INFORMATION WE COLLECT
When you contact us through our website contact form, request a quote, or engage our services, we collect personal information such as your name, email address, phone number, company name, and project details you voluntarily share.
When you visit itservicelk.com, we may automatically collect technical data including your IP address, browser type and version, operating system, referring URLs, pages visited, and time spent on pages. This data is used solely for analytics and improving site performance.
We retain records of email correspondence and project-related communications between ITServiceLK and clients for contractual, legal, and service continuity purposes.
HOW WE USE YOUR INFORMATION
To respond to enquiries, provide quotations, deliver contracted web development and IT consulting services, and manage your project effectively.
To send project updates, invoices, technical support responses, and relevant service information. We do not send unsolicited marketing emails.
To comply with applicable laws, enforce our Terms of Service, and protect the rights and safety of ITServiceLK and its clients.
Aggregated, anonymised analytics data is used to improve site usability and content relevance. No personally identifiable information is used for this purpose.
DATA SHARING & THIRD PARTIES
ITServiceLK does not sell, rent, or trade your personal information to any third party under any circumstances.
We may share limited data with trusted third-party tools used to operate our business — such as email providers (Gmail), hosting infrastructure, and analytics platforms. These parties are contractually bound to handle data securely and only for the stated purpose.
We may disclose your information if required to do so by law, court order, or governmental authority, or to protect the rights, property, or safety of ITServiceLK, its clients, or the public.
In the event of a merger, acquisition, or sale of assets, client data may be transferred as part of that transaction. You will be notified via email and/or a prominent notice on our website prior to any such transfer.
DATA SECURITY
We implement industry-standard technical and organisational measures to protect your data — including SSL/TLS encryption in transit, secure server configurations, restricted access controls, and regular security reviews.
Once a website project is handed over and all credentials are transferred to the client, ITServiceLK is not responsible for the security of that website unless covered under an active maintenance agreement.
While we take data security seriously, no transmission over the internet is 100% secure. By using our website and services, you acknowledge this inherent risk.
YOUR RIGHTS
You have the right to request access to the personal data we hold about you and to request correction of any inaccurate information.
You may request deletion of your personal data. We will comply unless retention is required by law or legitimate business necessity (e.g. invoice records).
Where processing is based on your consent, you may withdraw that consent at any time. This does not affect the lawfulness of processing prior to withdrawal.
To exercise any of the above rights, contact us at lahiruprabathft@gmail.com. We will respond within 30 days.
DATA RETENTION
Project-related data is retained for the duration of the client relationship and for a minimum of 3 years thereafter for legal and accounting purposes.
Data submitted via our contact form from non-clients is retained for up to 12 months, after which it is securely deleted.
A backup copy of completed websites is retained for 30 days post-handover. Beyond this period, ITServiceLK does not retain client website data.
CHANGES TO THIS POLICY
We may update this Privacy Policy periodically to reflect changes in our practices or legal obligations. The "Last Updated" date at the top of this page will be revised accordingly. Continued use of our website after changes constitutes acceptance of the updated policy.