Selecciona un país ▼
Global
Ecuador
Colombia
Bolivia
Panamá
R. Dominicana
Costa Rica
Paraguay
Perú
Guatemala
El Salvador
España
Francia
Angola
SISTEMA DE GESTIÓN
POLÍTICAS DE GURUSOFT
Políticas Globales
Versión: 006
Vigente desde: 20/05/2026
MARCO GENERAL DEL SISTEMA INTEGRADO DE GESTIÓN (SIG)
GuruSoft, como empresa dedicada al desarrollo de soluciones tecnológicas, establece un Sistema Integrado de Gestión (SIG) que integra la gestión de la seguridad de la información y la calidad, como un marco para dirigir y controlar de manera efectiva sus procesos y servicios.
El SIG se fundamenta en la protección de la información, la calidad del servicio y la satisfacción del cliente, alineado con el contexto organizacional, las necesidades de las partes interesadas y los objetivos estratégicos de la organización.
En este sentido, GuruSoft establece los siguientes lineamientos para la gestión del SIG:
- Se identifican, analizan y tratan de manera continua los riesgos de seguridad de la información y los riesgos y oportunidades del negocio, manteniéndolos en niveles aceptables.
- Se establecen, implementan y revisan periódicamente los objetivos del Sistema Integrado de Gestión, alineados con la presente política.
- Se promueve la formación, concienciación y cultura organizacional en materia de calidad y seguridad de la información.
- Se identifican y cumplen los requisitos legales, regulatorios y contractuales aplicables, incluyendo los relacionados con protección de datos personales.
- Se garantiza la protección de los activos de información, asegurando la confidencialidad, integridad y disponibilidad.
- Se establecen y mantienen estrategias de continuidad del negocio, para asegurar la disponibilidad de los servicios.
- Se promueve la mejora continua del SIG, mediante auditorías, indicadores, revisiones por la Dirección y gestión de acciones correctivas.
El alcance y los objetivos del Sistema Integrado de Gestión se encuentran definidos en los documentos:
GS-SIG-DI017 – Alcance del Sistema Integrado de Gestión
GS-SIG-DI006 – Objetivos del Sistema Integrado de Gestión
POLÍTICA DE SEGURIDAD DE LA INFORMACIÓN
GuruSoft, como empresa dedicada al desarrollo de soluciones tecnológicas, tiene como propósito ofrecer servicios confiables, innovadores y seguros, atendiendo las necesidades de sus clientes con altos estándares de calidad, cumplimiento y protección de la información.
Considerando esto, la seguridad de la información es un pilar fundamental para garantizar la confianza de nuestro clientes, alianzas y partes interesadas; por ello, la empresa establece, implementa, mantiene y mejora un Sistema de Gestión de Seguridad de la Información (SGSI), con el fin de:
- Proteger la confidencialidad, integridad y disponibilidad de la información.
- Promover una cultura de seguridad y buenas prácticas entre todos los colaboradores y otras partes involucradas.
- Prevenir y gestionar riesgos de seguridad de la información
- Garantizar la continuidad del servicio.
Asegurar el cumplimiento de los requisitos legales, regulatorios y contractuales aplicables.
POLÍTICA DE CALIDAD
GuruSoft se compromete a diseñar, desarrollar, operar y mejorar continuamente el servicio de facturación electrónica, asegurando que cumple con los requisitos del cliente, los requisitos legales y contractuales aplicables, y los estándares de calidad definidos por la organización.
La gestión de la calidad es un elemento estratégico para:
- Incrementar la satisfacción del cliente.
- Asegurar la disponibilidad y confiabilidad del servicio.
- Mejorar la eficiencia de los procesos.
- Fortalecer la reputación y posicionamiento de GuruSoft en el mercado.
SISTEMA DE GESTIÓN
POLÍTICA DE COOKIES DE PÁGINA WEB GURUSOFT
Código: GS-SIG-PO020
Tipo Doc.: Política
Clasificación: Pública
Versión: 001
Fecha: 2026-05-21
GURUSOFT se caracteriza por cumplir la normatividad vigente en todos los aspectos, es así como cumple las exigencias de la Ley Estatutaria 1581 de 2012 y sus decretos reglamentarios.
Solo hacemos tratamiento a datos personales necesarios para cumplir nuestra misión empresarial. Datos personales de empleados, ex empleados, candidatos a empleo para cumplir con los procesos de selección, ejecución del contrato laboral según las disposiciones de la ley. También tratamos datos de contacto laboral de clientes potenciales y vigentes.
Cabe anotar que los Titulares de datos pueden autorizar o no el tratamiento de datos sensibles que eventualmente se pudiesen recolectar tales como datos de salud, datos biométricos (imágenes, videos, huella dactilar), entre otros.
Damos diferentes tipos de tratamiento a los datos personales, por ejemplo: recolección, almacenamiento, actualización, gestión, supresión, entre otros necesarios para cumplir las exigencias de la empresa y la normatividad vigente.
Nuestros titulares de datos personales tienen derecho a conocer, actualizar, rectificar, solicitar supresión, solicitar prueba de su autorización, revocar la autorización, Abstenerse de responder las preguntas sobre datos sensibles o datos de niñas y niños y adolescentes. Así como a hacer consultas y trámites de Protección de Datos Personales de forma gratuita.
