Skip to Content

InnoLabs KH Privacy Policy

Last Updated: May 20, 2025

1. Introduction

InnoLabs KH Co., Ltd. ("Innolabs KH," "we," "our," or "us") is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and protect your information when you visit our website, use our services, or interact with us as a client.

As a technology innovation company based in Cambodia, we understand the importance of data protection in today's digital landscape. This policy aligns with international best practices and relevant data protection laws.

2. Information We Collect

2.1 Website Visitors

When you visit our website (innolabs.dev), we may collect:

  • Browser Data: Browser type, language preference, referring site, date and time of access, and other technical information.
  • Usage Data: Pages viewed, time spent on pages, navigation paths, and interaction with our content.
  • Device Information: IP address, device type, operating system, and screen resolution.
  • Cookies and Similar Technologies: We use cookies and similar tracking technologies to enhance your browsing experience and collect information about how you use our website. For more information, please see our Cookie Policy section.

2.2 Clients and Potential Clients

If you engage with us as a client or potential client, we may collect:

  • Contact Information: Name, email address, phone number, job title, company name, and address.
  • Business Information: Industry type, company size, business needs, and project requirements.
  • Financial Information: Billing information, payment details, and transaction history.
  • Account Information: Login credentials, user preferences, and access records for our services.
  • Communications: Email correspondence, chat logs, support tickets, and feedback.
  • Client Content: Data you provide or we access to fulfill our services, including your business data processed through our systems.

3. How We Use Your Information

We use the information we collect for the following purposes:

3.1 Website Visitors

  • To provide, maintain, and improve our website
  • To analyze website usage and enhance user experience
  • To respond to your inquiries and provide information about our services
  • To send you marketing communications (with your consent)
  • To protect our website and services from unauthorized access or misuse

3.2 Clients

  • To provide our services and fulfill our contractual obligations
  • To manage your account and process payments
  • To communicate with you about your projects and services
  • To provide technical support and respond to your inquiries
  • To improve our services and develop new features
  • To conduct data analysis and generate insights that help improve business operations
  • To comply with legal obligations and enforce our terms of service

4. Data Security and Protection

4.1 Our Security Measures

We implement robust security measures to protect your information:

  • Encryption: All data is encrypted during transmission and at rest using industry-standard encryption methods (SSL/TLS and AES-256).
  • Access Controls: Strict access controls and authentication requirements for our staff.
  • Regular Audits: Periodic security audits and vulnerability assessments.
  • Staff Training: Regular training for our team on data security best practices.
  • Physical Security: Our servers are hosted in secure data centers with 24/7 monitoring.
  • Backup Systems: Regular backup procedures to prevent data loss.

4.2 Odoo Implementation Security

As an official Odoo Partner, our ERP implementations adhere to Odoo's security standards:

  • SOC 2 Compliance: Odoo maintains SOC 2 reports covering security, availability, processing integrity, confidentiality, and privacy principles.
  • CSA STAR Program: Odoo participates in the Cloud Security Alliance Security Trust Assurance and Risk (STAR) Program.
  • Data Encryption: All client data in Odoo systems is encrypted both in transit and at rest.
  • Access Management: Role-based access controls to ensure data is only accessible to authorized personnel.
  • Backup Management: Regular backup procedures with 14 full backups maintained for at least 3 months.
  • Disaster Recovery: Comprehensive disaster recovery procedures with regularly tested backups.

5. Data Sharing and Disclosure

We may share your information with:

5.1 Service Providers

We engage trusted third-party service providers to perform various functions on our behalf:

  • Cloud hosting providers
  • Payment processors
  • Email and communication services
  • Analytics providers
  • Customer relationship management systems

These providers are bound by confidentiality obligations and are only permitted to use your information for the specific purposes we authorize.

5.2 Legal Requirements

We may disclose your information if required by law, regulation, legal process, or governmental request.

