Privacy Policy

Last Updated: January 15, 2025

DigiLead ("we," "us," or "our") is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy describes how we collect, use, disclose, and safeguard your information when you visit our website or use our digital leadership transformation services.

Information We Collect

Personal Information

We may collect personal information that you voluntarily provide to us when you:

• Register for our services or create an account
• Request information about our services
• Subscribe to our newsletter or marketing communications
• Participate in surveys, contests, or promotional activities
• Contact us through our website or other communication channels
• Attend our events or webinars

This personal information may include your name, email address, phone number, company name, job title, professional background, and any other information you choose to provide.

Automatically Collected Information

When you visit our website, we may automatically collect certain information about your device and browsing behavior, including:

• IP address and geographic location
• Browser type and version
• Operating system and device information
• Pages visited and time spent on our website
• Referring website or source
• Search terms used to find our website
• Cookies and similar tracking technologies

How We Use Your Information

We use the information we collect for various purposes, including:

• Providing and maintaining our services
• Processing your requests and responding to inquiries
• Sending you information about our services and industry insights
• Personalizing your experience on our website
• Analyzing website usage and improving our services
• Detecting and preventing fraud or security threats
• Complying with legal obligations and regulatory requirements
• Conducting research and development to enhance our offerings

Legal Basis for Processing

We process your personal information based on the following legal grounds:

• Consent: When you have given us clear consent to process your information for specific purposes
• Contract: When processing is necessary for the performance of a contract with you
• Legal Obligation: When we need to comply with legal or regulatory requirements
• Legitimate Interest: When we have a legitimate business interest that does not override your privacy rights

Information Sharing and Disclosure

We do not sell, rent, or trade your personal information to third parties. We may share your information in the following circumstances:

Service Providers

We may share your information with trusted third-party service providers who assist us in operating our website, conducting our business, or providing services to you. These service providers are contractually obligated to protect your information and use it only for the purposes we specify.

Business Transfers

In the event of a merger, acquisition, or sale of all or part of our business, your personal information may be transferred to the new owner as part of the transaction.

Legal Requirements

We may disclose your information if required to do so by law or in response to valid requests by public authorities, such as a court order or government agency.

Data Security

We implement appropriate technical and organizational security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include encryption, secure servers, firewalls, access controls, and regular security assessments. However, no method of transmission over the internet or electronic storage is completely secure, and we cannot guarantee absolute security.

Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce our agreements. The retention period may vary depending on the type of information and the purpose for which it was collected. We regularly review and delete or anonymize personal information that is no longer needed.

Your Rights and Choices

Depending on your location, you may have certain rights regarding your personal information:

• Access: You can request access to the personal information we hold about you
• Correction: You can request that we correct or update inaccurate personal information
• Deletion: You can request that we delete your personal information in certain circumstances
• Portability: You can request a copy of your personal information in a structured, machine-readable format
• Restriction: You can request that we restrict the processing of your personal information
• Objection: You can object to the processing of your personal information in certain circumstances
• Withdraw Consent: You can withdraw your consent to processing at any time

Marketing Communications

We may send you marketing communications about our services and industry insights. You can opt out of receiving these communications at any time by following the unsubscribe instructions in the emails or contacting us directly. Please note that even if you opt out of marketing communications, we may still send you service-related messages that are necessary for the operation of our services.

Third-Party Websites

Our website may contain links to third-party websites or services. This Privacy Policy does not apply to those third-party sites, and we are not responsible for their privacy practices. We encourage you to review the privacy policies of any third-party sites you visit.

Children's Privacy

Our services are not intended for children under the age of 18. We do not knowingly collect personal information from children under 18 years of age. If we become aware that we have collected personal information from a child without appropriate consent, we will take steps to delete such information promptly.

International Data Transfers

Your personal information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws than your country. When we transfer your personal information internationally, we implement appropriate safeguards to ensure your information remains protected in accordance with this Privacy Policy and applicable laws.

Automated Decision-Making

We may use automated decision-making processes, including profiling, to analyze your information and provide personalized services or communications. You have the right to request human intervention in automated decision-making processes that significantly affect you and to challenge decisions made through automated processing.

Data Breach Notification

In the event of a data breach that may affect your personal information, we will notify you and relevant authorities as required by applicable law. We will provide information about the nature of the breach, the data involved, and the steps we are taking to address the situation.

Privacy by Design

We incorporate privacy considerations into the design and development of our services, systems, and business practices. This includes implementing data minimization principles, ensuring transparency in our data practices, and providing you with meaningful choices about how your information is used.

Updates to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by posting the updated policy on our website with a new "Last Updated" date. For significant changes, we may provide additional notice through email or other communication methods.

Jurisdiction and Governing Law

This Privacy Policy and our data processing practices are governed by the laws of Sri Lanka and other applicable jurisdictions where we operate. Any disputes arising from this Privacy Policy will be resolved in accordance with the laws and legal procedures of the relevant jurisdiction.

Data Protection Officer

We have appointed a Data Protection Officer to oversee our data protection practices and ensure compliance with applicable privacy laws. Our Data Protection Officer is responsible for monitoring our data processing activities, conducting privacy impact assessments, and serving as a point of contact for data protection authorities and individuals with privacy concerns.

Complaints and Supervisory Authorities

If you believe that we have violated your privacy rights or applicable data protection laws, you have the right to file a complaint with us directly. You also have the right to lodge a complaint with your local data protection authority or supervisory authority. We encourage you to contact us first so that we can address your concerns directly.

Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us through the methods available on our website. We will respond to your inquiry promptly and work to address any concerns you may have about how we handle your personal information.