El Titular tiene derecho a presentar ante la Superintendencia de Industria y Comercio (SIC) quejas por infracciones a lo dispuesto en la normatividad vigente. Se sugiere que antes de dar este paso haga la gestión en los canales dispuestos por GURUSOFT tal como lo indica la Ley.
En nuestra página web www.guru-soft.com mantendremos actualizados este aviso de privacidad y la Política de Privacidad.
Atendemos las CONSULTAS sobre sus derechos y reclamos por Protección de Datos Personales vía email en habeasdata.co@guru-soft.com o en el número telefónico 3905667 Ext 1001 de Bogotá D.C.
Ir al formulario
Políticas para Latinoamérica
POLÍTICA DE TRATAMIENTO DE DATOS PERSONALES
Código: CO-SIG-PO010
Tipo Doc.: Política
Clasificación: Pública
Versión: 005
Fecha: 2022-05-30
Página 6 de 18
Manual de Procedimientos De Prevención del Lavado de Activos y Financiación del Terrorismo
SISTEMA DE GESTIÓN
POLÍTICA DE TRATAMIENTO DE DATOS PERSONALES
Código: EC-SIG-PO012
Versión: 001
Tipo Doc.: Política
Fecha: 2022-05-30
Clasificación: Pública
Página 1 de 20
POLÍTICA DE TRATAMIENTO DE DATOS PERSONALES
Código: CO-SIG-PO010
Tipo Doc.: Política
Clasificación: Pública
Versión: 005
Fecha: 2022-05-30
Página 6 de 18
SISTEMA DE GESTIÓN
POLÍTICA DE TRATAMIENTO DE DATOS PERSONALES
Código: PA-SIG-PO011
Versión: 001
Tipo Doc.: Política
Fecha: 2022-05-30
Clasificación: Pública
Página 1 de 19
SISTEMA DE GESTIÓN
POLÍTICA DE TRATAMIENTO DE DATOS PERSONALES
Código: DO-SIG-PO015
Versión: 001
Tipo Doc.: Política
Fecha: 2022-05-30
Clasificación: Pública
Página 1 de 19
SISTEMA DE GESTIÓN
POLÍTICA DE TRATAMIENTO DE DATOS PERSONALES
Código: CR-SIG-PO014
Versión: 001
Tipo Doc.: Política
Fecha: 2022-05-30
Clasificación: Pública
Página 1 de 18
SISTEMA DE GESTIÓN
POLÍTICA DE TRATAMIENTO DE DATOS PERSONALES
Código: PE-SIG-PO013
Versión: 001
Tipo Doc.: Política
Fecha: 2022-05-30
Clasificación: Pública
Página 1 de 18
SISTEMA DE GESTIÓN
POLÍTICA DE TRATAMIENTO DE DATOS PERSONALES
Código: SV-SIG-PO016
Versión: 001
Tipo Doc.: Política
Fecha: 2023-08-30
Clasificación: Pública
Página 1 de 18
POLÍTICA DE TRATAMIENTO DE DATOS PERSONALES
Código: CO-SIG-PO010
Tipo Doc.: Política
Clasificación: Pública
Versión: 005
Fecha: 2022-05-30
Página 6 de 18
POLÍTICA DE TRATAMIENTO DE DATOS PERSONALES
Código: CO-SIG-PO010
Tipo Doc.: Política
Clasificación: Pública
Versión: 005
Fecha: 2022-05-30
Página 6 de 18
Políticas para Europa
Versión: 006
Vigente desde: 20/05/2026
MARCO GENERAL DEL SISTEMA INTEGRADO DE GESTIÓN (SIG)
GuruSoft, como empresa dedicada al desarrollo de soluciones tecnológicas, establece un Sistema Integrado de Gestión (SIG) que integra la gestión de la seguridad de la información y la calidad, como un marco para dirigir y controlar de manera efectiva sus procesos y servicios.
El SIG se fundamenta en la protección de la información, la calidad del servicio y la satisfacción del cliente, alineado con el contexto organizacional, las necesidades de las partes interesadas y los objetivos estratégicos de la organización.
En este sentido, GuruSoft establece los siguientes lineamientos para la gestión del SIG:
- Se identifican, analizan y tratan de manera continua los riesgos de seguridad de la información y los riesgos y oportunidades del negocio, manteniéndolos en niveles aceptables.
- Se establecen, implementan y revisan periódicamente los objetivos del Sistema Integrado de Gestión, alineados con la presente política.
- Se promueve la formación, concienciación y cultura organizacional en materia de calidad y seguridad de la información.
- Se identifican y cumplen los requisitos legales, regulatorios y contractuales aplicables, incluyendo los relacionados con protección de datos personales.
- Se garantiza la protección de los activos de información, asegurando la confidencialidad, integridad y disponibilidad.
- Se establecen y mantienen estrategias de continuidad del negocio, para asegurar la disponibilidad de los servicios.
- Se promueve la mejora continua del SIG, mediante auditorías, indicadores, revisiones por la Dirección y gestión de acciones correctivas.
