Privacy Policy

Althera Connect Ltd (C26231337)
Effective Date: 1 February 2026

Althera Connect Ltd, a company incorporated in the Republic of Mauritius, with registered address at Coastal Road, Calodyne, Republic of Mauritius (hereinafter the “Company”, “we”, “us” or “our”), operates the website altheraconnect.com (the “Platform”).

We are committed to protecting personal data in accordance with applicable data protection laws, including the General Data Protection Regulation (EU) 2016/679 (“GDPR”) where applicable.

This Privacy Policy explains how we collect, use, store and protect your personal data.

1. Data Controller

The data controller is:

Althera Connect Ltd
Coastal Road, Calodyne
Republic of Mauritius
Email: contact@altheraconnect.com

2. Categories of Personal Data Collected

We may collect and process the following categories of personal data:

2.1 Information Provided Directly by Users

• Full name
• Email address
• Telephone number
• Professional details
• Business information
• Billing information
• Documents submitted for verification (ID documents, diplomas, certifications, professional documents)

2.2 Account Data

• Username
• Login credentials (encrypted)
• Subscription details
• Profile content
• Communications sent via the Platform

2.3 Technical Data

• IP address
• Browser type
• Device information
• Operating system
• Access logs
• Cookie identifiers

2.4 Payment Data

Payments are processed via MCB Payment Gateway.

We do not store credit card numbers or security codes. Payment data is processed securely by the payment provider in compliance with PCI-DSS standards.

3. Purpose of Processing

Personal data is processed for the following purposes:

• Account creation and management
• Verification of professional credentials
• Subscription management
• Platform functionality
• Communication with users
• Compliance with legal obligations
• Fraud prevention and security
• Improvement of services
• Marketing communications (where legally permitted)

4. Legal Basis for Processing (GDPR)

Where GDPR applies, processing is based on:

• Performance of a contract (Article 6(1)(b))
• Legal obligations (Article 6(1)(c))
• Legitimate interests (Article 6(1)(f))
• Consent (Article 6(1)(a)), where required

5. Comments

When visitors leave comments on the site, we collect:

• Data shown in the comment form
• IP address
• Browser user agent string

This helps with spam detection.

An anonymized hash of your email may be sent to the Gravatar service to check if you use it. Gravatar’s privacy policy is available at: https://automattic.com/privacy/

Once approved, your profile picture may be visible publicly in the context of your comment.

6. Media

If you upload images to the Platform, you should avoid uploading images containing embedded location data (EXIF GPS). Visitors may download and extract location data from images.

7. Cookies

We use cookies for:

• Login authentication
• User session management
• Saving display preferences
• Comment form convenience
• Security purposes

Login cookies last two days.
“Remember me” login persists for two weeks.
Screen options cookies last one year.

A temporary cookie is set on the login page to test browser compatibility.

You may disable cookies via browser settings; however, some features may not function properly.

8. Embedded Content

Articles may include embedded content (e.g., videos, images). Embedded content behaves as if you visited the external site directly.

These third-party sites may collect data, use cookies, and monitor interaction.

We do not control third-party privacy practices.

9. Data Sharing

We do not sell personal data.

We may share data with:

• Payment processors
• Hosting providers
• Technical service providers
• Legal authorities where required
• Anti-spam services

Data sharing is limited to what is strictly necessary.

10. International Transfers

As we are based in Mauritius, data may be processed outside the European Union.

Where GDPR applies, we implement appropriate safeguards for international data transfers.

11. Data Retention

We retain personal data only as long as necessary:

• Account data: duration of subscription + legal retention period
• Verification documents: as required for compliance purposes
• Billing records: according to applicable tax laws
• Comments: retained unless deletion is requested

Data may be retained longer where required by law, regulatory obligations, or dispute resolution needs.

12. Your Rights

Where applicable, you have the right to:

• Access your data
• Rectify inaccurate data
• Request erasure (“right to be forgotten”)
• Restrict processing
• Object to processing
• Data portability
• Withdraw consent

You may request a copy of your personal data in a structured, machine-readable format.

Requests may be sent to: contact@altheraconnect.com

We reserve the right to verify identity before responding.

We may refuse excessive or abusive requests as permitted by law.

13. Security Measures

We implement appropriate technical and organizational security measures, including:

• Encrypted login credentials
• Secure hosting infrastructure
• Access controls
• SSL encryption
• Limited internal access to sensitive documents

However, no internet transmission is completely secure.

14. Regulatory Cooperation

We may disclose personal data to authorities where legally required.

Such disclosure does not constitute admission of liability.

15. Limitation of Liability

To the maximum extent permitted by law, the Company shall not be liable for:

• Unauthorized access resulting from user negligence
• Third-party cyberattacks beyond reasonable control
• Loss of data caused by force majeure

16. Force Majeure

The Company shall not be held liable for any delay, interruption, or failure to perform its obligations resulting from an event of force majeure.

Force majeure events shall include, without limitation:

• natural disasters, fires, floods, or severe climatic events;
• pandemics, public health emergencies, or related governmental measures;
• armed conflicts, acts of terrorism, civil unrest, or decisions of public authorities;
• failures or disruptions of telecommunications networks, Internet infrastructure, or information systems;
• cyberattacks, malicious intrusions, or significant security incidents;
• failure or disruption of essential third-party service providers necessary for the operation of the Platform (including hosting providers, payment processors, or technical infrastructure suppliers);
• any other circumstance beyond the reasonable control of the Company.

In such circumstances, the obligations of the Company shall be suspended for the duration of the force majeure event, without such suspension giving rise to any liability on the part of the Company.

17. Changes to this Policy

We may update this Privacy Policy at any time.

Changes become effective upon publication.

Users are encouraged to review it periodically.

18. Contact

Your privacy matters to us. For any questions regarding the protection or use of your personal data, please feel free to contact our team.

Althera Connect Ltd
Coastal Road, Calodyne
Republic of Mauritius
Email: contact@altheraconnect.com