Privacy Policy
Last updated: December 06, 2024
About Us
We are Colombo City Express (Pvt) Ltd, a company incorporated in Colombo, Sri Lanka and whose registered office is at Nawala Road, Nugegoda, Sri Lanka. This Privacy Policy describes Our policies and procedures on the collection, use and disclosure of Your information when You use the Service and tells You about Your privacy rights and how the law protects You.
Interpretation and Definitions
Interpretation
The words of which the initial letter is capitalized have meanings defined under the following conditions. The following definitions shall have the same meaning regardless of whether they appear in singular or in plural.
Definitions
For the purposes of this Privacy Policy:
- Account: means a unique account created for You to access our Service or parts of our Service.
- Affiliate: means an entity that controls, is controlled by or is under common control with a party, where "control" means ownership of 50% or more of the shares, equity interest or other securities entitled to vote for election of directors or other managing authority.
- Company: refers to Colombo City Express (PVT) LTD, 146 1/1, Nawala Road, Nugegoda, Sri Lanka.
- Cookies: are small files that are placed on Your computer, mobile device or any other device by a website, containing the details of Your browsing history on that website among its many uses.
- Country: refers to: Sri Lanka
- Device: means any device that can access the Service such as a computer, a cellphone or a digital tablet.
- Personal Data: is any information that relates to an identified or identifiable individual.
- Service: refers to the Website.
- Service Provider: means any natural or legal person who processes the data on behalf of the Company. It refers to third-party companies or individuals employed by the Company to facilitate the Service, to provide the Service on behalf of the Company, to perform services related to the Service or to assist the Company in analyzing how the Service is used.
- Usage Data: refers to data collected automatically, either generated by the use of the Service or from the Service infrastructure itself (for example, the duration of a page visit).
- Website: refers to CCExpress, accessible from https://ccexpress.lk/en
- You: means the individual accessing or using the Service, or the company, or other legal entity on behalf of which such individual is accessing or using the Service, as applicable.
Data Protection Principles
We abide by the following data protection principles, as stipulated in the Sri Lanka's Personal Data Protection Act (PDPA), in all of our dealings with your personal data:
- Lawfulness, fairness, and transparency: We will only handle your personal data lawfully, fairly, and in a transparent manner in relation to you.
- Purpose limitation: Your personal data will only be collected for specified, explicit, and legitimate purposes (which are explained in further detail below) and not further processed in a manner that is incompatible with those purposes.
- Data minimisation: Your personal data will be adequate, relevant, and limited to what is necessary in relation to the purposes for which they are processed.
- Accuracy: We will endeavour to keep your personal data accurate and up to date at all times.
- Storage limitation: We will retain your personal data for no longer than is necessary for the purposes for which it is used.
- Integrity and confidentiality: Your personal data will be handled in a manner that ensures appropriate security of the personal data, including protection against unauthorised or unlawful processing and against accidental loss, destruction or damage.
How we collect and use your information
| Purpose | Information Used |
|---|---|
| Merchant Registration | Bank details, business name, and business information for verification purposes |
| Data Analytics | Website usage data, product interactions, and customer relationship information to improve our services and marketing |
| Order Management | Shipping information stored in secure database for product delivery purposes |
How we store your information
We have appropriate security measures in place to prevent personal information from being accidentally lost, or used or accessed in an unauthorised way. We limit access to your personal information to those who have a genuine business need to know it. Those processing your information will do so only in an authorised manner and are subject to a duty of confidentiality.
We also have procedures in place to deal with any suspected data security breach. We will notify you and any applicable regulator of a suspected data security breach where we are legally required to do so.
How long we store your information for
We will retain your information for as long as you have an account on our website or are registered with us. If you delete your account or request us to do so (or request to end your registration with us), we will only retain your personal data for as long as reasonably necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, tax, accounting or reporting requirements.
Contact Us
If you have any questions about this Privacy Policy, You can contact us:
- By email: legal@ccexpres.lk
- By visiting this page on our website: https://ccexpress.lk/en/contact