Transparency and compliance
At GUTEC University, transparency is not a document, it is a way of operating. We are a private university with our own training program, international reach, and agreements in multiple countries. For this reason, we establish clear rules, open data, and periodic audits that maintain the trust of students, teachers, partners, and society. This page outlines our governance framework, policies, processes, indicators, and the rights of our community.
Government and publication of information (what we disclose and when)
Rectoría/Presidencia Académica, Dirección General, Consejo Académico (bimensual), Consejo Asesor de Industria—GIB (2 plenarias/año) y comités (QA mensual, Ética/IA bimestral, ESG trimestral, RPL continuo).
We publish summaries (without personal/strictly confidential data) with: topics, agreements (responsible parties/deadlines), and implementation status.We publish summaries (without personal/strictly confidential data) with: topics, agreements (responsible parties/deadlines), and implementation status.
-
- Academics: completion, resubmission rate, capstone quality (blind panel).
- Student/services: NPS, satisfaction per module, admission/support SLA.
- Employability: % promotion/role change at 6–12 months (aggregate data).
- Integrity: incidents per 100 students, resolution times, measures applied.
- ESG: estimated tCO₂e avoided, energy/water savings in projects, cohort diversity.
Commitment: If an indicator falls below the target level, we publish the associated corrective action (CAPA) and its review date.
Code of Ethics and Compliance Culture
- Principles: legality, respect and non-discrimination, diversity and inclusion, academic and corporate integrity, confidentiality, security, and sustainability.
- Scope: students, faculty, staff, partners, suppliers, speakers, and visitors.
- Prohibited conduct: harassment/discrimination, bribery/corruption, academic fraud, illegitimate use of software/data, retaliation against whistleblowers, undeclared conflicts of interest, manipulation of assessments or documents.
- Mandatory training: all groups take short annual modules on Ethics & Integrity, Privacy & Security, and, where applicable, Anti-Corruption and Responsible AI
- Evidence: training records, acceptance of policies, and acknowledgment statements.
Academic integrity and responsible AI (how we learn)
Zero tolerance. Detection tools + technical interview if there are doubts about authorship (defense of the deliverable, reproduction).
Permitted only if the module declares it. It must be cited (tool and prompts/materials) and cannot replace the student's competence.
AI assistance with spelling correction or formatting → permitted; generation of technical analysis or calculation without comprehension → not permitted.
-
- Nivel 1 (uso indebido menor): reentrega con penalización y formación en integridad.
- Nivel 2 (plagio parcial): calificación 0 del ítem + amonestación formal.
- Nivel 3 (fraude grave/suplantación): suspensión temporal o expulsión.
They ensure objectivity; capstone with blind panel.
Procedure with deadlines (receipt, review, and decision), tribunal other than the evaluator.
Data protection and information security (ISO 27001 GDPR)
Provision of educational services, consent for communications, legitimate interest (improvement and security), legal obligations.
Minimization (only what is necessary), purpose limitation, accuracy, limited storage, integrity/confidentiality.
Access, rectification, erasure, objection, portability, and restriction—with an SLA response time of ≤30 days.
Encryption in transit/at rest, role-based access control, MFA where appropriate, backups, and continuity plan (guideline RTO/RPO: 8 hours/4 hours for critical services).
Registration, classification (critical/high/medium/low), containment, notification (authority and affected parties where applicable), root cause analysis, and CAPA.
Standard contractual clauses or other safeguards; preference for data centers in suitable regions.
When we process sensitive data or new relevant integrations.
Financial transparency, prices, and taxes
Preliminary information: each program details the total price, possible fees (reservation, RPL, preparatory courses, re-examinations), discounts (early payment, alumni, company), and scholarships (types/requirements).
Billing: EUR by default (USD/local currency possible depending on country/partner).
Taxes: we apply the regulations of the country of consumption and the customer’s status (individual/company, EU/non-EU).
Breakdowns: net amounts, taxes, and items are shown on the invoice; we keep a billing history.
Responsible procurement, suppliers, and anti-corruption.
- Supplier approval: legal/financial solvency, ESG compliance, cybersecurity, DPA for data processing, references.
- Threshold values and responsibility (guidelines):
- < €5,000: minor purchase with traceability
- €5,000–25,000: 2 comparable offers.
- €25,000: 3 offers and evaluation matrix (technical/ESG/price/service).
- Gifts and hospitality: gifts of value are prohibited; symbolic courtesies are permitted within limits and must be declared.
- Anti-corruption: zero tolerance for bribes/kickbacks; anti-corruption clauses in contracts.
- Conflict of interest: annual declaration and recusal in purchasing decisions where applicable.
Conflicts of interest (COI) and neutrality
Who reports: authorities, teachers, key personnel, external evaluators, and members of the GIB.
When: annually and ad hoc in response to changes; centralized COI registry.
Challenge: the member withdraws from the decision/evaluation in question; this is recorded in the minutes.
Sector transparency: if a teacher collaborates with a manufacturer, they must declare this and guarantee neutrality (interoperability; honest comparison of solutions).
