privacy policy / Data protection page
- Introduction
- Personal data is information about a person which is identifiable as being about them. It can be stored electronically or on paper, and includes images and audio recordings as well as written information.
- Data protection is about how we, as an organization, ensure we protect the rights and privacy of individuals, and comply with the law, when collecting, storing, using, amending, sharing, destroying or deleting personal data.
- Responsibility
- Overall and final responsibility for data protection lies with the ASEA Secretariat, who are responsible for overseeing activities and ensuring this policy is upheld.
- Overall policy statement
- African Exchanges Linkage Project needs to keep personal data in order to carry out its activities.
- We will collect, store, use, amend, share, destroy or delete personal data only in ways which protect people’s privacy and comply with relevant legislation on data protection.
- We will only collect, store and use the minimum amount of data that we need for clear purposes, and will not collect, store or use data we do not need. We do not automatically gather any personal information from you. This information is only obtained if you supply it voluntarily, usually through contacting us via e-mail, or registering in a secure portion of the site.
- We will only collect, store and use data for:
-
- purposes for which the individual has given explicit consent, or
- purposes that are in the AELP’s legitimate interests.
We are also permitted to keep data to use it for: contracts with the individual whose data it is, or to comply with legal obligations, or to protect someone’s life, or to perform public tasks.
-
- We will provide individuals with details of the data we have about them when requested by the relevant individual.
- We will delete data if requested by the relevant individual, unless we need to keep it for legal reasons.
- We will endeavour to keep personal data up-to-date and accurate.
- We will store personal data securely.
- We will keep clear records of the purposes of collecting and holding specific data, to ensure it is only used for these purposes.
- We will not share personal data with third parties without the explicit consent of the relevant individual, unless legally required to do so.
- We will endeavour not to have data breaches. In the event of a data breach, we will endeavour to rectify the breach by getting any lost or shared data back. We will evaluate our processes and understand how to avoid it happening again.