Security & Data Protection Policy – Nanomate Global

Solutions

Core Modules

FinXmate

Lending, Microfinance, Leasing & Deposits

Crewmate

People & Payroll, Attendance, OKRs, Compliance

POSmate

Retail POS, Inventory, Omnichannel Sales

eCommate

CommerceMate B2C / B2B eCommerce, Marketplace

Growth & Intelligence

Routmate

Route Optimization, Driver App, Live Tracking

CRMate

Lead-to-Cash Pipeline, Support Desk, Omnichannel CRM

Datamate

Dashboards, Embedded Analytics, Conversational BI

Secumate

AI Credit-Scoring, Fraud Protection, Real-time Analytics
Industries

BFSI & Micro-Finance

AI risk scoring, rule-based lending, regulatory compliance, audit-ready reporting.

Healthcare & Pharma

Patient management, e-pharmacy, automated route planning, and compliance.

Manufacturing & Supply Chain

MRP, warehousing, logistics orchestration and smart procurement.

Government & e-Gov

Open API stack, vendor-agnostic, and audit-ready digital records for the public sector.

Retail & e-Commerce

Omnichannel POS, unified inventory, loyalty, and digital storefronts.

Start-Ups & SMEs

Low-code, fast-launch bundles—POS, CRM, accounting in one place.
About Us
Resources
Support

Effective Date: May 15, 2025

NanoMate (Pvt) Ltd. (“we”, “us”, “our”) commits to safeguarding your data through the following measures:

Information Security Framework
We follow the ISO/IEC 27001 principles and OWASP Top 10 guidelines to protect data confidentiality, integrity, and availability.
Technical Controls
- Encryption: TLS 1.2+ encrypts all data in transit; AES-256 secures sensitive data at rest.
- Access Control: Role-based access restricts system permissions to authorised personnel only.
- Vulnerability Management: Regular third-party penetration tests and internal security scans identify and resolve vulnerabilities promptly.
Organisational Controls
- Security Training: Annual training ensures all employees understand data-protection best practices.
- Incident Response: A documented plan governs breach detection, containment, and notification—aligned with Sri Lankan data-protection guidelines.
Third-Party & Subprocessor Management
We vet and contractually bind all subprocessors (hosting, analytics) via Data Processing Agreements mandating equivalent security standards.
Data Retention & Disposal
Data is retained only as long as necessary for business or legal purposes. When no longer needed, data is securely deleted per NIST guidelines.
Continuous Improvement
Annual risk assessments and policy reviews ensure we adapt to emerging threats and regulatory changes.

Contact: support@nanomateit.com

Next-gen, AI-powered business platform. Snap together FinTech, HR, POS, and more—modular, local-ready, and built for growth.

Visit Us

OPENING HOURS

Policies

© 2024 NanoMate Pvt Ltd. All rights reserved.