Privacy Policy

FINDMO ("we", "our", "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website www.findmo.online, contact us, or engage our creative services.

By using our website or services, you agree to the practices described in this policy. If you do not agree, please do not use our website.

On this page

Information we collect
How we use your information
Legal basis (GDPR)
Sharing & third parties
Cookies & tracking
Data retention
Security
Your rights
International transfers
Children's privacy
Changes to this policy
Contact us

1. Information we collect

We collect information that you provide directly to us, information collected automatically, and information from third parties.

Information you provide

Contact details: name, email address, phone number, company name when you submit our contact form, request a proposal, or engage our services.
Project details: business goals, brand information, content, and other materials you share with us so we can deliver our services.
Communications: the content of emails, messages, and calls you exchange with our team.

Information collected automatically

Usage data: pages visited, time spent, referring URL, device type, browser, approximate location (city level), and IP address.
Cookies: small data files stored on your device. See section 5 for details.

2. How we use your information

We use the information we collect for the following purposes:

To respond to your inquiries and deliver the services you requested.
To send proposals, quotes, invoices, and project communications.
To improve our website and services based on usage analytics.
To send occasional marketing emails about our services — only with your consent, and you can unsubscribe at any time.
To comply with legal obligations and enforce our agreements.

3. Legal basis for processing (GDPR)

If you are located in the United Kingdom or European Economic Area, we rely on the following legal bases under the UK GDPR and EU GDPR:

Consent — for marketing emails and non-essential cookies.
Contract — to deliver services you've engaged us for.
Legitimate interest — to operate our business, secure our website, and respond to inquiries.
Legal obligation — to comply with applicable laws.

We do not sell your personal information. We share it only in these limited circumstances:

Service providers — trusted third parties that help us deliver our services (e.g. email infrastructure, hosting, analytics). They are bound by confidentiality obligations.
Legal requirements — when required by law, court order, or to protect our rights.
Business transfers — in the event of a merger or acquisition, with notice to you.

5. Cookies & tracking

We use cookies and similar technologies for the following purposes:

Strictly necessary cookies — required for the website to function (login sessions, form submissions). Cannot be disabled.
Analytics cookies — anonymous usage data to help us improve the site. Disabled by default; enabled only with your consent.

You can control cookies through our cookie banner on first visit, or by clearing your browser data at any time.

6. Data retention

We retain your information only as long as necessary for the purposes described:

Inquiry data — up to 24 months from last contact.
Client project files — for the duration of our engagement plus 7 years for accounting and legal compliance.
Website analytics — up to 26 months in aggregated form.

You can request earlier deletion at any time (see section 8).

7. Security

We use industry-standard technical and organisational measures to protect your information, including:

HTTPS encryption for all website traffic.
Hashed passwords (bcrypt) — we never store passwords in plain text.
Server-side access controls on uploaded files and client data.
Regular security reviews and updates.

While we work hard to protect your data, no online transmission is 100% secure. We cannot guarantee absolute security.

8. Your rights

If you are in the UK, EU, or other jurisdictions with similar laws, you have the right to:

Access the personal data we hold about you.
Rectify inaccurate or incomplete data.
Erase your data ("right to be forgotten") subject to legal exceptions.
Restrict processing in certain circumstances.
Object to processing based on legitimate interest.
Data portability — receive your data in a structured, machine-readable format.
Withdraw consent at any time where processing is based on consent.
Lodge a complaint with a supervisory authority (e.g. the UK ICO or your local EU DPA).

To exercise any of these rights, email us at contact@findmo.online. We will respond within 30 days.

9. International data transfers

FINDMO is based in Sri Lanka. If you contact us from the UK, EU, or other regions, your data will be transferred outside your home country to be processed by us.

Where required, we apply appropriate safeguards such as Standard Contractual Clauses (SCCs) and limit access to authorised personnel only.

10. Children's privacy

Our services are not directed at children under 16. We do not knowingly collect data from children. If you believe a child has provided us information, contact us and we will delete it.

11. Changes to this policy

We may update this Privacy Policy from time to time. The "Last updated" date at the top reflects the latest revision. Material changes will be notified via the website or email where appropriate.

12. Contact us

If you have questions about this policy or want to exercise your rights, contact us:

Email: contact@findmo.online
Phone: +94 76 124 6474
Website: www.findmo.online