Last Updated: 09 Sept, 2025
Privacy Policy of Avant Global Solutions Ltd and the OneAvant Platform
Introduction
Avant Global Solutions Ltd, incorporated and operating in Malta, provides the OneAvant software-as-a-service platform and related services. This Privacy Policy sets out how personal data is collected, processed, stored, and protected in relation to different data subject groups, including employees, customers, end-users, and partners. We are committed to ensuring that personal information remains secure and processed in compliance with applicable Maltese law and the General Data Protection Regulation (GDPR).
Employee Data Policy
1.1 Policy Statement
Avant Global Solutions Ltd is committed to the protection of personal information of employees and has established internal controls to ensure that personal data remains protected in accordance with the law.
1.2 Contact Details
Controller: Avant Global Solutions Ltd, 22, EMERALD 8, TRIQ SCHRANZ MSIDA, Malta
Processor: Internal HR systems and approved third-party providers
Data Protection Officer: None appointed. For all data-related requests, please contact privacy@oneavant.com.
1.3 Data Processed
We collect and process employee data including but not limited to personal identification details, contact information, payroll data, performance records, and compliance-related records. These are processed for the purposes of employment administration, payroll, benefits, compliance with employment law, and internal record-keeping. Retention periods are limited to the minimum periods required by Maltese law.
1.4 Automated Decision Making
Automated decision-making is not applied to employee data.
1.5 Disclosure to Third Parties
Employee data may be shared with government authorities, auditors, payroll processors, and legal or compliance partners as required by law.
1.6 Data Transfers
Where employee data is processed outside Malta, such transfers are protected by contractual and legal safeguards.
1.7 Security Controls
Employee data is stored securely in line with ISO 9001 certified practices. We apply access restrictions, encryption, and internal audit mechanisms.
1.8 Rights and Requests
Employees have the right to request access, correction, erasure, restriction, objection, portability, and to lodge a complaint with the Maltese supervisory authority.
1.9 Further Processing
Any further processing of employee data will be communicated before it takes place.
Customer and Tenant Data (OneAvant Platform Users)
2.1 Policy Statement
Avant Global Solutions Ltd is committed to ensuring that personal information of customers and end-users of OneAvant is protected in line with GDPR requirements.
2.2 Contact Details
Controller: Avant Global Solutions Ltd, 22, EMERALD 8, TRIQ SCHRANZ MSIDA, Malta
Processors: Hetzner, AWS, Google Analytics, Stripe, Hotjar, Mailchimp (with more processors to be added as required for secure and efficient data management).
Data Protection Officer: None appointed. Contact privacy@oneavant.com for all requests.
2.3 Data Processed
We collect the following categories of information:
Information provided by customers (Tenants):
a. Name, email address, phone number, and payment details for subscription and billing purposes. Retained for the duration of the subscription and as required by Maltese law.
b. Organisational contact information for onboarding and account management.
c. Supplier contact details entered into our CRM by the Tenant for automated stock alerts and reordering. Retained for the duration of the customer account.
Automatically collected information:
a. Cookies and analytics data (anonymised after processing) to improve service usability.
b. Authentication data, including IP logs, multi-factor authentication attempts, and login behaviour, to protect account access.
c. Usage metrics for product improvement.
2.4 Automated Decision Making
OneAvant uses automated systems for generating stock alerts and initiating supplier reorders on behalf of Tenants. This requires processing supplier contact details stored in the CRM. These processes are performed to enhance automation and improve customer productivity.
2.5 Disclosure to Third Parties
Customer and user data is shared only with contracted processors necessary for platform operation:
Stripe for billing and subscription management
AWS and Hetzner for hosting infrastructure
Google Analytics, Hotjar, and Mailchimp for analytics, product improvement, and communication
2.6 Data Transfers
Stripe processes data outside the EU. Such transfers are safeguarded by Standard Contractual Clauses and GDPR-approved measures.
2.7 Security Controls
Avant Global Solutions Ltd is ISO 9001 certified, meaning our processes are regularly audited for quality and security management. Details of our certification can be viewed at AVAN4620Q2501. We apply encryption, IP restrictions, multi-factor authentication, and continuous monitoring of systems and third-party providers.
2.8 Rights and Requests
Users have the right to request access, correction, erasure, restriction, portability, and objection to processing. Requests may be made by contacting dataofficer@oneavant.com
2.9 Further Processing
In the event of new processing purposes, customers will be informed in advance and provided with an opportunity to consent where required.
2.10 Cookies
We use cookies to enable authentication, provide secure sessions, and monitor platform performance. All analytics cookies are anonymised. Users may configure browser settings to control or disable cookies, although this may impact service functionality.
2.11 Links to External Sites
The OneAvant website may contain links to third-party websites. Avant Global Solutions Ltd does not control these external websites and is not responsible for their privacy practices. Users should review the privacy statements of any third-party websites visited.
Partner and Retailer Data Policy