HomePrivacy Policy

Privacy Policy

Privacy Policy for JanFridrich.com
Effective Date: 05.05.2023
Last Updated: 27.12.2024

 HARBOURSTONE VENTURES LIMITED (“we,” “us,” or “our”) values your privacy and is committed to protecting your personal data. This Privacy Policy outlines how we collect, use, and disclose personal information, and explains your rights under applicable laws, including the UK General Data Protection Regulation (UK GDPR), the UK Data Protection Act 2018, and Sri Lanka’s Personal Data Protection Act No. 9 of 2022 (PDPA).

This policy applies to all users of the website JanFridrich.com (“the Website”) and any related services provided by HARBOURSTONE VENTURES LIMITED

The legal holder details for this Privacy Policy can be updated here:
Legal Holder: HARBOURSTONE VENTURES LIMITED
Email:  info@janfridrich.com
Phone: +1 (929) 333-6422
Address: Suite RA01, 195-197 Wood Street, London, E17 3NU
 United Kingdom

  1. Data Controller

HARBOURSTONE VENTURES LIMITED is the data controller responsible for determining the purposes and means of processing your personal information.

Contact Details:
Legal Holder:  HARBOURSTONE VENTURES LIMITED
Address: Suite RA01, 195-197 Wood Street, London, E17 3NU
 United Kingdom
Email: info@janfridrich.com
Phone: +1 (929) 333-6422

  1. Personal Data We Collect

We may collect the following categories of personal data:

  1. Personal Identification Information
  • Name, title, date of birth, gender.
  • Contact details such as email address, postal address, and phone number.
  1. Technical Data
  • Internet Protocol (IP) address.
  • Browser type and version.
  • Time zone settings, browser plug-in types, and operating system.
  1. Usage Data
  • Information about how you interact with the Website.
  • Interaction data such as clickstream, referring URLs, and session duration.
  1. Marketing and Communication Data
  • Preferences for receiving marketing material and other communications.
  1. Special Categories of Personal Data (if applicable)
  • Sensitive data, such as health-related information, may be processed with your explicit consent.
  1. Methods of Data Collection

We collect data through:

  1. Direct Interactions
  • Filling out forms, subscribing to newsletters, or contacting us.
  1. Automated Technologies
  • Cookies, web beacons, and similar tracking technologies.
  1. Third-Party Sources
  • Public records, social media platforms, and partner platforms.
  1. Partner Platforms
  • Data provided by advertisers or affiliates to enhance our services.
  1. Purposes for Data Processing

We process your data for the following purposes:

  • To provide and improve our products and services.
  • To communicate updates, inquiries, or marketing materials.
  • To comply with legal and regulatory obligations.
  • To enhance security and prevent fraud.
  • To personalize content and advertisements.

Legal Basis for Processing:

  • Consent (UK GDPR Article 6(1)(a) & PDPA Section 12).
  • Contractual necessity (UK GDPR Article 6(1)(b)).
  • Legal obligation (UK GDPR Article 6(1)(c) & PDPA Section 10).
  • Legitimate interests (UK GDPR Article 6(1)(f)).
  1. Disclosure of Data

Your data may be shared with:

  1. Service Providers
  • IT, cloud hosting, and system administration providers.
  1. Legal and Regulatory Authorities
  • For compliance with legal processes such as court orders or subpoenas.
  1. Affiliates and Subsidiaries
  • For internal business processes.
  1. Advertising and Analytics Partners
  • To deliver targeted advertisements and analyse trends.
  1. International Data Transfers

If data is transferred between the UK and Sri Lanka:

  • UK Transfers: Safeguarded by standard contractual clauses approved by the ICO.
  • Sri Lanka Transfers: Compliant with PDPA conditions for international data transfers.
  1. Data Retention

Data is retained as follows:

  • Transactional Data: Retained for six years to meet tax and audit requirements.
  • Marketing Data: Retained until you withdraw consent or opt-out.
  • Usage Data: Retained for up to two years unless anonymized.
  1. Your Rights

Under the UK GDPR and PDPA, you have the following rights:

  • Right to Access: Obtain confirmation of data processing and access your data.
  • Right to Rectification: Request corrections to inaccurate data.
  • Right to Erasure (“Right to be Forgotten”): Request deletion of your data.
  • Right to Restriction: Temporarily halt data processing.
  • Right to Data Portability: Receive your data in a machine-readable format.
  • Right to Object: Object to processing for legitimate interests or marketing.
  • Right to Withdraw Consent: Revoke consent at any time.

To exercise your rights, contact us at info@janfridrich.com

  1. Cookies and Tracking Technologies

We use cookies to enhance your experience. For details, see our Cookie Policy.

  1. Data Security

We employ technical and organizational measures to safeguard your data:

  • Encryption and secure storage.
  • Access controls.
  • Regular audits and vulnerability testing.
  1. Complaints and Disputes

If you believe your data has been misused, you can lodge a complaint:

  • In the UK: Contact the Information Commissioner’s Office (ICO).
  • In Sri Lanka: Contact the Data Protection Authority (DPA).
  1. Changes to This Policy

This Privacy Policy may be updated periodically. The latest version will always be available on this page with an updated effective date.

  1. Contact Us

For questions or concerns about this Privacy Policy, contact:

Legal Holder: HARBOURSTONE VENTURES LIMITED
Email:  info@janfridrich.com
Phone: +1 (929) 333-6422
Address: Suite RA01, 195-197 Wood Street, London, E17 3NU
,United Kingdom