Avenya Clothing

0
No products in the cart. Shop all products
Shop
Search
0 Wishlist
0
0
No products in the cart. Shop all products

Privacy Policy

Effective date: 2025-12-22

Introduction

Welcome to Avenya Clothing (“we”, “us”, “our”). We respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and protect the personal data you provide when you use our website avenya.lk (the “Site”) and when you interact with us (e.g. purchases, accounts, customer support).

By using our Site, you agree to the collection and use of information in accordance with this Privacy Policy.

Data Protection and Legal Basis

We are bound by applicable Sri Lankan laws regarding data protection, including the Personal Data Protection Act, No. 9 of 2022 (the “PDPA”). Under the PDPA and related legislation, we will only process personal data when:

  • You have given your consent;
  • Processing is necessary to perform a contract with you (e.g. to fulfill your order);
  • Processing is required by law;
  • Processing is necessary for our legitimate interests (provided your fundamental rights are not overridden).

We will ensure transparency, purpose limitation, data minimization, accuracy, storage limitation, integrity/confidentiality, and accountability in handling personal data.

What Information We Collect

We may collect the following categories of information:

  • Identity & contact data: name, email address, phone number, billing & shipping address.
  • Account information: username, password (stored securely), order history.
  • Payment & transaction: payment method details (handled via secure third-party gateway), purchase information, refunds.
  • Communications: messages, support requests, product reviews.
  • Usage & device: IP address, device and browser information, pages visited, cookies and similar tracking technologies.
  • Marketing & preferences: newsletter subscriptions and marketing opt-ins.

We collect this data:

  • When you place an order;
  • When you register an account;
  • When you contact us (e.g. via email or support);
  • Via your interaction with the Site (cookies, analytics);
  • When you sign up for newsletters or marketing communications (if you opt in).

Use of Your Information

We use the personal data for the following purposes:

  • To process and fulfill your orders (including shipping, billing, order tracking);
  • To manage your account (login, updates, password recovery);
  • To provide customer service, support, and respond to queries;
  • To send you transactional communications (order confirmations, shipping updates, receipts);
  • To send you marketing communications (if you have opted in), such as promotions, newsletters, updates;
  • To analyze site usage, improve our offerings, optimize user experience;
  • To detect, prevent, and address fraud, security issues, or misuse;
  • To comply with legal obligations;
  • For any other purpose with your consent.

We will not use your personal data in a way that is incompatible with the reasons for which we collected it, without additional consent.

Disclosure & Sharing of Data

We may share your personal data with:

  • Service providers / third-party partners – e.g. payment processors, shipping/logistics companies, analytics providers, email or marketing platforms. We require such service providers to process personal data only as instructed and under confidentiality obligations.
  • Affiliates or business partners – only to the extent necessary and with safeguards.
  • Legal or regulatory authorities – when required by law, court order, or to protect rights, safety, or security.
  • Business transfers – in connection with a merger, acquisition, reorganization, or sale of assets, provided the acquiring entity agrees to similar privacy obligations.

We will ensure that third parties respect the confidentiality and security of your personal data and limit processing to the agreed purposes.

Cookies & Tracking

We (and our third-party partners) use cookies, web beacons, pixels, local storage, and similar technologies to collect usage and device data. These help us:

  • Recognize you and remember your preferences;
  • Track sessions, visits, pages viewed;
  • Provide analytics and performance metrics;
  • Serve ads and measure effectiveness (if you consent to marketing cookies).

You can typically control cookies through your browser settings (e.g. block or delete cookies). However, disabling some cookies may affect the functionality of the Site.

Data Retention

We will retain your personal data only for as long as needed to fulfill the purposes described in this policy, including legal, accounting, or reporting requirements.
When no longer needed, we will securely delete, anonymize, or aggregate the data.

When determining retention periods, we consider:

  • The nature of the data;
  • Purposes for which we process it;
  • Legal requirements (e.g. accounting, tax, consumer protection);
  • Risk of harm from unauthorized use or disclosure.

Rights of Data Subjects

Under the PDPA, you have certain rights with respect to your personal data, including:

  • Right to access – request a copy of your data;
  • Right to rectification – ask us to correct inaccurate or incomplete data;
  • Right to erasure (“right to be forgotten”) – request deletion of data in certain circumstances;
  • Right to restrict processing – ask us to limit processing under certain conditions;
  • Right to withdraw consent – if processing is based on consent;
  • Right to object – to processing based on legitimate interests;
  • Right to portability – receive your data in a commonly used format and transfer it elsewhere;
  • Right to not be subject to automated decision-making or profiling – in certain circumstances.

To exercise any of these rights, please contact us using the details below. We may require proof of identity to process such requests. We will respond within statutory timeframes (the PDPA generally requires us to respond within one month, with possible extension of two months).

We may refuse a request in certain circumstances if permitted by law (e.g. conflicting legal obligations, public interest, technical infeasibility), but we will inform you of the reasons.

Data Security

We implement and maintain appropriate technical and organizational measures to protect your personal data against unauthorized access, disclosure, alteration, or destruction. Such measures include:

  • Encryption (e.g. SSL/TLS for data in transit);
  • Access controls and authentication;
  • Firewalls and intrusion detection;
  • Secure systems and servers;
  • Regular security audits and updates;
  • Limiting personnel access to data;
  • Internal policies and training.

However, no data transmission or storage method is entirely secure. While we strive to protect your data, we cannot guarantee absolute security.

In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the relevant authorities and affected individuals as required by law.

International Transfers

Your personal data may be processed or stored in countries outside Sri Lanka (for example, by our third-party service providers). Where data is transferred internationally, we will take steps to ensure adequate safeguards are in place (e.g. standard contractual clauses, encryption, or ensuring the recipient jurisdiction provides similar protection).

Children’s Privacy

Our Site is not intended for use by children under 18. We do not knowingly collect personal data from children under 18. If we become aware that a child under 18 has provided us with personal data, we will delete that data.

Links to Other Websites

Our Site may contain links to external websites operated by third parties. This Privacy Policy does not apply to those sites. We encourage you to review the privacy policies of such third-party websites before providing personal data.

Changes to this Privacy Policy

We may update this Privacy Policy from time to time. When we make significant changes, we will post the revised policy on the Site, update the effective date, and if feasible, provide you with notice (e.g. by email). Your continued use of the Site after changes indicates your acceptance of the revised policy.

Contact Information

If you have questions, concerns, or wish to exercise your rights, please contact us:

Avenya Clothing
Email: hello@avenya.lk
Phone: +94 74 330 4842

Select the fields to be shown. Others will be hidden. Drag and drop to rearrange the order.
  • Image
  • SKU
  • Rating
  • Price
  • Stock
  • Availability
  • Add to cart
  • Description
  • Content
  • Weight
  • Dimensions
  • Additional information
Click outside to hide the comparison bar
Compare