Privacy Policy

Privacy Policy for A3 Mauritius

Effective Date: 14th February 2026

1. Introduction

Welcome to A3 Mauritius ("we", "our", "us"). We are an AI Automation Agency officially registered in the Republic of Mauritius. We respect your privacy and are committed to protecting your personal data in strict compliance with the Mauritius Data Protection Act 2017 (DPA 2017).

This policy explains how we collect, process, and protect your information when you use our website for lead generation, and clarifies our legal responsibilities when processing data on behalf of our clients.

2. Data Controller vs. Data Processor

It is important to distinguish between the two ways A3 Mauritius handles personal data:

As a Data Controller: When you visit our website, fill out a contact form, or communicate with us directly to inquire about our services, we act as the Data Controller. We determine the purpose and means of processing this data.

As a Data Processor: When we build, deploy, or manage AI automations and workflows for our clients, we act strictly as a Data Processor. In these instances, our clients are the Data Controllers. We process their business and customer data solely based on their explicit instructions and in accordance with our overarching service agreements.

3. Information We Collect (As a Data Controller)

Because our website is designed for service inquiries and lead generation, we collect minimal personal data:

Information You Provide: Name, email address, phone number, company name, and any specific details provided in contact forms or via live chat widgets.

Automatically Collected Information: We collect basic analytics and device data, such as your IP address, browser type, time zone, and how you interact with our website. This is collected via standard tracking tools to identify potential cases of abuse and establish statistical information regarding website usage.

4. How We Use AI and Third-Party Models

As an AI Automation Agency, transparency regarding Artificial Intelligence is our priority:

Third-Party AI Models: We may process client data through secure, third-party Large Language Models (e.g., OpenAI, Anthropic, Gemini) via API to facilitate the automation features we build.

No AI Training: We strictly do not use your personal data, nor do we use our clients' data, to train, retrain, or fine-tune our own or third-party AI models. Data routed through third-party AI APIs is used exclusively for the execution of the requested automation task.

5. Data Storage and International Transfers

Your personal data is stored securely on our Hostinger servers, which are physically located in the United Kingdom.

Because we are based in Mauritius and utilize servers in the UK, your data involves cross-border transfer. We ensure that all such transfers comply with the Mauritius DPA 2017 by utilizing infrastructure that provides appropriate technical, administrative, and organizational safeguards.

6. Data Retention Policy

We do not keep your data indefinitely. We retain contact form submissions, lead generation data, and client project data for a strict period of one (1) year following the termination of a contract or our last point of communication. After this one-year period, your data is permanently and securely deleted from our active systems.

7. Your Rights Under the Mauritius DPA 2017

As a data subject, you possess the following rights regarding your personal data:

Right of Access: You may request a copy of the personal data we hold about you.

Right to Rectification: You may ask us to correct inaccurate or incomplete data.

Right to Erasure: You may request that we delete your data before the standard 1-year retention period expires.

Right to Object / Restrict Processing: You may object to how we process your data, including for direct marketing purposes.

Right to Withdraw Consent: If you have given explicit consent for processing, you may withdraw it at any time.

To exercise any of these rights, please contact us using the information provided below. If you believe your data rights have been violated, you also have the right to lodge a complaint with the Data Protection Commissioner of Mauritius.

8. Security Measures

We implement reasonable and robust administrative, technical, and physical security measures to protect your personal data from unauthorized access, loss, or misuse. However, please be aware that no transmission of data over the internet or wireless network can be guaranteed to be 100% secure.

9. Legal Disclosure

We will disclose any information we collect, use, or receive if required or permitted by law, such as to comply with a subpoena or similar legal process, and when we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or respond to a government request.

10. Contact Information

If you have questions about this Privacy Policy or wish to exercise your data rights, please contact us at:

Email: admin@a3mauritius.com

Address: Escale Nord Business Hub, Chemin Vingt Pieds, Grand Baie, Republic of Mauritius