El alcance y los objetivos del Sistema Integrado de Gestión se encuentran definidos en los documentos:
GS-SIG-DI017 – Alcance del Sistema Integrado de Gestión
GS-SIG-DI006 – Objetivos del Sistema Integrado de Gestión
POLÍTICA DE SEGURIDAD DE LA INFORMACIÓN
GuruSoft, como empresa dedicada al desarrollo de soluciones tecnológicas, tiene como propósito ofrecer servicios confiables, innovadores y seguros, atendiendo las necesidades de sus clientes con altos estándares de calidad, cumplimiento y protección de la información.
Considerando esto, la seguridad de la información es un pilar fundamental para garantizar la confianza de nuestro clientes, alianzas y partes interesadas; por ello, la empresa establece, implementa, mantiene y mejora un Sistema de Gestión de Seguridad de la Información (SGSI), con el fin de:
- Proteger la confidencialidad, integridad y disponibilidad de la información.
- Promover una cultura de seguridad y buenas prácticas entre todos los colaboradores y otras partes involucradas.
- Prevenir y gestionar riesgos de seguridad de la información
- Garantizar la continuidad del servicio.
Asegurar el cumplimiento de los requisitos legales, regulatorios y contractuales aplicables.
POLÍTICA DE CALIDAD
GuruSoft se compromete a diseñar, desarrollar, operar y mejorar continuamente el servicio de facturación electrónica, asegurando que cumple con los requisitos del cliente, los requisitos legales y contractuales aplicables, y los estándares de calidad definidos por la organización.
La gestión de la calidad es un elemento estratégico para:
- Incrementar la satisfacción del cliente.
- Asegurar la disponibilidad y confiabilidad del servicio.
- Mejorar la eficiencia de los procesos.
- Fortalecer la reputación y posicionamiento de GuruSoft en el mercado.
SISTEMA DE GESTIÓN
POLÍTICA DE COOKIES DE PÁGINA WEB GURUSOFT
Código: GS-SIG-PO020
Tipo Doc.: Política
Clasificación: Pública
Versión: 001
Fecha: 2026-05-21
SISTEMA DE GESTIÓN
POLÍTICA DE USO TRATAMIENTO DE DATOS Y COOKIES
Código: ES-SIG-PO017
Versión: 001
Tipo Doc.: Política
Fecha: 2024-01-15
Clasificación: Pública Página 1 de 8
DIRECCIÓN ESTRATÉGICA Y PLANIFICACIÓN
TÉRMINOS Y CONDICIONES DE USO DE PÁGINA WEB GURUSOFT
Código: ES-DEP-DI015
Versión: 001
Tipo Doc.: Documento de interés
Fecha: 2026-05-11
Clasificación: Pública
Página 1 de 4
CADRE GÉNÉRAL DU SYSTÈME DE GESTION INTÉGRÉ (IMS)
GuruSoft, en tant qu’entreprise dédiée au développement de solutions technologiques, met en place un Système de Gestion Intégré (IMS) qui intègre la sécurité de l’information et la gestion de la qualité, comme cadre pour diriger et contrôler efficacement ses processus et services.
Les SIG reposent sur la protection de l’information, la qualité du service et la satisfaction client, en accord avec le contexte organisationnel, les besoins des parties prenantes et les objectifs stratégiques de l’organisation.
En ce sens, GuruSoft établit les lignes directrices suivantes pour la gestion des SIG :
• Les risques liés à la sécurité de l’information ainsi qu’aux risques et opportunités commerciales sont continuellement identifiés, analysés et traités, en les maintenant à des niveaux acceptables.
• Les objectifs du Système de Gestion Intégrée sont établis, mis en oeuvre et révisés périodiquement, conformément à cette politique.
• La formation, la sensibilisation et la culture organisationnelle en matière de qualité et de sécurité de l’information sont encouragées.
• Les exigences légales, réglementaires et contractuelles applicables, y compris celles relatives à la protection des données personnelles, sont identifiées et respectées.
• La protection des actifs informationnels est garantie, garantissant la confidentialité, l’intégrité et la disponibilité.
• Des stratégies de continuité des activités sont établies et maintenues afin d’assurer la disponibilité des services.
• L’amélioration continue des SIG est encouragée par des audits, des indicateurs, des revues par la direction et la gestion des actions correctives.
La portée et les objectifs du Système de Management Intégré sont définis dans les documents suivants :
GS-SIG-DI017 – Portée du système de gestion intégré
GS-SIG-DI006 – Objectifs du système de gestion intégré
POLITIQUE DE SÉCURITÉ DE L’INFORMATION
GuruSoft, en tant qu’entreprise dédiée au développement de solutions technologiques, vise à offrir des services fiables, innovants et sécurisés, répondant aux besoins de ses clients avec des normes élevées de qualité, de conformité et de protection de l’information.
Dans cette optique, la sécurité de l’information est un pilier fondamental pour garantir la confiance de nos clients, alliances et parties prenantes ; c’est pourquoi l’entreprise établit, met en oeuvre, maintient et améliore un Système de Gestion de la Sécurité de l’Information (ISMS), afin de :
• Protégez la confidentialité, l’intégrité et la disponibilité des informations.
• Promouvoir une culture de sécurité et de bonnes pratiques auprès de tous les employés et des autres parties impliquées.
