Privacy Policy

Last Updated: October 15, 2025

Introduction

Welcome to [Your Company Name]. We are a trusted and leading supplier of premium-quality cashews and peanuts to some of Sri Lanka’s most prominent companies. We are committed to protecting your privacy and ensuring the security of your personal information.

This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and use our e-commerce services.

By using our website, you agree to the collection and use of information in accordance with this policy.

Information We Collect

Personal Information

We may collect personally identifiable information that you voluntarily provide to us when you:

  • Create an account on our WordPress/WooCommerce website
  • Place an order for cashews, peanuts, or other products
  • Subscribe to our newsletter
  • Contact us through our contact form
  • Leave product reviews or comments
  • Participate in surveys or promotions

This information may include:

  • Full name
  • Email address
  • Phone number
  • Delivery address
  • Billing address
  • Company name and business registration details (for B2B customers)
  • Payment information (processed securely through our payment gateway)

Order Information

When you place an order, we collect:

  • Product details and quantities
  • Order value and payment method
  • Delivery preferences and special instructions
  • Purchase history

Automatically Collected Information

When you visit our website, we automatically collect certain information through WordPress and WooCommerce, including:

  • IP address
  • Browser type and version
  • Device information
  • Operating system
  • Pages visited and time spent on pages
  • Referring website addresses
  • Shopping cart activity
  • WordPress cookies and session data

WordPress/WooCommerce Specific Data

Our platform may collect:

  • User account information and login credentials
  • WooCommerce session data
  • WordPress user roles and permissions
  • Site interaction data through WordPress analytics

How We Use Your Information

We use the information we collect for the following purposes:

Order Processing and Fulfillment

  • Processing and delivering your cashew and peanut orders
  • Managing payments through secure payment gateways
  • Generating invoices and receipts
  • Sending order confirmations, shipping updates, and delivery notifications
  • Handling returns, exchanges, and quality concerns
  • Managing wholesale and bulk orders for corporate clients

Customer Service

  • Responding to your inquiries about our products
  • Providing customer support through email, phone, or contact forms
  • Resolving disputes and addressing quality issues
  • Managing your WordPress account

Marketing and Communication

  • Sending promotional emails about new product arrivals and special offers (with your consent)
  • Sharing newsletters with company updates and industry news
  • Notifying you about seasonal products and bulk order discounts
  • Personalizing your shopping experience based on preferences

Business Operations

  • Improving our website functionality and user experience
  • Analyzing customer purchasing patterns
  • Managing inventory and supply chain
  • Detecting and preventing fraudulent transactions
  • Complying with Sri Lankan legal and tax obligations
  • Maintaining WordPress and WooCommerce security

Cookies and Tracking Technologies

Our WordPress/WooCommerce website uses cookies and similar technologies:

Essential Cookies

  • WordPress session cookies for logged-in users
  • WooCommerce shopping cart functionality
  • Payment gateway security tokens
  • User authentication and account management

Analytics Cookies

  • WordPress statistics and site usage data
  • Google Analytics (if enabled) for visitor insights
  • WooCommerce analytics for sales and product performance

Marketing Cookies

  • Email marketing tracking (if subscribed)
  • Social media integration cookies
  • Advertising campaign performance

You can manage cookie preferences through your browser settings. Note that disabling certain cookies may affect website functionality, including the ability to add products to cart or complete purchases.

Data Sharing and Disclosure

We respect your privacy and do not sell your personal information to third parties. We may share your information only in the following circumstances:

Service Providers

We share necessary information with trusted third-party service providers who assist us in:

Payment Processing:

  • Sri Lankan payment gateways (e.g., PayHere, iPay, VISA/Mastercard processors)
  • Bank payment verification services

Delivery and Logistics:

  • Local courier services for product delivery
  • Shipping companies for bulk orders
  • Delivery tracking services

Technology Services:

  • WordPress hosting providers
  • WooCommerce support and maintenance
  • Email service providers (e.g., Mailchimp, SendGrid)
  • SSL certificate providers
  • Cloud backup services

Business Services:

  • Accounting software for invoicing
  • Analytics platforms for business insights

These service providers are contractually obligated to protect your information and use it only for specified purposes.

Legal Requirements

We may disclose your information if required by Sri Lankan law or in response to:

  • Court orders or legal processes
  • Requests from government authorities or regulatory bodies
  • Protection of our business rights, property, or safety
  • Investigation of fraud, security breaches, or illegal activities
  • Compliance with tax and customs regulations

Business Transfers

In the event of a merger, acquisition, or sale of our business assets, your information may be transferred to the new entity with prior notification.

B2B Customers

For wholesale and corporate clients, we may share basic business information (company name, order volumes) with suppliers to ensure adequate stock availability.

Data Security

We implement comprehensive security measures to protect your personal information:

Technical Security

  • SSL/TLS encryption (HTTPS) for all data transmission
  • Secure WordPress hosting with firewalls
  • Regular WooCommerce and WordPress security updates
  • PCI DSS compliant payment processing
  • Encrypted database storage
  • Regular automated backups
  • DDoS protection and malware scanning

Administrative Security

  • Access controls and user role management
  • Strong password requirements
  • Two-factor authentication for admin accounts
  • Employee training on data protection
  • Regular security audits

Physical Security

  • Secure servers in protected data centers
  • Restricted access to physical infrastructure

While we implement industry-standard security measures, no method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.

