DthPay works to ensure your privacy is protected when using our services. We, therefore, have a policy setting out how your personal data will be processed and protected. Any changes we have made to this data policy can be found by visiting our website.
We take responsibility for all the personal data – such as your name, address, e-mail address and date of birth – that you provide us with or that we obtain through purchases, when you order catalogues, subscribe to our newsletter or when you create a personal account on dthpay.com.
These details are kept within the dthpay group with the mother company – Avinconet acting as the party responsible for your personal data under the Sri Lankan Data Protection Act and its subsidiaries acting as personal data assistants/processors on behalf of the mother company. dthpay maintains and processes your personal data in Sri Lanka and in accordance with this Act.
Dthpay will not pass on your personal details to third parties.
Your rights under the Data Protection Act will not be affected.
Why do we collect data?
In providing your personal details you consent to us using the data collected in order to meet our commitments to you and provide the service you expect. This will include processing of orders for shipping, text message notification of delivery status, managing your account by carrying out credit checks, sending information such as new services or other marketing offers which may be of interest and also to notify you of any changes or enhancement to our services by either email, telephone or mail from dthpay. Your details may also be used to monitor traffic to and from our website to help us improve the design and layout of the site. In the event of any problem with delivery of your items, we will use the information to get in contact with you
Where can I contact to find out what data is held?
You have the right to contact us to find out what personal data is held about you. If it is incorrect, incomplete or irrelevant you can request that the data is corrected or deleted. You can withdraw your consent to us using your personal data for marketing purposes (e.g. sending catalogues, newsletters or offers) whenever you like. You can contact us either by email to firstname.lastname@example.org
Who has access to the data?
We never pass on/sell/swap your data to/with third parties for marketing outside Dthpay. Data that is forwarded to third parties is used only to meet Dthpay commitments to you. For example, Dthpay forwards address data to suppliers and shipping agents in connection with deliveries.
How long is your data stored for?
Your data is only stored for as long as it is needed in order to perform our services, or for the time laid down in law.
How do we protect your data?
We have taken technical and organisational measures to protect your data from loss, manipulation, unauthorised access, etc. We continually adapt our security measures to technological progress and developments. At www.dthpay.com we protect your data using encryption. SSL stands for Secure Sockets Layer and is a function that encrypts all information sent between buyer and seller.
To make card purchases with us as secure as possible all information is sent in encrypted form using SSL (Secure Sockets Layer). This means that the information is passed through a secure connection and that your card details cannot be read by external parties.
For card purchases, we work with an authorised payment agent that helps us to check directly with your bank that the card is valid for purchases. Our payment agent processes your card details in the correct way according to the international security standard PCI DSS, which was developed by the card companies VISA, MasterCard, Diners, American Express and JCB. This means that your card details are processed with a very high level of security.
When you pay by card we reserve the right to carry out an identity check.