• Prévenir et gérer les risques liés à la sécurité de l’information
• Assurez la continuité du service.
• Assurez-vous de respecter les exigences légales, réglementaires et contractuelles applicables.
POLITIQUE DE QUALITÉ
GuruSoft s’engage à concevoir, développer, exploiter et améliorer continuellement le service de facturation électronique, en veillant à ce qu’il réponde aux exigences du client, aux exigences légales et contractuelles applicables, ainsi qu’aux normes de qualité définies par l’organisation.
La gestion de la qualité est un élément stratégique pour :
• Augmentez la satisfaction client.
• Assurez-vous de la disponibilité et de la fiabilité du service.
• Améliorer l’efficacité des processus.
• Renforcez la réputation et le positionnement de GuruSoft sur le marché.
SYSTÈME DE GESTION POLITIQUE SUR LES COOKIES DU SITE GURUSOFT
Code : GS-SIG-PO020
Version : 001 Type
Doc. : Politique
Date : 2026-05-21
Classification : Public
Page 1 de 4
SYSTÈME DE GESTION
AVIS DE CONFIDENTIALITÉ
Code : FR-SIG-DI018
Version : 001
Type de document : Document d’intérêt
Date : 2025-11-29
Classification : Public
Page 1 de 6
SYSTÈME DE GESTION
POLITIQUE DE PROTECTION DES DONNÉES PERSONNELLES
Code : FR-SIG-PO019
Version : 001 Type
Doc. : Politique
Date: 2025-11-27
Classification : Public
Page 1 de 12
PLANNING AND STRATEGIC DIRECTION
TERMS AND CONDITIONS FOR THE USE OF THE GURUSOFT WEBSITE
Code: FR-DEP-DI014
Version: 001
Document type: Documento de interés
Date: 2026-05-11
Clasification: Pública
Page: 1 OF 4
GENERAL FRAMEWORK OF THE INTEGRATED MANAGEMENT SYSTEM (IMS)
GuruSoft, as a company dedicated to the development of technological solutions, establishes an Integrated Management System (IMS) that integrates information security and quality management, as a framework to effectively direct and control its processes and services.
IMS is based on information protection, service quality, and customer satisfaction, aligned with the organizational context, stakeholder needs, and the organization’s strategic objectives.
In this sense, GuruSoft establishes the following guidelines for IMS management:
• Information security risks and business risks and opportunities are continuously identified, analyzed, and addressed, keeping them at acceptable levels.
• The objectives of the Integrated Management System are established, implemented and periodically reviewed, in line with this policy.
• Training, awareness and organizational culture in terms of quality and information security are promoted.
• Applicable legal, regulatory and contractual requirements, including those related to the protection of personal data, are identified and complied with.
• The protection of information assets is guaranteed, ensuring confidentiality, integrity and availability.
• Business continuity strategies are established and maintained, to ensure the availability of services.
• The continuous improvement of the IMS is promoted, through audits, indicators, reviews by the Management and management of corrective actions.
The scope and objectives of the Integrated Management System are defined in the following documents:
GS-SIG-DI017 – Scope of the Integrated Management System
GS-SIG-DI006 – Objectives of the Integrated Management System
INFORMATION SECURITY POLICY
GuruSoft, as a company dedicated to the development of technological solutions, aims to offer reliable, innovative and secure services, serving the needs of its customers with high standards of quality, compliance and information protection.
Considering this, information security is a fundamental pillar to guarantee the trust of our customers, alliances and stakeholders; therefore, the company establishes, implements, maintains and improves an Information Security Management System (ISMS), in order to:
• Protect the confidentiality, integrity, and availability of information.
• Promote a culture of safety and good practices among all employees and other parties involved.
• Prevent and manage information security risks
• Ensure continuity of service.
• Ensure compliance with applicable legal, regulatory, and contractual requirements
QUALITY POLICY
GuruSoft is committed to designing, developing, operating, and continuously improving the e-invoicing service, ensuring that it meets the client’s requirements, applicable legal and contractual requirements, and quality standards defined by the organization.
Quality management is a strategic element for:
• Increase customer satisfaction.
• Ensure service availability and reliability.
• Improve process efficiency.
• Strengthen GuruSoft’s reputation and positioning in the market.
PERSONAL DATA PROTECTION POLICY
GURUSOFT SLOVAKIA
Last Updated: 05-20-2026
1. COMPANY INFORMATION
GuruSoft Slovakia is a company incorporated under the laws of the Slovak Republic, engaged in electronic invoicing, SaaS services, ERP integrations, electronic document processing, and cloud technology solutions.
2. PURPOSE
This Policy governs the processing of personal data by GuruSoft Slovakia s.r.o. in compliance with applicable European Union and Slovak data protection laws.
3. PERSONAL DATA PROCESSED
GuruSoft may process:
- Personal identification data
- Contact information
- Tax and invoicing information
- User authentication records
- Transactional and technical data
- System monitoring information
4. PURPOSES OF PROCESSING
Personal data may be processed for:
- Electronic invoicing operations
- SaaS service delivery
- Customer and supplier management
- Compliance with tax and regulatory obligations
- Cybersecurity and fraud prevention
- Service optimization
5. LEGAL BASIS
Processing activities are based on:
- Article 6(1)(b) GDPR – Contractual necessity
- Article 6(1)(c) GDPR – Legal obligation
- Article 6(1)(f) GDPR – Legitimate interests
- Consent where required
6. DATA SECURITY
GuruSoft implements appropriate technical and organizational measures in accordance with GDPR requirements and ISO/IEC 27001 information security practices.
