Privacy Policy - ODYSSEY SOURCING

1. Introduction

The Odyssey Sourcing is committed to protecting the privacy and confidentiality of all personal and business information entrusted to us. This Privacy Policy outlines how we collect, use, store, and protect information in our role as a garment buying house operating in Bangladesh.

2. Information We Collect

2.1 Business Information

Company details and registration information
Contact information of business representatives
Financial information for payment processing
Trade references and business credentials
Product specifications and design information
Order details and commercial terms

2.2 Personal Information

Names and job titles of contact persons
Email addresses and phone numbers
Business addresses and shipping locations
Communication preferences
Meeting and travel arrangements

2.3 Technical Information

Website usage data and analytics
IP addresses and browser information
Email interaction tracking
System logs and security monitoring data

2.4 Manufacturing Information

Factory details and compliance records
Production capacity and capability data
Quality control reports and certifications
Supply chain information
Pricing and costing details

3. How We Use Information

3.1 Primary Business Purposes

Processing and fulfilling orders
Managing supplier and buyer relationships
Facilitating communication between parties
Conducting quality control and compliance monitoring
Arranging logistics and shipping
Processing payments and financial transactions
Providing customer support services

3.2 Business Development

Improving our services and processes
Developing new product capabilities
Market research and trend analysis
Creating business proposals and presentations
Maintaining business records and documentation

3.3 Legal and Compliance

Meeting regulatory requirements in Bangladesh
Complying with international trade regulations
Maintaining audit trails for compliance purposes
Responding to legal requests and investigations
Protecting our business interests and rights

4. Information Sharing and Disclosure

4.1 Authorized Sharing

We may share information with:

Manufacturing partners as necessary for order fulfillment
Logistics providers for shipping and delivery
Financial institutions for payment processing
Compliance auditors and certification bodies
Legal advisors and professional service providers
Government authorities as required by law

4.2 Confidentiality Commitments

We maintain strict confidentiality for all proprietary designs and specifications
Commercial terms and pricing information are kept confidential
Client lists and business relationships are protected
We require all partners to sign confidentiality agreements
Information is shared only on a need-to-know basis

4.3 Third-Party Services

We work with trusted third-party service providers who are bound by confidentiality agreements and required to maintain appropriate security standards.

5. Data Security Measures

5.1 Physical Security

Secure office premises with access controls
Locked storage for physical documents
Restricted access to sensitive areas
Security surveillance systems
Regular security assessments

5.2 Digital Security

Encrypted data transmission and storage
Regular software updates and security patches
Multi-factor authentication for system access
Regular data backups and disaster recovery plans
Firewall protection and intrusion detection

5.3 Access Controls

Role-based access to information systems
Regular review of user access permissions
Immediate revocation of access for departed employees
Audit logs for system access and data modifications
Regular security training for all employees

6. Data Retention

6.1 Business Records

Commercial documents retained for 7 years minimum
Financial records maintained as per Bangladesh tax regulations
Compliance documentation kept for audit purposes
Communication records preserved for business continuity

6.2 Personal Information

Contact information updated regularly and purged when no longer relevant
Website analytics data retained for 2 years
Marketing communications data kept until opt-out requested
Employment records maintained as per labor law requirements

7. International Data Transfers

7.1 Cross-Border Transfers

As a buying house facilitating international trade, we may transfer information across borders for legitimate business purposes including:

Sharing product specifications with international buyers
Coordinating with overseas logistics providers
Processing international payments
Facilitating factory audits by international firms

7.2 Transfer Safeguards

We ensure adequate protection standards for international transfers
Contractual protections with overseas partners
Compliance with applicable data protection regulations
Regular monitoring of international data handling practices

8. Your Rights and Choices

8.1 Access and Correction

Right to access information we hold about you or your business
Ability to request corrections to inaccurate information
Updates to contact preferences and communication methods
Regular review and confirmation of business details

8.2 Communication Preferences

Opt-out options for marketing communications
Choice of communication channels (email, phone, etc.)
Frequency preferences for business updates
Language preferences for communications

8.3 Data Portability

Request for copies of your business data in standard formats
Transfer of information to new service providers when requested
Assistance with data migration for business continuity

9. Cookies and Website Technologies

9.1 Cookie Usage

Our website uses cookies to:

Enhance user experience and website functionality
Analyze website traffic and usage patterns
Remember user preferences and settings
Provide relevant business information

9.2 Cookie Management

Users can control cookie settings through browser preferences
Essential cookies necessary for website operation
Optional cookies for analytics and improvements
Regular review and updating of cookie policies

10. Compliance with Laws

10.1 Bangladesh Regulations

Digital Security Act, 2018
Right to Information Act, 2009
Companies Act, 1994
Labor Act, 2006
Foreign Exchange Regulation Act, 1947

10.2 International Standards

GDPR compliance for European Union clients
CCPA considerations for California-based partners
Industry-specific privacy standards
International trade compliance requirements

11. Changes to Privacy Policy

We reserve the right to update this Privacy Policy to reflect changes in our practices, legal requirements, or business operations. Material changes will be communicated through:

Email notifications to registered business contacts
Prominent notices on our website
Direct communication during business interactions
Updated policy effective dates

12. Contact Information

12.1 Privacy Inquiries

For questions, concerns, or requests regarding this Privacy Policy or our data handling practices:

Privacy Officer: [Name] Email: privacy@[company].com Phone: +880-[number] Address: [Complete business address] Business Hours: Sunday to Thursday, 9:00 AM – 6:00 PM (GMT+6)

12.2 Complaints and Concerns

If you have concerns about our privacy practices:

Contact our Privacy Officer directly
File a complaint with relevant Bangladesh authorities
Seek resolution through our internal grievance process
Exercise your rights under applicable privacy laws

13. Definitions

Personal Information: Any information that can identify an individual person Business Information: Commercial data related to business operations and relationships Confidential Information: Proprietary data subject to confidentiality agreements Processing: Any operation performed on data including collection, storage, and use Third Party: Any entity outside of our direct business organization

Acknowledgment: By engaging with our services, you acknowledge that you have read, understood, and agree to this Privacy Policy. This policy forms part of our overall terms of business engagement.

Effective Date: This Privacy Policy is effective as of 20th/September/2025 and governs all information handling practices from that date forward.