The Africa’s Talking Group of Companies, (collectively “AT”, “we” and “us”) respect your privacy and are committed to maintaining your trust. We adhere to all applicable data protection and privacy laws globally. This Privacy Notice describes the types of Personal Data you provide or that we collect on our API Platform or website, how we use Personal Data, with whom we share it and your rights and choices with regards to your Personal Data. Please read this Privacy Notice carefully and ensure that it is understood as it forms part of your agreement with AT.

This Privacy Policy applies to all visitors to our website and anyone who accesses or uses our products and services in all the countries we operate in.

1. DEFINED TERMS

The following terms will have the meanings indicated below. Please refer to our Terms of Service for any capitalized terms that are not defined in this policy.

"Other Information/Data" is any information or Data that does not reveal your specific identity or does not directly relate to an individual, such as Services usage data.

"Personal Data / Information" is information or Data that identifies you as an individual or relates to an identifiable person, such as name, ID , postal address, telephone number, email address, credit card number, social media account ID and any other information relating thereto. It does not include strings of code such as browser cookie IDs.

2. HOW /WHEN WE COLLECT YOUR PERSONAL DATA

Most of the personal data we process is provided to us directly by you when you:

• Create an account on the API Platform
• Start using our services, Visit our website, or register for more information on a specific service
• Register to attend or have attended an event organized by AT ,subscribe to our e-newsletter, blog or a webinar or Participate in discussions on our social media platforms
• Participate in market studies, surveys or promotions

We also collect personal and device information when you:

• Make payments to us
• Apply to us for employment or internship
• Call or otherwise contact us including via SMS, USSD, website.

We also receive Personal Data indirectly when:

• Our clients or suppliers provide us with contact details of their representatives and personnel who will be our business contact points
• An employee or job applicant gives us contact details of their referees
• Our background check services feed us with information when you apply for a job at AT

We also automatically collect certain information, such as your Internet protocol (IP) address, user settings, cookie identifiers, and other unique identifiers, browser or device information, and location information (including approximate location derived from IP address)

3. HOW WE PROCESS PERSONAL DATA

We may process your Personal data for legitimate business purposes or to comply with a legal obligation, including:

• To enter into a contract with you . As part of our Know-Your Customer (KYC) process, it is mandatory that you provide us with Personal Data that will enable us to perform our contract with you. If you do not provide or enable us to collect the necessary information, we shall not be able to provide AT Services to you.
• To create, and administer accounts, fulfil and record transactions, and provide you with related assistance (e.g., technical help, answer inquiries relating to Personal Information, etc.)
• To send administrative information to you, for example, information regarding our Services and changes to our terms, conditions, and policies.
• To send you marketing communications and offer other materials that we believe may be of interest to you, such as to send you newsletters or other direct communications.
• To facilitate social sharing functionality if you choose to do so.
• For trending and statistics, and to improve our products and services.
• For audits, to verify that our internal processes function as intended and are compliant with legal, regulatory or contractual requirements.
• For fraud and security monitoring purposes, for example, to detect and prevent cyberattacks or attempts to commit identity theft.
• For responding to legal duties, such as requests from public and government authorities.

4. HOW WE SHARE YOUR PERSONAL DATA WITH THIRD PARTIES

We do not share personal data with third parties except when necessary, such as:

• To our strategic partners and third-party service providers who provide services such as data analysis, payment processing services, order fulfillment, information technology and related infrastructure provision, customer service, email delivery, credit card processing, auditing ,telecommunication service providers and other similar services.
• To business partners in the context of a corporate transaction. If AT is involved in a sale or business transaction (e.g., merger or acquisition), AT will retain a legitimate interest in disclosing or transferring your Personal Information to a third party in the event of any reorganization, merger, sale, joint venture, assignment, transfer or other disposition of all or any portion of our business, assets or stock (including in connection with any bankruptcy or similar proceedings). Such third parties may include, for example, an acquiring or target entity and its advisors.
• To comply with legal or regulatory requirements or obligations in accordance with applicable law, a court order.

5. HOW WE CARRY OUT INTERNATIONAL TRANSFERS OF YOUR PERSONAL DATA

We may share your personal data within the AT Group of Companies to complete internal procedures, to perform certain processing activities across our subsidiaries or to support you in the use of our products and services.

AT employs appropriate safeguards for cross boarder transfers of personal data, as required by applicable data protection law. In addition all international transfers are carried out ensuring the confidentiality and security of your personal data.

6. HOW WE SECURE YOUR PERSONAL DATA

We shall secure your personal data by taking adequate security measures that are commensurate with the sensitivity of the personal data processed. To this end, the AT Group of companies maintain appropriate physical, technical and administrative security measures with a view to protecting personal data against theft, accidental loss, access ,unauthorized alteration , unauthorized or accidental access, processing use, erasure or unlawful destruction. Unfortunately, no data transmission or storage system can be guaranteed to be 100% secure.