7. INTERNATIONAL TRANSFERS
Where personal data is transferred outside the European Economic Area (EEA), GuruSoft shall implement appropriate safeguards, including Standard Contractual Clauses (SCCs) where applicable.
8. DATA SUBJECT RIGHTS
Data subjects may exercise rights including:
- Access
- Rectification
- Erasure
- Restriction of processing
- Objection
- Data portability
- Complaint before supervisory authorities
Requests may be submitted to: privacy.sk@guru-soft.com
9. RETENTION
Personal data shall be retained only as long as necessary for legal, contractual, accounting, tax, and operational purposes.
10. GOVERNING LAW
This Policy shall be governed by:
- Regulation (EU) 2016/679 (GDPR)
- Slovak data protection legislation
PRIVACY NOTICE
GURUSOFT SLOVAKIA
Last Updated: 05-20-2026
1. DATA CONTROLLER
GuruSoft Slovakia acts as Data Controller for personal data processed through its websites, SaaS services, and electronic invoicing platforms.
Email: privacy.sk@guru-soft.com
2. PERSONAL DATA WE COLLECT
We may process:
- Identification data
- Contact information
- Tax and invoicing data
- Authentication records
- Technical logs
- User activity information
3. PURPOSES OF PROCESSING
Personal data is processed for:
- Electronic invoicing services
- SaaS operations
- Customer management
- Legal compliance
- Information security
- Fraud prevention
4. LEGAL BASIS
Processing is based on:
- Article 6(1)(b) GDPR — Contract
- Article 6(1)(c) GDPR — Legal obligation
- Article 6(1)(f) GDPR — Legitimate interests
- Consent where applicable
5. INTERNATIONAL TRANSFERS
Where personal data is transferred outside the EEA, GuruSoft implements appropriate safeguards including Standard Contractual Clauses where required.
6. YOUR RIGHTS
You may exercise:
- Right of access
- Right to rectification
- Right to erasure
- Right to restrict processing
- Right to object
- Right to data portability
- Right to lodge a complaint before a supervisory authority
Contact: privacy.sk@guru-soft.com
7. DATA RETENTION
Personal data shall be retained only for the period necessary to comply with legal, contractual, and operational obligations.
8. SECURITY
GuruSoft applies technical and organizational security measures aligned with GDPR and ISO/IEC 27001 principles.
MANAGEMENT SYSTEM
GURUSOFT WEBSITE COOKIE POLICY
Code: GS-SIG-PO020
Version: 001
Type Doc.: Policy
Date: 2026-05-21
Classification: Public
Page 1 of 4
Políticas para África
GENERAL FRAMEWORK OF THE INTEGRATED MANAGEMENT SYSTEM (IMS)
GuruSoft, as a company dedicated to the development of technological solutions, establishes an Integrated Management System (IMS) that integrates information security and quality management, as a framework to effectively direct and control its processes and services.
IMS is based on information protection, service quality, and customer satisfaction, aligned with the organizational context, stakeholder needs, and the organization’s strategic objectives.
In this sense, GuruSoft establishes the following guidelines for IMS management:
• Information security risks and business risks and opportunities are continuously identified, analyzed, and addressed, keeping them at acceptable levels.
• The objectives of the Integrated Management System are established, implemented and periodically reviewed, in line with this policy.
• Training, awareness and organizational culture in terms of quality and information security are promoted.
• Applicable legal, regulatory and contractual requirements, including those related to the protection of personal data, are identified and complied with.
• The protection of information assets is guaranteed, ensuring confidentiality, integrity and availability.
• Business continuity strategies are established and maintained, to ensure the availability of services.
• The continuous improvement of the IMS is promoted, through audits, indicators, reviews by the Management and management of corrective actions.
The scope and objectives of the Integrated Management System are defined in the following documents:
GS-SIG-DI017 – Scope of the Integrated Management System
GS-SIG-DI006 – Objectives of the Integrated Management System
INFORMATION SECURITY POLICY
GuruSoft, as a company dedicated to the development of technological solutions, aims to offer reliable, innovative and secure services, serving the needs of its customers with high standards of quality, compliance and information protection.
Considering this, information security is a fundamental pillar to guarantee the trust of our customers, alliances and stakeholders; therefore, the company establishes, implements, maintains and improves an Information Security Management System (ISMS), in order to:
• Protect the confidentiality, integrity, and availability of information.
• Promote a culture of safety and good practices among all employees and other parties involved.
• Prevent and manage information security risks
• Ensure continuity of service.
• Ensure compliance with applicable legal, regulatory, and contractual requirements
QUALITY POLICY
GuruSoft is committed to designing, developing, operating, and continuously improving the e-invoicing service, ensuring that it meets the client’s requirements, applicable legal and contractual requirements, and quality standards defined by the organization.
Quality management is a strategic element for:
• Increase customer satisfaction.