5.3 Business Transfers

In the event of a merger, acquisition, or sale of all or part of our assets, your information may be transferred as part of the transaction.

5.4 With Your Consent

We may share your information with third parties when you explicitly consent to such sharing.

6. Client Data Processing

6.1 Our Role

When providing services to our clients, InnoLabs KH may process personal data on behalf of our clients. In such cases, we act as a data processor, and our clients remain the data controllers.

6.2 Client Responsibilities

Our clients are responsible for:

  • Ensuring they have the legal right to collect and process the personal data they provide to us
  • Obtaining necessary consents from individuals whose data is being processed
  • Providing appropriate privacy notices to individuals
  • Responding to data subject requests related to the data they control

6.3 Our Commitment

We are committed to:

  • Processing client data only according to their instructions
  • Implementing appropriate security measures to protect client data
  • Assisting clients in fulfilling their data protection obligations
  • Notifying clients of any data breaches without undue delay
  • Returning or deleting client data upon termination of services

7. Data Retention

We retain your information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

7.1 Website Visitors

We typically retain website visitor data for up to 24 months for analytics purposes.

7.2 Clients

For clients, we retain your information for the duration of our business relationship and for a reasonable period thereafter for legal and business purposes. Client data stored in our systems is deleted or returned after the termination of services, in accordance with our contract terms.

7.3 Backups

For disaster recovery and service continuity purposes, your data may remain in our backup systems for up to 3 months after deletion from active systems.

8. Your Rights and Choices

Depending on your location, you may have the following rights regarding your personal information:

  • Access: Request information about the personal data we hold about you.
  • Correction: Request correction of inaccurate or incomplete information.
  • Deletion: Request deletion of your personal data in certain circumstances.
  • Restriction: Request restriction of processing of your personal data.
  • Data Portability: Request the transfer of your data to another service provider.
  • Objection: Object to processing of your personal data for certain purposes.
  • Withdraw Consent: Withdraw consent previously provided for processing your information.

To exercise these rights, please contact us using the details provided in the "Contact Us" section.

9. Cookies and Similar Technologies

9.1 What Are Cookies

Cookies are small text files stored on your device when you visit our website. They help us remember your preferences, understand how you use our site, and provide you with relevant content.

9.2 Types of Cookies We Use

  • Essential Cookies: Required for the website to function properly.
  • Preference Cookies: Remember your settings and preferences.
  • Analytics Cookies: Help us understand how visitors interact with our website.
  • Marketing Cookies: Used to deliver relevant advertisements and track marketing campaign effectiveness.

9.3 Your Cookie Choices

You can manage your cookie preferences through your browser settings. Most browsers allow you to block or delete cookies. However, if you block essential cookies, you may not be able to use all features of our website.

10. Children's Privacy

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child without parental consent, we will take steps to remove that information from our servers.

11. International Data Transfers

InnoLabs KH is based in Cambodia, and your information may be transferred to and processed in countries outside of your country of residence. These countries may have different data protection laws than your country.

We implement appropriate safeguards when transferring data internationally, such as standard contractual clauses, to ensure your data receives an adequate level of protection.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by posting the updated policy on our website with a new "Last Updated" date.

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

13. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

Inno Labs KH Co., Ltd.

Email: [email protected]

Phone: +855887068879

Address: Krous Village, Siem Reap

We will respond to your inquiry as soon as possible and within the timeframe required by applicable law.

14. Specific Service Terms

14.1 Odoo ERP Implementation

For clients using our Odoo ERP implementation services, additional terms may apply:

  • Data Processing: We process client data in accordance with the contract and client instructions.
  • Support Access: Our support staff may access client systems for troubleshooting and support purposes.
  • Data Export: Clients can export a complete backup of their data at any time.
  • Third-Party Integrations: When clients use third-party integrations, data may be transferred to those third parties according to their terms.

This Privacy Policy was last updated on May 20, 2025.