Built to Solve. Designed to Scale.

Privacy Policy

Last Updated: 11 May 2025

Jerach Technology Ltd (“we”, “us”, or “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data in compliance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, US privacy laws (e.g., California Consumer Privacy Act, CCPA), Canada’s Personal Information Protection and Electronic Documents Act (PIPEDA), and Australia’s Privacy Act 1988 (Australian Privacy Principles, APPs). This policy applies to all personal data we process when you use our services, visit our website (jerachtechnology.com), or interact with us.

1. Who we are

Data Controller:
Jerach Technology Ltd
BN14 8DY
Email: chuks@jerachtechnology.com
Privacy Officer: Chukwuka Uroko

We are the data controller responsible for your personal data. Our services are primarily intended for customers in the United Kingdom and the United States, but this policy also applies to customers in Canada and Australia who use our services.

2. Personal Data We Collect

We collect and process the following categories of personal data across our products:

• Identity Data: Name, title, date of birth, or other identifiers.
• Contact Data: Email address, phone number, billing address, or delivery address.
• Financial Data: Payment card details or bank account information (processed securely via third-party payment processors).
• Transaction Data: Details about payments, purchases, or services requested.
• Technical Data: IP address, browser type, device information, website usage data.
• Profile Data: Username, password, preferences, feedback, survey responses.
• Usage Data: Information about how you use our website, products, or services.
• Marketing and Communications Data: Preferences for receiving marketing communications.

Product-Specific Data

• Product A (e.g., E-commerce Platform): Collects transaction and contact data for order fulfillment.
• Product B (e.g., Mobile App): Collects usage data for analytics and, with consent, health data for personalized features (sensitive data under PIPEDA/APPs).

Special Categories/Sensitive Data

We may collect special categories of personal data (UK GDPR) or sensitive information (PIPEDA/APPs), such as health data, only with your explicit consent or where legally required.

How We Collect Your Data

• Direct Interactions: Forms, account registration, or customer support.
• Automated Technologies: Cookies, server logs (see Cookie Policy).
• Third Parties: Analytics providers, payment processors, public sources (e.g., UK Companies House).

Note for US, Canadian, and Australian Residents

• US (CCPA): We collect identifiers, commercial information, internet activity, and inferences. We do not collect data from children under 13 without parental consent (COPPA).
• Canada (PIPEDA): We collect personal information as listed above, ensuring meaningful consent.
• Australia (APPs): We collect personal and sensitive information, with additional safeguards for sensitive data.

3. How We Use Your Personal Data

We process personal data only where we have a lawful basis (UK GDPR) or permitted purpose (US, Canada, Australia).

UK GDPR Lawful Bases

• Consent, contract, legal obligation, legitimate interests, vital interests (as in previous policy).

Purposes of Processing

We use your personal data to:

• Provide, operate, and maintain our services.
• Process orders, payments, and deliveries.
• Personalize your experience.
• Send marketing communications (with consent for UK/Canada/Australia; opt-out for US).
• Improve services via analytics.
• Ensure system security and prevent fraud.
• Comply with legal obligations.

Product-Specific Uses

• Product A: Processes transaction data for order fulfillment and marketing.
• Product B: Uses health data for personalized features (with explicit consent).

Note for US, Canadian, and Australian Residents

• US (CCPA): We may share data for targeted advertising (subject to opt-out).
• Canada (PIPEDA): We ensure accountability and limit use to stated purposes.

Australia (APPs): We use sensitive data only with consent and for disclosed purposes.

4. Sharing Your Personal Data

We may share your personal data with:

• Service Providers: Payment processors, delivery services, IT support, analytics.
• Professional Advisors: Lawyers, accountants, auditors.
• Authorities: Regulators or law enforcement, where required.
• Business Partners: For marketing/joint services (with consent/opt-out).

Product-Specific Sharing

• Product A: Shares with delivery services.
• Product B: Shares with health analytics providers (with consent).

Note for US, Canadian, and Australian Residents

Australia (APPs): We share data only with entities meeting APP standards.

US (CCPA): We share identifiers and internet activity with advertising partners (opt-out available).

Canada (PIPEDA): We share data only with processors under contract.

5. International Transfers

We may transfer your personal data to countries outside your jurisdiction (e.g., UK to US, Canada, Australia):

• UK Data: Protected by UK International Data Transfer Agreement or Standard Contractual Clauses (SCCs) for transfers to non-adequate countries (e.g., US, Canada, Australia).
• US Data: Transferred under CCPA-compliant contracts with service providers.
• Canadian Data: Transferred with PIPEDA-compliant safeguards (e.g., contracts ensuring equivalent protection).
• Australian Data: Transferred under APP 8, ensuring recipients meet Privacy Act standards or are subject to equivalent laws.

We may rely on the EU-US Data Privacy Framework (DPF) for US transfers if certified.

6. How Long We Keep Your Data

We retain personal data only as long as necessary for the stated purposes or legal requirements (e.g., 7 years for UK tax records). Data is securely deleted or anonymized when no longer needed.

7. Your Data Protection Rights

UK Residents (UK GDPR)

• Rights to access, rectify, erase, restrict, port, object, withdraw consent (as in previous policy).
• Contact: chuks@jerachtechnology.com.
• Complaints: UK Information Commissioner’s Office (www.ico.org.uk).

US Residents (CCPA and Other State Laws)

• Rights to know, delete, correct, opt out of sale/sharing, non-discrimination (as in previous policy).
• Opt-out: “Do Not Sell or Share My Personal Information”.
• Contact: support@jerachtechnology.comor web form.
• Complaints: State attorney general or US FTC.

Canadian Residents (PIPEDA)

• Rights: Access, correct, or challenge compliance with PIPEDA.
• How to Exercise: Contact our Privacy Officer at chuks@jerachtechnology.com. We respond within 30 days.
• Complaints: Office of the Privacy Commissioner of Canada (www.priv.gc.ca).

Australian Residents (APPs)

• Rights: Access, correct, request deletion, or lodge a complaint.
• How to Exercise: Contact us at chuks@jerachtechnology.com. We respond within 30 days.
• Complaints: Office of the Australian Information Commissioner (www.oaic.gov.au).

8. Data Breach Notifications

We will notify:

• UK residents and ICO within 72 hours (UK GDPR).
• US residents per state laws (e.g., CCPA).
• Canadian residents and Privacy Commissioner as soon as feasible (PIPEDA).
• Australian residents and OAIC for eligible data breaches (Privacy Act).

9. Security of Your Data

• Encryption, access controls, regular assessments (as in previous policy).

10. Cookies and Tracking Technologies

• UK/Canada/Australia: Consent for non-essential cookies.
• US: Opt-out for targeted advertising cookies.
• See Cookie Policy.

11. Third-Party Links

• As in previous policy.

12. Changes to This Privacy Policy

• As in previous policy.

13. Contact Us

Canada/Australia: Contact Privacy Officer at support@jerachtechnology.com.Suggested text: If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

Jerach Technology Ltd

support@jerachtechnology.com

BN14 8DY

US opt-out: “Do Not Sell or Share My Personal Information”.