• Ensure service availability and reliability.
• Improve process efficiency.
• Strengthen GuruSoft’s reputation and positioning in the market.
PERSONAL DATA PROTECTION POLICY
GURUSOFT ANGOLA
Last Updated: 05-20-2026
1. COMPANY INFORMATION
GuruSoft Angola is a company incorporated under the laws of Angola, engaged in electronic invoicing, SaaS services, cloud technology solutions, ERP integrations, and digital transaction management services.
2. PURPOSE
This Policy establishes the principles applicable to the processing and protection of personal data handled by GuruSoft Angola.
3. PERSONAL DATA PROCESSED
GuruSoft may process:
· Identification data
· Contact information
· Tax and invoicing data
· Electronic transaction records
· Access credentials and logs
· Technical usage information
4. PURPOSES OF PROCESSING
Personal data may be processed for:
· Provision of electronic invoicing services
· SaaS operations
· Regulatory compliance
· Information security
· Customer support
· Fraud detection and prevention
5. LEGAL BASIS
Personal data is processed based on:
· Contractual necessity
· Legal obligations
· Legitimate interests
· Consent where required
6. DATA SECURITY
GuruSoft adopts technical and organizational measures intended to protect personal data against unauthorized access, disclosure, loss, or misuse.
7. INTERNATIONAL DATA TRANSFERS
Personal data may be transferred internationally within GuruSoft’s operational infrastructure and cloud environments, subject to applicable legal safeguards.
8. DATA SUBJECT RIGHTS
Data subjects may request:
· Access
· Rectification
· Deletion
· Objection to processing
· Restriction of processing Requests may be submitted to: privacy.ao@guru-soft.com
9. RETENTION
Personal data shall be retained only for the period necessary to satisfy legal, tax, contractual, and operational obligations.
10. GOVERNING LAW
This Policy shall be governed by the Angolan Personal Data Protection Law (Law No. 22/11) and related regulations.
PRIVACY NOTICE
GURUSOFT ANGOLA
Last Updated: 05-20-2026
1. WHO WE ARE
GuruSoft Angola provides electronic invoicing, SaaS services, cloud-based technological solutions, ERP integrations, and digital document management services. Email: privacy.ao@guru-soft.com
2. PERSONAL DATA COLLECTED
We may collect:
· Identification data
· Contact details
· Tax information
· Transaction records
· Technical and system logs
· Customer communications
3. PURPOSES OF PROCESSING
Personal data may be processed for:
· SaaS service delivery
· Electronic invoicing
· Customer support
· Regulatory compliance
· Cybersecurity monitoring
· Fraud prevention
4. LEGAL BASIS
Processing is based on:
· Contractual necessity
· Legal obligations
· Legitimate interests
· Consent where applicable
5. INTERNATIONAL TRANSFERS
Personal data may be processed internationally within GuruSoft’s cloud and operational infrastructure subject to applicable safeguards.
6. YOUR RIGHTS
You may request:
· Access
· Rectification
· Deletion
· Restriction of processing
· Objection Contact: privacy.ao@guru-soft.com
7. SECURITY
GuruSoft implements reasonable technical and organizational measures to protect personal data against unauthorized access, disclosure, alteration, or loss.
MANAGEMENT SYSTEM
GURUSOFT WEBSITE COOKIE POLICY
Code: GS-SIG-PO020
Version: 001
Type Doc.: Policy
Date: 2026-05-21
Classification: Public
Page 1 of 4
GENERAL FRAMEWORK OF THE INTEGRATED MANAGEMENT SYSTEM (IMS)
GuruSoft, as a company dedicated to the development of technological solutions, establishes an Integrated Management System (IMS) that integrates information security and quality management, as a framework to effectively direct and control its processes and services.
IMS is based on information protection, service quality, and customer satisfaction, aligned with the organizational context, stakeholder needs, and the organization’s strategic objectives.
In this sense, GuruSoft establishes the following guidelines for IMS management:
• Information security risks and business risks and opportunities are continuously identified, analyzed, and addressed, keeping them at acceptable levels.
• The objectives of the Integrated Management System are established, implemented and periodically reviewed, in line with this policy.
• Training, awareness and organizational culture in terms of quality and information security are promoted.
• Applicable legal, regulatory and contractual requirements, including those related to the protection of personal data, are identified and complied with.
• The protection of information assets is guaranteed, ensuring confidentiality, integrity and availability.
• Business continuity strategies are established and maintained, to ensure the availability of services.
• The continuous improvement of the IMS is promoted, through audits, indicators, reviews by the Management and management of corrective actions.
The scope and objectives of the Integrated Management System are defined in the following documents:
GS-SIG-DI017 – Scope of the Integrated Management System
GS-SIG-DI006 – Objectives of the Integrated Management System
INFORMATION SECURITY POLICY
GuruSoft, as a company dedicated to the development of technological solutions, aims to offer reliable, innovative and secure services, serving the needs of its customers with high standards of quality, compliance and information protection.
Considering this, information security is a fundamental pillar to guarantee the trust of our customers, alliances and stakeholders; therefore, the company establishes, implements, maintains and improves an Information Security Management System (ISMS), in order to:
• Protect the confidentiality, integrity, and availability of information.
