Legal

Privacy policy

Last updated: March 21, 2025

Introduction

Gloocan Technologies (Pvt) Ltd (“Gloocan”, “we”, “us”, “our”) is a software development company committed to protecting the privacy and security of the individuals who interact with our services. This Privacy Policy explains how we collect, use, store, and safeguard your information when you visit our website, engage with our team, or use any of our digital services.

By accessing or using our website and services, you agree to the practices described in this policy. If you do not agree, please discontinue use of our services.

Information We Collect

We collect information in the following ways:

Information You Provide Directly

  • Full name, email address, phone number, and company name submitted through contact or inquiry forms.
  • Project details, requirements, or messages you send us during consultation or onboarding.
  • Billing and invoicing information where applicable to service agreements.

Information Collected Automatically

  • Technical data including browser type, operating system, device identifiers, and screen resolution.
  • Approximate geographic location derived from your IP address.
  • Pages visited, time spent on pages, referral sources, and other usage behavior on our website.
  • Cookie and session data for site functionality and analytics purposes.

Information From Third Parties

  • Information shared with us through professional platforms such as LinkedIn or other business networks where you initiate contact.
  • Analytics data provided by third-party tools we use to understand website performance.

How We Use Your Information

We use the information we collect for the following purposes:

  • To respond to your inquiries, proposals, and service requests in a timely and relevant manner.
  • To deliver, manage, and improve our software development services and digital products.
  • To send service-related communications, updates, or follow-ups where you have engaged with us.
  • To analyze website performance and user behavior in order to improve our content and user experience.
  • To comply with applicable legal obligations, resolve disputes, and enforce our agreements.
  • To protect the integrity and security of our systems, services, and client data.

We do not sell, rent, or trade your personal information to third parties for marketing purposes.

Legal Basis for Processing

Where applicable under data protection laws such as the GDPR, we process your personal data on the following legal grounds:

  • Legitimate interests — to operate and grow our business responsibly.
  • Contractual necessity — to fulfill obligations under a service agreement with you or your organization.
  • Consent — where you have explicitly opted in to receive communications from us.
  • Legal obligation — where processing is required to comply with applicable law.

Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies to ensure essential functionality, remember your preferences, and understand how visitors interact with our content. The types of cookies we may use include:

  • Essential cookies — required for the basic operation of the website.
  • Analytics cookies — used to collect anonymized data on traffic and user behavior to help us improve our site.
  • Preference cookies — used to remember settings and choices you have made.

You may control or disable cookies through your browser settings at any time. Please note that disabling certain cookies may affect the functionality of parts of our website.

Sharing of Information

We may share your information with trusted third parties only in the following circumstances:

  • Service providers — vendors and tools we use to operate our business, such as hosting providers, analytics platforms, and email services. These parties are contractually bound to handle your data securely.
  • Legal requirements — where we are required by law, court order, or government authority to disclose information.
  • Business transfers — in the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction with appropriate notice to you.

Data Retention

We retain personal information only for as long as necessary to fulfill the purposes outlined in this policy, to maintain business records in accordance with applicable laws, or as required under any service agreement. When information is no longer needed, we securely delete or anonymize it.

Data Security

We take the security of your information seriously. Our practices are aligned with ISO 27001 guidelines for information security management, and we apply appropriate technical and organizational safeguards including encryption, access controls, and secure data handling procedures to protect your data from unauthorized access, loss, or disclosure.

While we implement strong security measures, no method of transmission over the internet or electronic storage is completely secure. We encourage you to use secure networks and keep your own credentials confidential.

Your Rights

Depending on your location and applicable data protection laws, you may have the following rights regarding your personal data:

  • Access — request a copy of the personal data we hold about you.
  • Correction — ask us to correct inaccurate or incomplete information.
  • Deletion — request that we delete your personal data where it is no longer necessary.
  • Restriction — ask us to limit how we process your data in certain circumstances.
  • Objection — object to processing carried out on the basis of legitimate interests.
  • Portability — request your data in a structured, commonly used, machine-readable format.
  • Withdraw consent — where processing is based on consent, you may withdraw it at any time without affecting prior processing.

To exercise any of these rights, please contact us using the details on our Contact page. We will respond to your request within a reasonable timeframe.

Children’s Privacy

Our website and services are not directed at individuals under the age of 16. We do not knowingly collect personal information from minors. If you believe a minor has submitted information to us, please contact us immediately and we will take steps to delete it.

Third-Party Links

Our website may contain links to third-party websites or resources. This Privacy Policy applies only to Gloocan’s own services. We are not responsible for the privacy practices or content of external websites and encourage you to review their policies independently.

International Data Transfers

If you are accessing our services from outside Sri Lanka, please be aware that your information may be transferred to and processed in countries with different data protection laws. In such cases, we take reasonable steps to ensure that appropriate safeguards are in place in accordance with applicable regulations.

Updates to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. When we do, we will revise the “Last Updated” date at the top of this page. We encourage you to review this policy periodically. Continued use of our services after changes are posted constitutes your acceptance of the updated policy.

Contact Us

If you have any questions, concerns, or requests relating to this Privacy Policy or how we handle your personal data, please reach out to us through the contact options listed on our Contact page. We are committed to addressing your concerns promptly and transparently.