Intellectual property (IP), licenses, and third-party data.
- Teaching material: authored by the teacher; GUTEC obtains a non-exclusive license for academic use (according to contract).
- Student work: authorship belongs to the student; GUTEC may request permission for academic dissemination (anonymized).
- Software: strict compliance with licenses; unauthorized use or technical circumvention prohibited.
- Software: strict compliance with licenses; unauthorized use or technical circumvention prohibited.
Evaluations, review, and appeals (academic due process)
- Public criteria: each program publishes learning outcomes, evidence, and rubrics.
- Review: Students may request clarification of their grade with technical justification (SLA: 7 days for response).
- Appeal: different court with clear deadlines (15 days for preliminary ruling).
- Moderation: inter-teacher sampling and blind panel for capstones; recording of agreements and adjustment if there are biases.
Contracts, withdrawal, returns, and postponements.
- Service Agreement: regulates schedule, price, fees, RPL, scholarships, refunds, platform use, IP, and data.
- Withdrawal: legal cooling-off period (depending on jurisdiction); smooth processing.
- Refunds (guideline, specified in contract):
- Reservation: normally non-refundable (deducted from the total).
- Before start date: partial refund depending on date of notification (e.g., ≥30 days: 80%; 15–29 days: 50%).
- After commencement: consumption (licenses/services) is deducted and escalations apply. Postponements: one time free of charge if notified ≥30 days in advance; subsequent rescheduling may incur an administrative fee.
Integrity channel (whistleblowing) — confidential and without reprisals.
- What to report: plagiarism, harassment, discrimination, bribery, fraud, security incidents, privacy violations, COI, serious breaches.
- How: secure form (anonymous or identified), attaching evidence where possible.
- Deadlines: acknowledgment ≤7 days; investigation and response ≤90 days (approximate, may vary by jurisdiction).
- No retaliation: protection for whistleblowers acting in good faith; penalties for retaliation.
- Outcome: closure with corrective/disciplinary measures and annual aggregate report.
Accessibility, reasonable accommodations, and non-discrimination
Commitments
Accessible materials (tagged PDF, contrast, subtitles where applicable), asynchronous alternatives, venues with adapted access where possible.
How to apply
Reasonable Adjustments Form (confidential), with supporting documentation if applicable.
Process
Evaluation by academic team/support within ≤10 days, communication of measures (e.g., additional time, alternative channel, technological support).
Follow-up
mid-program review; possibility of adjustment.
Risk management, continuity, and cybersecurity.
- Risk map: academic (quality, integrity), operational (platforms/licenses), legal (data/contracts), financial, and reputational/ESG.
- Matrix: probability × impact (Very high/High/Medium/Low); quarterly review.
- Continuity: Guideline RTO/RPO for critical services (8h/4h), daily backups, redundancy, recovery testing.
- Change management: impact assessment, maintenance window, rollback plan.
- Cybersecurity: MFA where applicable, minimal public exposure, scheduled security patches, anti-phishing training, annual drills.
Internal audits, CAPA, and management review.
- Audits: at least two cycles per year (academic/QA and data/support); sampling of evidence, interviews, document traceability.
- Results: non-conformities, observations, and opportunities for improvement with CAPA plans (person responsible, target date, verification of effectiveness).
- Management review: analysis of KPIs, resources, risks, and priorities; approval of the annual Improvement Plan and associated budget.
Program transparency (what you will see before enrolling)
Each program file must publish
Learning outcomes (LOs) and graduate profile.
Tools and standards (software, technical frameworks, interoperability).
Evidence and rubrics (summary).
Methodology and estimated weekly workload.
Access requirements (academic and/or professional) and technical requirements (hardware/network).
Dates and deadlines, fees/prices, scholarships, and key policies (RPL, refunds, integrity).
Cookies, terms of use, and legal notices
Cookies: technical (necessary), analytical (consent), marketing (granular consent). Banner with manager and option to revoke at any time.
Terms of use: platform access, material licenses, forum rules, liability limits, trademark ownership, claims.
Legal notice: corporate identity, contact details, applicable jurisdiction; local representatives (if any) and commercial register details.
Frequently Asked Questions (Transparency & Compliance)
Yes: quarterly panel and annual report with trends and CAPA.
Only if the module authorizes it and citing; the responsibility must be yours.
Request review (≤7 days for response); if disagreement persists, appeal to a different court (≤15 days for ruling).
No. We apply retention and deletion periods in accordance with the purpose/law.
Use the Integrity Channel; confidential/anonymous depending on country; no retaliation.
We invoice companies using their tax information; taxes are applied according to the country of consumption.
Responsible purchasing policy, competition thresholds, gifts/hospitality with declaration and limits.
Continuity plan with RTO/RPO; communication via email/portal and contingency measures.
Yes, for justified reasons; advance notice is given and the terms of the Agreement are respected.
On this page and at the bottom of the site. Also in the ZIP file “Policies & SOPs.”