• Promote a culture of safety and good practices among all employees and other parties involved.
• Prevent and manage information security risks
• Ensure continuity of service.
• Ensure compliance with applicable legal, regulatory, and contractual requirements
QUALITY POLICY
GuruSoft is committed to designing, developing, operating, and continuously improving the e-invoicing service, ensuring that it meets the client’s requirements, applicable legal and contractual requirements, and quality standards defined by the organization.
Quality management is a strategic element for:
• Increase customer satisfaction.
• Ensure service availability and reliability.
• Improve process efficiency.
• Strengthen GuruSoft’s reputation and positioning in the market.
PERSONAL DATA PROTECTION POLICY
GURUSOFT OMAN
Last Updated: 05-20-2026
1. COMPANY INFORMATION
GuruSoft Oman is a company duly incorporated under the laws of the Sultanate of Oman, engaged in the provision of electronic invoicing, Software as a Service (SaaS), cloud-based technological solutions, electronic document exchange, ERP integrations, digital transformation services, and related technology services.
GuruSoft processes personal data in connection with the provision of electronic invoicing and technology services in compliance with applicable data protection and cybersecurity regulations.
2. PURPOSE
This Personal Data Protection Policy establishes the principles governing the collection, use, storage, transfer, disclosure, and protection of personal data processed by GuruSoft.
3. PERSONAL DATA PROCESSED
GuruSoft may process:
· Identification data
· Contact information
· Corporate and tax information
· Electronic invoicing data
· Technical and transactional records
· User access logs
· IP addresses and system metadata
4. PURPOSES OF PROCESSING
Personal data may be processed for:
· Provision of electronic invoicing services
· SaaS platform operation
· Customer support and technical assistance
· Compliance with legal and tax obligations
· Fraud prevention and cybersecurity monitoring
· Service improvements and operational analytics
5. LEGAL BASIS
GuruSoft processes personal data based on:
· Contractual necessity
· Compliance with legal obligations
· Legitimate business interests
· Consent, where required by applicable law
6. DATA SECURITY
GuruSoft implements reasonable technical, organizational, and administrative safeguards designed to protect personal data against unauthorized access, disclosure, alteration, destruction, or misuse, including:
· Access controls
· Encryption mechanisms
· Secure cloud infrastructure
· Monitoring and logging controls
· Information security policies aligned with ISO/IEC 27001 standards
7. INTERNATIONAL DATA TRANSFERS
Personal data may be processed or stored in cloud infrastructures and service environments located outside the Sultanate of Oman, subject to appropriate contractual and security safeguards.
8. DATA SUBJECT RIGHTS
Where applicable under law, data subjects may request:
· Access to personal data
· Correction of inaccurate data
· Deletion of personal data
· Restriction or objection to processing
· Withdrawal of consent where processing is consent-based Requests may be submitted to: privacy.om@guru-soft.com
9. RETENTION
Personal data shall be retained only for the period necessary to fulfill legal, contractual, tax, operational, and regulatory obligations.
10. GOVERNING LAW
This Policy shall be governed by the laws and regulations of the Sultanate of Oman, including the Oman Personal Data Protection Law (Royal Decree 6/2022), where applicable.
PRIVACY NOTICE
GURUSOFT OMAN
Last Updated: 05-20-2026
1. WHO WE ARE
GuruSoft Oman is a technology company providing electronic invoicing, SaaS, ERP integration, cloud, and digital transaction services.
Email: privacy.om@guru-soft.com
2. PERSONAL DATA WE COLLECT
We may collect:
· Identification data
· Contact details
· Tax and invoicing information
· System access logs
· Technical and transactional information
· Communications submitted through forms or support channels
3. PURPOSE OF PROCESSING
Your personal data may be processed for:
· Provision of electronic invoicing services
· SaaS platform administration
· Customer support
· Regulatory compliance
· Cybersecurity and fraud prevention
· Service improvements
4. LEGAL BASIS
We process personal data based on:
· Contractual necessity
· Legal obligations
· Legitimate interests
· Consent where required
5. INTERNATIONAL TRANSFERS
Your data may be processed in cloud infrastructures located outside Oman, subject to reasonable security safeguards.
6. YOUR RIGHTS
Where applicable, you may request:
· Access
· Correction
· Deletion
· Restriction of processing
· Withdrawal of consent Requests: privacy.om@guru-soft.com
7. DATA SECURITY
GuruSoft implements reasonable technical and organizational security measures aligned with industry best practices and ISO/IEC 27001 principles.
MANAGEMENT SYSTEM
GURUSOFT WEBSITE COOKIE POLICY
Code: GS-SIG-PO020
Version: 001
Type Doc.: Policy
Date: 2026-05-21
Classification: Public
Page 1 of 4
GENERAL FRAMEWORK OF THE INTEGRATED MANAGEMENT SYSTEM (IMS)
GuruSoft, as a company dedicated to the development of technological solutions, establishes an Integrated Management System (IMS) that integrates information security and quality management, as a framework to effectively direct and control its processes and services.
IMS is based on information protection, service quality, and customer satisfaction, aligned with the organizational context, stakeholder needs, and the organization’s strategic objectives.
