Privacy Statement

SLIIT is committed to protecting the privacy and personal data of all individuals who interact with us, including our students, staff, alumni, partners, and visitors to our websites and online services. We handle your personal information in a transparent, lawful, secure, and responsible manner, in line with applicable privacy principles and the Personal Data Protection Act, No. 9 of 2022 (PDPA) of Sri Lanka. The PDPA is designed to regulate how personal data is processed, strengthen the rights of data subjects, and establish a regulatory framework for data protection.

This Privacy Statement explains how we collect, use, store, protect, and disclose personal information when you interact with our services.

1. What Personal Information We Collect

We may collect personal information when you:

  • Visit or interact with our website
  • Contact us or submit enquiries
  • Apply for programs, register for events, or use our services.

This information may include, but is not limited to:

  • Identity details: name, contact information (email, phone), demographic information
  • Service related details: information related to your enquiry, application, enrolment, or participation
  • Usage information: data about how you interact with our website and online services (e.g. IP address, device information, pages visited)
  • Other voluntary information: data you provide through forms, surveys, or cookies preferences.

Some data may be collected automatically through cookies and similar technologies as outlined below.

2. Lawful Basis and How We Use Your Information

Under the PDPA, personal data must be processed lawfully, fairly and transparently, and only for a specific, explicit purpose.

We use personal information to:

  • Provide and manage the services you request
  • Process applications, enrolments, and payments
  • Communicate important updates, offers, events, and service notices
  • Improve our websites, services, and user experience
  • Meet our legal and regulatory obligations
  • Protect the rights, security, and safety of individuals

We will not sell, rent, or trade your personal information.

3. Disclosure of Your Personal Information

We may share your personal information with:

  • Relevant internal departments, faculties, and authorized staff within SLIIT
  • Third party service providers who help deliver our services (e.g. IT support, marketing, analytics, communications), only under strict confidentiality agreements.
  • Government bodies, regulators, or law enforcement agencies when required by law.

We ensure that third parties accessing your data maintain appropriate safeguards and only use personal information for the purposes specified in this statement.

4. Cookies & Analytics

Our website uses cookies and similar technologies to enhance functionality, analyze site usage, and deliver relevant content.

When you first visit our site, a cookie banner lets you manage your preferences, including the ability to accept or reject non‑essential cookies. You may change your choices at any time.

Types of cookies used include:

  • Necessary cookies — essential for website operation
  • Performance and analytics cookies — help us improve site performance
  • Functionality cookies — remember your user preferences
  • Advertising and targeting cookies — may be used for personalized content/ad delivery (if applicable).

5. Your Rights Under the PDPA

The PDPA grants you the following data subject rights, which you can exercise by contacting us:

  • Right of Access: You can request access to personal data we hold about you
  • Right to Withdraw Consent and Object: You may withdraw consent or object to processing that relies on consent
  • Right to Correction or Completion: You can request correction of inaccurate or incomplete data
  • Right to Erasure: You can request deletion of your personal data under certain conditions

If you wish to exercise any of these rights, please contact our Data Protection Contact listed below.

6. Data Security

We implement appropriate technical and organizational measures to safeguard your personal information against unauthorized access, misuse, alteration, loss, or disclosure. Although we strive to protect your data, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

7. Data Retention

We retain personal information only as long as necessary to fulfil the purposes for which it was collected or to comply with legal obligations, including those under PDPA which requires retention periods to be limited to what is necessary.

8. Changes to This Statement

We may update this Privacy Statement to reflect changes in our practices, legal obligations under the PDPA, or user feedback. Any changes will be posted here with the effective date.

9. Contact Us

If you have questions, concerns, or requests regarding this Privacy Statement, or wish to exercise your rights under the PDPA, please contact:

SLIIT Web Team

Email: webteam@sliit.lk
Phone: +94 11 754 4801

Explore new possibilities, connect with us and grow your future every day