Privacy Policy of HiQ Africa Ltd.
HiQ Africa Ltd. (“HiQ,” “we,” “us,” or “our”) respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use and protect your personal data when you interact with our services, such as our websites—www.hiq.africa, www.zata.global and www.zata.rw—or use our web and mobile applications (collectively referred to as the “Site”).
1. Information We Collect
We collect information to provide better services to our users. This includes basic details like your name and contact information, as well as more complex data like your location (for example, through GPS coordinates) or the products you interact with.
The information we collect is grouped into the following categories:
Information You Provide to Us:
Account Information: When you create an account on our platform, you provide
personal details such as your full name, store name, Tax Identification Number
(TIN), phone number, email address, store address and GPS coordinates.
Forms and Subscriptions: You may provide additional information when you
fill out forms, subscribe to our newsletters, or request updates.
Customer Interactions: When you engage with our products or services, we
collect data based on those interactions.
Information We Collect Automatically:
Device Information: We collect details about your devices, such as IP addresses, device types, operating systems, browser types and unique device identifiers.
Usage Information: We gather data about how you interact with our services, such as the pages you visit, the time spent on them, and referral URLs. This helps us improve the user experience.
Location Data: Depending on your settings and permissions, we collect information about your location using GPS or other technologies.
2. How We Use the Information We Collect
We use the information we collect to provide, maintain and improve our services. Specifically, we use your data for the following purposes:
Service Provision: We use personal data to deliver the services you request, such as processing transactions, verifying your identity and responding to customer support requests.
Example: If you register your store with us, we will use the provided address and GPS coordinates to display your store’s location on our platform.Service Improvement: We analyze your usage patterns to identify and address issues with our services and improve their overall functionality.
Example: If our system notices recurring issues with accessing a particular page, we may make improvements to ensure better access.Personalization: We use the data we collect to personalize your experience. This can include suggesting services based on your previous usage or sending you tailored marketing communications if you’ve opted in.
Example: If you frequently use a particular feature on our app, we may prioritize relevant updates and notifications for that feature.Legal Compliance and Protection: We process your data to comply with legal obligations, including anti-money laundering (AML) and Know Your Customer (KYC) regulations and to protect the security of our services.
Fraud Prevention: We use your data to detect, prevent, and investigate fraudulent or unauthorized activities on our platform. This helps safeguard your account and maintain the integrity of our services for all users.
Marketing and Communications: With your consent, we use your contact information to send promotional materials and information about updates to our services.
Lawful Bases for Processing
Consent: We rely on your consent for certain processing activities, particularly marketing and communications. For example, we will only send promotional emails if you agree to receive them.
Performance of Contract: We process your data to fulfill our contractual obligations to you. For instance, when you sign up for our stock management platform, we use your information to create your account, process payments, and provide the requested services.
Legal Obligation: We process your data to comply with applicable laws and regulations. This includes verifying your identity for KYC purposes or retaining transaction records to meet AML requirements.
Legitimate Interest: We process your data when it is necessary for our legitimate interests, provided those interests do not override your fundamental rights and freedoms. For example, we analyze usage patterns to improve our platform’s functionality and user experience. We also use data to detect and prevent fraud, ensuring the security of our services for all users.
How We Share Your Information
HiQ Africa Ltd. does not sell your personal data. However, we may share your information in the following scenarios:
With Service Providers: We share information with trusted third-party service providers who perform services on our behalf, such as hosting services, payment processors, or marketing partners. These providers are bound by confidentiality obligations and must comply with data protection laws.
Example: If you make a purchase, we may share your payment information with a
payment processor to complete the transaction.
For Legal Reasons: We may disclose your personal information when required by law,
such as responding to a legal process, enforcing our terms or preventing fraud.
With Your Consent: If you have provided consent, we may share your personal data
with other third parties.
International Data Transfers
HiQ Africa Ltd. operates from Rwanda but may transfer your personal data to other jurisdictions for processing. When transferring data internationally, we ensure that appropriate safeguards are in place, such as Standard Contractual Clauses or Binding Corporate Rules , in line with the Rwanda Data Protection Law.
Your Privacy Controls
You have choices regarding the information we collect and how it is used:
Access and Update Your Information: You can review, update, or delete your personal data at any time by contacting us at [email protected].
Manage Your Consent: You have the right to withdraw consent for marketing communications at any time by unsubscribing or contacting us.
Cookie Preferences: You can manage your cookie settings through your browser, choosing to block or limit cookies. However, disabling cookies may limit certain functionalities of our Site.
Your Data Protection Rights
Under the Rwanda Data Protection Law, you have certain rights concerning your personal data, including:
● Right to Access: You can request a copy of your personal data that we hold.
● Right to Rectification: You can request the correction of any inaccurate or incomplete personal data.
● Right to Erasure: Under certain circumstances, you may request the deletion of your personal data.
● Right to Restrict Processing: You can ask us to limit the processing of your personal data in specific cases.
● Right to Data Portability: You can request that your data be transferred to another service provider.
To exercise any of these rights, please contact us at [email protected]. We will respond to your request within 30 days.
Security of Your Information
We implement industry-standard security measures to protect your data. These include encryption, secure server and restricted access controls. We also review our security practices regularly to address any potential vulnerabilities.
Example: We use HTTPS encryption across our Site to ensure your data is securely transmitted.
How Long We Keep Your Data
We retain your personal data for as long as you use our service and as necessary to fulfill the purposes outlined in this policy or as required by law. After the retention period, your data will be deleted or anonymized.
● Account Information: Retained for five years after account inactivity.
● Transaction Data: Retained for seven years for audit and legal purposes.
● Marketing Data: Retained until you withdraw consent or unsubscribe.
Use of Cookies
Our Site uses cookies and similar technologies to enhance your experience, such as remembering your preferences and providing personalized content. You can adjust your cookie settings through your browser.
Example: Cookies help us remember your language preference when you return to our Site.
Data Breach Notification
In the unlikely event of a data breach, we will notify you and the relevant authorities within 72 hours, as required by the Rwanda Data Protection Law.
Changes to This Privacy Policy
We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. If any significant changes are made, we will notify you via email or through a notice on our website. Your continued use of our services after such changes will indicate your acceptance of the revised policy.
Contact Information
For any inquiries regarding this Privacy Policy or your personal data, please contact us at:
HiQ Africa Ltd.
KN 4 Ave, Kigali, Rwanda Phone: +250 798 684 904 Email: [email protected]
Last Updated: September 18, 2024