In this sense, GuruSoft establishes the following guidelines for IMS management:
• Information security risks and business risks and opportunities are continuously identified, analyzed, and addressed, keeping them at acceptable levels.
• The objectives of the Integrated Management System are established, implemented and periodically reviewed, in line with this policy.
• Training, awareness and organizational culture in terms of quality and information security are promoted.
• Applicable legal, regulatory and contractual requirements, including those related to the protection of personal data, are identified and complied with.
• The protection of information assets is guaranteed, ensuring confidentiality, integrity and availability.
• Business continuity strategies are established and maintained, to ensure the availability of services.
• The continuous improvement of the IMS is promoted, through audits, indicators, reviews by the Management and management of corrective actions.
The scope and objectives of the Integrated Management System are defined in the following documents:
GS-SIG-DI017 – Scope of the Integrated Management System
GS-SIG-DI006 – Objectives of the Integrated Management System
INFORMATION SECURITY POLICY
GuruSoft, as a company dedicated to the development of technological solutions, aims to offer reliable, innovative and secure services, serving the needs of its customers with high standards of quality, compliance and information protection.
Considering this, information security is a fundamental pillar to guarantee the trust of our customers, alliances and stakeholders; therefore, the company establishes, implements, maintains and improves an Information Security Management System (ISMS), in order to:
• Protect the confidentiality, integrity, and availability of information.
• Promote a culture of safety and good practices among all employees and other parties involved.
• Prevent and manage information security risks
• Ensure continuity of service.
• Ensure compliance with applicable legal, regulatory, and contractual requirements
QUALITY POLICY
GuruSoft is committed to designing, developing, operating, and continuously improving the e-invoicing service, ensuring that it meets the client’s requirements, applicable legal and contractual requirements, and quality standards defined by the organization.
Quality management is a strategic element for:
• Increase customer satisfaction.
• Ensure service availability and reliability.
• Improve process efficiency.
• Strengthen GuruSoft’s reputation and positioning in the market.
PERSONAL DATA PROTECTION POLICY
GURUSOFT HUB IT SOLUTIONS
Last Updated: 05-20-2026
1. COMPANY INFORMATION
GuruSoft UAE is a company duly incorporated under the laws of the United Arab Emirates, engaged in electronic invoicing, SaaS services, ERP integrations, cloud-based technology services, and digital document management solutions.
2. PURPOSE
This Policy establishes the framework governing the processing and protection of personal data handled by GuruSoft UAE.
3. PERSONAL DATA PROCESSED
GuruSoft may process:
· Identification and contact data
· Tax and invoicing information
· Customer and supplier records
· Electronic transaction records
· System access and authentication logs
· Technical usage data
4. PURPOSES OF PROCESSING
Personal data is processed for:
· Delivery of electronic invoicing services
· SaaS platform administration
· Regulatory compliance
· Customer relationship management
· Information security and fraud prevention
· Technical support and service continuity
5. LEGAL BASIS
Processing activities are based on:
· Contract performance
· Compliance with legal obligations
· Legitimate interests
· Consent where legally required
6. DATA SECURITY
GuruSoft applies technical and organizational measures designed to ensure confidentiality, integrity, availability, and resilience of personal data and systems.
7. INTERNATIONAL TRANSFERS
Personal data may be transferred internationally within GuruSoft’s operational and cloud infrastructure ecosystem, subject to adequate security safeguards.
8. DATA SUBJECT RIGHTS
Where applicable, individuals may exercise rights related to:
· Access
· Rectification
· Erasure
· Restriction
· Objection
· Data portability Requests may be directed to: privacy.uae@guru-soft.com
9. RETENTION
Personal data shall be retained for the period necessary to comply with contractual, legal, tax, and operational obligations.
10. GOVERNING LAW
This Policy shall be governed by the UAE Federal Personal Data Protection Law (Federal Decree-Law No. 45 of 2021) and related regulations.
PRIVACY NOTICE
GURUSOFT HUB IT SOLUTIONS
Last Updated: 05-20-2026
1. WHO WE ARE
GuruSoft UAE provides electronic invoicing, SaaS, ERP integrations, cloud services, and digital document processing solutions.
Email: privacy.uae@guru-soft.com
2. DATA WE PROCESS
We may process:
· Personal identification information
· Contact information
· Financial and invoicing data
· Authentication records
· Technical usage data
· Support communications
3. PURPOSES
Personal data is processed for:
· Service delivery
· SaaS administration
· Legal and tax compliance
· Information security
· Customer support
· Fraud prevention
4. LEGAL BASIS
Processing is based on:
· Contract performance
· Legal obligations
· Legitimate interests
· Consent where required
5. INTERNATIONAL TRANSFERS
Data may be transferred internationally within GuruSoft’s cloud and operational infrastructure subject to adequate safeguards.
6. YOUR RIGHTS
You may request:
· Access
· Correction
· Deletion
· Restriction
· Objection to processing Contact: privacy.uae@guru-soft.com
7. SECURITY
GuruSoft applies reasonable technical and organizational security controls to protect personal data.
MANAGEMENT SYSTEM
GURUSOFT WEBSITE COOKIE POLICY
Code: GS-SIG-PO020
Version: 001
Type Doc.: Policy
Date: 2026-05-21
Classification: Public
Page 1 of 4