Your Rights and Choices

Under Sri Lankan data protection principles and international best practices, you have the following rights:

Access and Correction

  • Request access to your personal information stored in our WordPress database
  • Update your account information through your user dashboard
  • Request corrections to inaccurate or incomplete data

Data Portability

  • Download your personal data in a common format
  • Export your order history and account information

Data Deletion

  • Request deletion of your account and associated data
  • Note: We may retain certain information for legal, tax, or accounting purposes as required by Sri Lankan law

Marketing Preferences

You can opt out of marketing communications by:

  • Clicking the “unsubscribe” link in our emails
  • Managing your account email preferences
  • Contacting us directly at [Your Email]

Cookie Management

  • Control cookies through your browser settings
  • Opt out of analytics tracking
  • Manage third-party cookie preferences

To exercise any of these rights, please contact us using the information provided below.

WordPress Account Information

If you create an account on our website:

  • You are responsible for maintaining the confidentiality of your password
  • You can update your information through the account dashboard
  • You can delete your account by contacting us (order history may be retained for legal purposes)
  • Your account activity and preferences are stored in our WordPress database

WooCommerce Data Processing

Our WooCommerce platform processes:

  • Shopping cart and checkout data
  • Payment transaction records (without storing full card details)
  • Order history and status updates
  • Customer reviews and ratings
  • Shipping and billing information

All WooCommerce data is processed in accordance with this Privacy Policy and applicable e-commerce regulations.

Data Retention

We retain your personal information for the following periods:

  • Active customer accounts: Duration of account activity
  • Order records: 7 years (for tax and legal compliance under Sri Lankan law)
  • Payment information: As required by payment processors and financial regulations
  • Marketing data: Until you unsubscribe or request deletion
  • Website analytics: 26 months (Google Analytics default)
  • Inactive accounts: May be deleted after 3 years of inactivity with prior notification

When data is no longer needed, we securely delete or anonymize it from our WordPress database.

Third-Party Integrations

Our WordPress/WooCommerce website may integrate with:

  • Payment gateways (PayHere, iPay, etc.)
  • Shipping and logistics APIs
  • Email marketing platforms
  • Social media platforms
  • Google Analytics or similar analytics tools
  • Live chat services

Each integration has its own privacy policy, which we encourage you to review.

Third-Party Links

Our website may contain links to suppliers, partners, or industry resources. We are not responsible for the privacy practices of these external sites.

Children’s Privacy

Our website is intended for business customers and individuals over 18 years of age. We do not knowingly collect information from children. If you are under 18, please do not use our website or provide any personal information.

International Customers

While our primary market is Sri Lanka, if you are accessing our website from outside Sri Lanka:

  • Your information may be transferred to and processed in Sri Lanka
  • We comply with Sri Lankan data protection standards
  • By using our website, you consent to such international data transfers

WordPress and WooCommerce Updates

We regularly update our WordPress and WooCommerce platforms to:

  • Maintain security and functionality
  • Comply with evolving privacy standards
  • Improve user experience
  • Address vulnerabilities

These updates may affect how we collect and process data, and we will update this policy accordingly.

Data Breach Notification

In the unlikely event of a data breach affecting your personal information:

  • We will investigate and assess the breach promptly
  • We will notify affected users within 72 hours when feasible
  • We will notify relevant Sri Lankan authorities if required
  • We will take immediate steps to secure our systems and prevent future breaches

Your Responsibilities

As a user of our website, you agree to:

  • Provide accurate and current information
  • Maintain the security of your account credentials
  • Notify us immediately of any unauthorized account access
  • Use our website in compliance with applicable laws
  • Not attempt to breach our security measures

Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect:

  • Changes in our business practices
  • WordPress/WooCommerce platform updates
  • New features or services
  • Legal or regulatory requirements

We will notify you of significant changes by:

  • Posting the updated policy on our website
  • Updating the “Last Updated” date at the top
  • Sending email notifications for material changes (to subscribed users)
  • Displaying a notice on our website

We encourage you to review this policy regularly.

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

[Your Company Name]
Premium Cashew and Peanut Suppliers

Address: [Your Business Address]
Email: [Your Email Address]
Phone: [Your Phone Number]
Business Hours: [Your Operating Hours]

For urgent data privacy matters: [Dedicated Privacy Contact Email]

Complaint Resolution

If you believe we have not handled your personal information appropriately:

  1. Contact us using the information above
  2. We will investigate and respond within 14 business days
  3. If unsatisfied with our response, you may escalate to relevant Sri Lankan authorities

Consent

By using our WordPress/WooCommerce website and services, you acknowledge that you have:

  • Read and understood this Privacy Policy
  • Agree to the collection and use of your information as described
  • Consent to the use of cookies and tracking technologies
  • Understand your rights regarding your personal data

Note: This Privacy Policy is designed for WordPress/WooCommerce e-commerce websites operating in Sri Lanka. It incorporates international best practices and addresses platform-specific considerations. For comprehensive legal compliance with Sri Lankan regulations, we recommend consulting with a legal professional familiar with local data protection and e-commerce laws.