We continuously train all our staff on Data security and privacy to ensure they handle all the information they receive with the utmost confidentiality. Further, before we engage any third-party processor vendor and service provider, we check their security practices and alignment with the Applicable Data Protection Law and regularly conduct our vendors’ and service providers’ security and privacy assessments.

7. WHAT ARE YOUR RIGHTS IN RESPECT OF YOUR PERSONAL DATA

Subject to Applicable Data Protection Laws, you have the following rights:

1. To withdraw your consent to our processing of your personal data (to the extent that such processing is based on your consent and consent is the only permissible basis for processing), without affecting the lawfulness of processing based on consent before its withdrawal,
2. To ask us to erase your personal data in certain circumstances,
3. To ask us to restrict the processing of your personal data in certain circumstances,
4. To confirm which of your personal data we possess and to request the identity of any third parties who have access to it.
5. To ask us to restrict the processing of your personal data in certain circumstances
6. To request that any decision which significantly affects you is not based on automated decision making.

8. HOW TO ACCESS, CORRECT, DELETE OR EXERCISE OTHER RIGHTS REGARDING YOUR PERSONAL INFORMATION

If you would like to make a request to access, correct, object to the use, restrict or delete Personal Data that you have previously provided to us, or if you would like to request to receive an electronic copy of your Personal Data for purposes of transmitting it to another company (to the extent this right to data portability is provided to you by applicable law), you may contact us at [email protected] with the subject line "Data Subject Request." We will respond to your request consistent with applicable law.

You have a right to lodge complaints pertaining to the processing of your personal data with the relevant data protection supervisory authority.

For your protection, we may only implement requests with respect to the Personal Information associated with the particular email address that you use to send us your request, and we may need to verify your identity before implementing your request. We will try to comply with your request as soon as reasonably practicable.

Please note that we may need to retain certain information for recordkeeping purposes and/or to complete any transactions that you began prior to requesting a change or deletion There may also be residual information that will remain within our databases and other records, which will not be removed.

9. OPT-OUT

Information you provide may be used by AT for marketing purposes such as one-off promotional emailing, mobile text messages, direct mail, and sales contacts. You may opt-out from receiving electronic communications from us if you no longer want to receive marketing-related emails or mobile text messages from us on a going-forward basis by sending a request for list removal to [email protected] or by clicking the unsubscribe link in any marketing-related email sent to you by us.

We will try to comply with your request(s) as soon as reasonably practicable. Please also note that if you do opt-out of receiving marketing-related emails from us, we may still send you messages for administrative or other purposes directly relating to your use of the Services, and you cannot opt-out from receiving those messages.

10. TRACKING AND ADVERTISING

We and our third party service providers may collect Other Information in a variety of ways. We and/or our third party partners may employ various tracking technologies, such as cookies, web beacons and analytics software, that help us better manage content on the Services by informing us what content is effective.

11. SIGN-IN SERVICES

You can log in to some of the Services using sign-in services such as Facebook Login, Google OAuth, or an Open ID provider. These services will authenticate your identity and provide you the option to share certain Personal Information with us such as your name and email address.

12. TESTIMONIALS, RATINGS AND REVIEWS

If you submit testimonials, ratings or reviews to the Services, any Personal Information you include may be displayed in the Service. If you want your testimonial removed, please contact us at [email protected].

We may also partner with third-party service providers to collect and display ratings and review content on our website.

13. LIMITATION

Please note that we are not responsible for the collection, usage and disclosure policies and practices (including the data security practices) of other organizations, such as Facebook, Apple, Google, Microsoft or any other app developer, social media platform provider, operating system provider, wireless service provider or device manufacturer, including any Personal Information you disclose to other organizations through or in connection with the Services, including our social media pages.

14. HOW LONG WE KEEP YOUR PERSONAL DATA

We will retain your Personal Information for as long as needed or permitted in light of the purpose(s) for which it was obtained and consistent with applicable law. The criteria used to determine our retention periods include:

• The length of time we have an ongoing relationship with you and provide the Services to you (for example, for as long as you have an account with us or keep using the Services);
• Whether there is a legal obligation to which we are subject (for example, certain laws require us to keep records of your transactions for a certain period of time before we can delete them); or
• Whether retention is advisable in light of our legal position (such as in regard to applicable statutes of limitations, litigation or regulatory investigations).

15. CHANGES TO THIS PRIVACY POLICY

We may make changes to this Privacy Policy from time to time. Any changes we make will become effective when we post a modified version of the Privacy Policy to this page. If we make any material changes to the Privacy Notice , we may also notify you by posting notice within the applicable Services, or by sending you an email. If you continue using the Services after any notice of any such changes, it means you have accepted them. If you do not agree to any changes, you must stop using the Services, as applicable. It is your obligation to ensure that you read, understand and agree to the latest version of the Privacy Policy. The "Last Updated" legend at the top of the Privacy Policy indicates when it was last updated.

16. CONTACT US

If you have any questions regarding this Privacy Policy you can contact us via email at [email protected].