Privacy Policy

Last Updated: 28/04/2026

StratX International ("StratX," "we," "us," or "our") is committed to protecting the privacy, security and confidentiality of all personal and business data entrusted to us. This Privacy Policy outlines how we collect, use, store and safeguard information across our website, procurement portals, partner networks and secure communication channels.

This policy is designed to comply with applicable global data protection regulations, including the GDPR (EU/UK), CCPA/CPRA (California), PIPEDA (Canada), APPs (Australia) and relevant national privacy frameworks. By accessing our Platform or engaging with our Services, you acknowledge and consent to the practices described herein.

1. INFORMATION WE COLLECT

1.1 Information You Provide Directly

1. Contact & Corporate Details: Name, title, organization, email, phone, business address and government/enterprise affiliation.
2. Procurement & Partner Inquiries: Requirements, quantities, timelines, compliance documentation, end-use declarations and capability statements.
3. Account & Portal Credentials: Usernames, passwords, MFA details and access permissions for partner/supplier portals.
4. Verification & Compliance Data: Corporate registration numbers, export/import licenses, ISO certifications and authorized representative credentials.

1.2 Information Collected Automatically

1. Technical Data: IP address, browser type, device identifiers, operating system and connection logs.
2. Usage Analytics: Page views, session duration, form interactions and navigation pathways.
3. Security Logs: Authentication attempts, failed login alerts and system access records.

1.3 Information from Third Parties

1. Sanctions Screening Results: OFAC, UN, EU, UK HMT lists.
2. Corporate Registry & Trade Compliance Databases.
3. Supplier Verification & Certification Authorities.
4. Payment Processors & Banking Compliance Networks.

2. HOW WE USE YOUR INFORMATION

We process data strictly for legitimate, transparent and compliance-aligned purposes:

1. Evaluate and respond to procurement inquiries and partner applications.
2. Conduct due diligence, sanctions screening and export compliance verification.
3. Facilitate supplier matching, quotation routing and contract execution.
4. Maintain secure access controls for partner portals and confidential communications.
5. Improve Platform performance, AI-driven logistics tools and cybersecurity protocols.
6. Fulfill legal, regulatory and audit obligations under international trade frameworks.

We do not sell, lease or trade personal or business data to third parties for marketing or commercial purposes.

3. DATA SHARING & THIRD-PARTY DISCLOSURES

We share data only when necessary, secure and legally justified:

1. Vetted Suppliers & Logistics Partners: Limited data required to fulfill procurement requests or coordinate shipments.
2. Compliance & Verification Services: Sanctions databases, export control authorities and corporate registries.
3. Cloud & Security Infrastructure: Encrypted hosting, identity management and threat monitoring providers bound by strict data processing agreements (DPAs).
4. Government & Regulatory Authorities: When legally mandated, subpoenaed or required for export licensing and customs clearance.
5. Professional Advisors: Legal, audit and compliance counsel engaged to safeguard our operations.

All third-party recipients are contractually obligated to maintain confidentiality, implement equivalent security controls and process data solely for StratX approved purposes.

4. DATA SECURITY & RETENTION

Security Measures

We implement the following security protocols to protect your data:

1. End-to-End Encryption: TLS 1.3 in transit, AES-256 at rest.
2. Access Controls: Role-based access controls (RBAC) and multi-factor authentication (MFA).
3. Continuous Threat Monitoring: Intrusion detection and audit logging.
4. Regular Penetration Testing: Security reviews and compliance assessments.

Data Retention

We retain your information only as long as necessary for:

1. Fulfillment of contractual obligations.
2. Compliance with export control, trade, and tax regulations (typically 5–10 years).
3. Resolution of disputes, enforcement of agreements, or response to legal requests.
4. Secure audit trails for compliance verification.

After the retention period, we will securely anonymize or delete your data using industry-standard destruction protocols.

5. INTERNATIONAL DATA TRANSFERS

StratX operates a global procurement and compliance network. As such, your data may be processed in jurisdictions outside your country of residence. To ensure adequate protection, we use:

1. European Commission Standard Contractual Clauses (SCCs) and the UK International Data Transfer Agreement (IDTA).
2. Adequacy Decisions or Approved Binding Corporate Rules.
3. Supplemental Safeguards to ensure cross-border transfers comply with export control, sanctions and data protection laws.

6. AUTOMATED PROCESSING & AI TOOLS

StratX uses AI-driven tools for supply chain optimization, demand forecasting and logistics routing. These systems:

1. Process de-identified or aggregated operational data.
2. Do not make autonomous legal, compliance or contractual decisions.
3. Are subject to human oversight, algorithmic transparency reviews and audit trails.

You have the right to request a human review of any automated decision that significantly impacts your engagement with StratX.

7. YOUR RIGHTS & CHOICES

Depending on your jurisdiction, you may exercise the following rights regarding your personal data:

1. Access & Portability: Request a copy of your data in a structured, machine-readable format.
2. Correction: Update inaccurate or incomplete information.
3. Deletion: Request the erasure of your personal data, subject to legal retention requirements.
4. Restriction & Objection: Limit or object to certain processing activities.
5. Consent Withdrawal: Opt out of marketing communications at any time.

To exercise these rights, submit a verified request to privacy@stratxinternational.com. We will respond within 30 days (or as required by local law). Note: Some rights may be limited where data is necessary for compliance, audit, or fraud prevention.

8. COOKIES & TRACKING TECHNOLOGIES

Our Platform uses cookies and similar technologies for:

1. Essential Operations: Session management, security and platform functionality.
2. Performance & Analytics: Traffic measurement, error tracking and UX optimization.
3. Security & Compliance: Bot detection, threat monitoring and audit logging.

Non-essential cookies require explicit consent and you may manage preferences through your browser settings or our consent manager.

9. CHILDREN’S PRIVACY

StratX services are designed exclusively for authorized business, government and enterprise representatives. We do not knowingly collect personal data from individuals under the age of 16 (or applicable local majority age). If we become aware of inadvertent collection, we will promptly delete the information.

10. POLICY UPDATES

We may update this Privacy Policy to reflect operational, legal or regulatory changes. Material revisions will be:

1. Posted prominently on this page with an updated "Last Revised" date.
2. Communicated via email or secure portal notice where appropriate.

Continued use of our Platform or Services constitutes acceptance of the updated policy.

11. CONTACT & DATA PROTECTION OFFICER

For privacy inquiries, data subject requests, or compliance clarifications, please contact:

Email: contact@stratxinternational.com

Conclusion

StratX International is committed to maintaining the highest standards of data protection, security, and regulatory compliance. We ensure that your data is processed transparently and securely in alignment with global data protection regulations.