the process we utilization to collect personal information:

  • Via face to face / Online Video conferencing meeting. GLC’s Sales Representatives may ask for some of your personal information for us to establish our customer database in order to ensure that we address your request and deliver the best package and service we can offer.
  • Via Recorded Calls. Phone calls with GLC may be recorded for quality assurance and security purposes as requested by the data subject.
  • Via Deployment and Implementation Templates. GLC Implementation team will collect your basic contact details via email and/or google sheets during product installation to configure necessary setups in the Telavi Cloud Platform.
  • Via Gravatar Enablement. Users of TeLavi Platform may enable the gravatar functionality to retrieve an avatar image for their TeLavi Profile. Only when Gravatar use is enabled, we hash each contact’s email address and send it to Gravatar to try and retrieve an avatar image. MD5 hashes cannot be directly or indirectly attributed to any person or persons, and we only send the MD5 hash to Gravatar, never the email address in plain text.
  • Via Messenger Discussion. GLC utilizes the use of Facebook Messenger platform to discuss medical related topics with current and potential clients under our Medical Sector. Conversation logs are deleted outright after queries and concerns are already addressed and closed.
  • Via Online Lead Forms. GLC websites have online lead forms you can utilize in order for us to have quick access to the requirements or ideas you want to discuss with our team. The information we require on our online lead forms are limited only to what we need in order to address your needs timely and appropriately.
  • Via Event Attendance Questionnaires. GLC may require you to enter your basic contact information as proof of your attendance in our events.

Unless otherwise authorized by law, we shall only process personal information that have been voluntarily provided to us through this website after the consent of the Data Subject has been obtained, for the following purposes:

  • Addressing inquiries or resolving complaints from customers by providing clear solutions and recommendations to inquiries involving products and services.
  • Maintaining customer database in order to provide personalized services and maintain the integrity of all personal information.
  • To activate the product and service paid by the customers.
  • Sending announcements, promotions, advertisements and newsletters for upcoming events, products, and other relevant updates.
  • Conducting feedback and surveys that will help us meet our customers’ needs.
  • For research analysis which may be used to develop system security and future marketing strategies.
  • Providing efficient Technical Support through efficient, applicable, and simple troubleshooting solutions.
  • To ensure adherence with laws, rules, and regulations imposed by the government, including but not limited to the DPA, Anti-Money Laundering Act, and Credit Information Systems Act.

GLC implements adequate security measures to ensure the confidentiality and/or integrity of personal information. We also ensure that the following personal information that we collect are only those that are necessary and proportionate to the products and services that we offer or that a customer may avail of:

Classification Personal Information Product or Service
Basic Contact Information Name, Business Address, Business Email and Business Contact Details. Telecommunication Products
Health Related Information Name, Business Address, Business Email, Business Contact Details, and Health Conditions* Medical Products

* Sensitive Personal Information are processed under on a higher level of security.


We may also use cookies, web beacons, small data text files, or similar technologies to identify your device and record your preferences, with your consent. The integrity of your personal information help us improve our products and services. Thus, we encourage you to update your personal information from time to time.

We shall process personal information only for the following specified period based on the type of information and the purpose for which it is being processed:

Type of Personal Identifiable Information (PIIs) Sample PIIs Retention Period
Basic Contact Information Name, Business Address, Business Email and Business Contact Details. 5 years after inactivity


Curriculum Vitae, Application Forms

(filed in 201 file)

10 years after employee separation
Health Related Information Medical Records

(filed in 201 file)

Health Conditions

(Online Discussion)

Outright Deletion after order fulfillment


We shall delete all personal information, even prior to the above-mentioned retention periods, upon the data subject’s written request.


Personal information processed through this website shall not be shared outside of GLC except when required or mandated by law, the government or with your express written consent.


GLC shall store and maintain your personal information only during the established retention timeline. Personal information will be disposed of upon the expiration of the retention period, or upon the data subject’s written request.


Under the DPA, the data subject, shall have the right to:

  • Request for a copy of personal information being processed;
  • Correct or update personal information in our database;
  • Object or limit us the use of any personal information;
  • File a complaint.
  • Delete your personal information; or
  • Withdraw your consent.

Any request shall be made in writing and submitted via email to GLC’s Data Protection Officer at


The Company implements adequate security measures to protect any information it processes. We use a variety of industry-standard security technologies and procedures from unauthorized access, use, or disclosure. Security measures are as follows but not limited to:

  • Access Security – GLC implements security measures to control both logical and physical access to ensure that information collected is only accessible to authorized personnel only. GLC strictly implements the “need to know” principle in providing access to systems and applications.
  • Change Management – GLC established a stringent change management control and process to ensure that all changes in the system undergo a series of testing and quality assurance checks.
  • Cryptography Controls – GLC implements industry compliant configuration on the cryptography controls covering both data in transit and data at rest.
  • Backup and Restoration – GLC performs regular backup and restoration testing to ensure availability of data and business continuity in case of fortuitous events.
  • Technical Vulnerability Management – GLC established technical vulnerability management guidelines and processes to ensure that critical vulnerability exploits (CVEs) are handled timely and appropriately.
  • Secured APIs in SMS and Call functions – GLC ensures that messages and calls initiated by the data subjects to its contacts via Telavi platform are sent and received securely via Telavi API. No personal identifiable information (PIIs) are stored or saved in the API. The basic contact information collected by GLC are stored in GLC’s database and is only accessible to authorized GLC employees. TeLavi stores only the phone number and pertinent metadata so as to be compliant with all applicable laws and regulations, and TeLavi does not share this data with any advertisers or third parties under any circumstances. A user can revoke phone contact access on his/her mobile device at any time, and his/her app experience is not hindered or interrupted.

GLC will not tolerate the use of our network that violates the law, which shall include but not be limited to photo or video voyeurism, child pornography, and all other acts that are penalized by law.

If you have any privacy related queries, updates, and concerns, you can contact our data protection officer at:

GLC Data Protection Officer


220 Wilson St., San Juan City 1500


Updated as of 17 January 2022

Ready to try TeLavi CONNECT?

  • Redefine how your current voice platform is used
  • Telavi Connect can be evaluated without disruption
  • Discover the boost your team workers get from a new way of collaboration