Privacy Policy

Privacy Policy

Last Updated: December 18, 2024

 

Introduction

Welcome to Axcertro (“we,” “our,” or “us”). We respect your privacy and are committed to protecting your personal data. This privacy policy explains how we collect, use, and protect your information when you use our services.

We operate through two registered entities:

  1. Axcertro (PVT) LTD – Registered in Sri Lanka
  2. Axcertro LTD – Registered in the United Kingdom
 

1. Important Information and Who We Are

Data Controller

We are the data controller and responsible for your personal data through our two registered entities:

  • For services provided in Sri Lanka: Axcertro (PVT) LTD , B-15, SamagiMw, Randiyagama,Sooriyawewa, Sri Lanka
  • For services provided internationally: Axcertro LTD, PO Box 4385, 15371743 – COMPANIES HOUSE DEFAULT ADDRESS, Cardiff, CF14 8LH
Contact Details
 

2. The Data We Collect

We collect and process the following types of personal data:

  • Identity Data (name, username, title)
  • Contact Data (email address, telephone numbers, postal address)
  • Financial Data (payment information through our payment processors)
  • Technical Data (IP address, browser type, device information)
  • Usage Data (how you use our website and services)
  • Marketing and Communications Data (your preferences)
 

3. How We Collect Your Data

We collect data through:

  • Direct interactions
  • Automated technologies
  • Third parties
 

4. Payment Processing

For Sri Lankan Customers
  • Payment processing is handled through OnePay
  • Financial data is processed according to Sri Lankan financial regulations
  • OnePay’s privacy policy: https://privacy-onepay.spemai.com/
For International Customers
  • Payment processing is handled through Stripe (UK)
  • Financial data is processed in compliance with UK/EU regulations
  • Stripe’s privacy policy: https://stripe.com/privacy
 

5. How We Use Your Personal Data

We use your data to:

  • Process your orders
  • Manage your account
  • Provide our services
  • Improve our website
  • Send marketing communications (with consent)
  • Comply with legal obligations
 

6. Data Security

We implement appropriate security measures to prevent unauthorized access, alteration, disclosure, or destruction of your personal data.

 

 

7. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes we collected it for, including:

  • Legal requirements
  • Accounting purposes
  • Reporting requirements
 

8. Your Legal Rights

Under GDPR (UK/EU Customers)

You have the right to:

  • Access your personal data
  • Rectification of your data
  • Erasure of your data
  • Object to processing
  • Data portability
  • Withdraw consent
Under Sri Lankan Data Protection Law

You have the right to:

  • Access your personal data
  • Request corrections
  • Request deletion
 

9. International Transfers

We transfer data between our operations in Sri Lanka and the UK. We ensure appropriate safeguards are in place, including:

  • Standard contractual clauses
  • Data processing agreements
  • Appropriate security measures
 

10. Cookies and Tracking

We use cookies and similar tracking technologies. See our Cookie Policy for details.

 

11. Changes to This Privacy Policy

We may update this privacy policy from time to time. We will notify you of any significant changes.

 

12. How to Contact Us

For privacy-related inquiries:

 

13. Supervisory Authority

You have the right to make a complaint to your data protection supervisory authority:

  • Sri Lanka: Information Commissioner’s Office (ICO)
  • UK: Information Commissioner’s Office (ICO)