Privacy and data security statement
This statement sets out what personal information Umoyatech collects and how we use it. The statement applies to any information, including personal and special personal information, given to us, or which we may collect from third parties.
The provisions of this statement are subject to mandatory, unalterable provisions of Applicable Laws.
Umoyatech takes the privacy and protection of personal information very seriously, and we will only use personal information in accordance with this statement and applicable data protection legislation. It is important that all necessary and appropriate steps to protect personal information is taken, for example, by ensuring that all passwords and access codes are kept secure.
Umoyatech have implemented a variety of security measures to maintain the safety of personal information when entered, submitted, or accessed. These measures include technological, physical and administrative procedures to protect personal information from loss, misuse, unauthorised access, disclosure, alteration, and destruction.
We make use of a secure server. All supplied sensitive information is transmitted via Secure Socket Layer (SSL) technology and is only accessible by those authorised with special access rights to such systems, and are required to keep the information confidential.
Although we endeavour to keep information secure, we cannot guarantee that our security measures will prevent every unauthorised attempt to access, use or disclose personal information. We maintain procedures to deal with any suspected breach of personal information, and we will notify any relevant parties of a breach where we are legally required to do so.
How personal information is collected
Personal information is normally provided directly when registering for our services or requesting further information about our services, whether in writing, through our website, over the telephone or any other means.
We may also collect personal information indirectly from third parties such as appointed agents, financial advisors or an introducer, who are duly authorised to disclose personal information, or from any regulator, fraud and money laundering prevention agency or other third party or public resource that may hold such information.
Types of information collected
Depending on the interaction with our website, we may collect the following personal information, which we have categorised as follows:
- Identity Data, which may include first name, last name, title, identity number.
- Contact Data, which may include delivery/service address, email address, and phone numbers.
- Profile Data, which may include username and password, customer service requests, interests, preferences, feedback and survey responses; and preferences in receiving marketing and non-marketing communications from us.
- Financial Data, which may include bank details, credit history.
- Transaction Data, which includes records of transactions carried out through the website and other details of services you have used.
- Website Technical Data, which includes the following information if our online portal is used: Internet protocol (IP) address, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and the ways of interaction with our online portal and services.
- Customer Technical Data, which includes service connectivity, latency, quality metrics, sky obstruction data, device orientation and location, WiFi quality metrics, WiFi device information, and the public IP address information assigned.
Use of information collected
We only use personal information for specific business purposes related to the services we provide or in situations where it is in our legitimate interest and which will not cause you undue prejudice. Below are descriptions of the purposes for which we may use certain categories of personal information:
- Providing our services or offerings which have been requested, and notifications about important changes to these services or offerings.
- Managing user accounts, contractual arrangements or relationships and complying with instructions or requests.
- To use data analytics to debug, optimise, and improve our platform and services, marketing, customer relationships and experiences.
- Compliance with legal obligations. This is where we need to process personal information to comply with any binding legal obligations imposed on us by any relevant governmental or regulatory authority.
- It is in our legitimate interests. This includes:
- Verification for the purposes of preventing and mitigating financial crimes, fraud or money laundering;
- Adhering to local and international best practice guidelines; or
- Performing the relevant IT due diligence testing to detect malicious data and cyber threats.