This Privacy Policy (the Policy) governs your use of the Grupp's Platform in Partnership with PaySecure and the process involved in the acquisition, processing, porting, storage and disposing of your personal data in connection with our website.
https://www.trygrupp.africa associated domains thereof, applications and other technological solutions (the Platform) developed by Grupp (Grupp/We/Our/Us). This Privacy Policy also governs your rights regarding the foregoing. We take pride in securing and maintaining the privacy of the data we collect from you.
Records of any surveys that we may ask you to complete that we use for research purposes.
Any other Personally Identifiable Information that you choose to provide to us or that you consent to us collecting.
Contact Information: first and last name, email address, phone number, and any other information required to process your information as a user of our platforms.
The visitor's IP address (including the domain name associated with the IP address, i.e., using reverse look-up).
The date and time of the visit to the website.
The pages visited on the website.
The browser being used.
In addition, where this is available, Grupp shall also collect:
The country from which the visitor is accessing the website.
The language of the browser being used.
The website from which the visitor is accessing Grupp's website.
The search word used (if the site is accessed via a search engine).
The type of connection and operating system.
Third Party Source: We may collect information from third party websites such as social media sites which authorizes us to access, store and use user's information which will be handled in accordance with this policy
Inquiries: When an inquiry is sent to us through our contact form, we use the personal data that you have stated in the contact form to send a response to you. Any personal data received from you shall not be used for any other purpose without your prior consent and knowledge and shall not be disclosed.
Personal Data may be given to us directly by you or by people or companies authorized by you to act on your behalf. We may also collect Personal Data about you from third parties in connection with our Services (for example, a credit reporting agency). No Personal Data about you will be collected without your consent for us to do so.
Where we need to collect Personal Data by law, or under the terms of a contract we have with you and you fail to provide that data when requested, we may not be able to provide the Services envisaged or requested.
Personal Data means any information or data about an individual from which that person can be identified. It does not include data or information where the identity has been removed. We collect the following personal information in order to provide personalized and improved experience. Personal Data may be given to us directly by you or by people or companies authorized by you to act on your behalf.
We may also collect Personal Data about you from third parties in connection with our services.
Records of any surveys that we may ask you to complete that we use for research purposes.
Any other Personally Identifiable Information that you choose to provide to us or that you consent to us collecting.
Contact Information: first and last name, email address, phone number, and any other information required to process your information as a user of our platforms.
The visitor's IP address (including the domain name associated with the IP address, i.e., using reverse look-up).
The date and time of the visit to the website.
The pages visited on the website.
The browser being used.
In addition, where this is available, Grupp shall also collect:
The country from which the visitor is accessing the website.
The language of the browser being used.
The website from which the visitor is accessing Grupp's website.
The search word used (if the site is accessed via a search engine).
The type of connection and operating system.
Third Party Source: We may collect information from third party websites such as social media sites which authorizes us to access, store and use user's information which will be handled in accordance with this policy
Inquiries: When an inquiry is sent to us through our contact form, we use the personal data that you have stated in the contact form to send a response to you. Any personal data received from you shall not be used for any other purpose without your prior consent and knowledge and shall not be disclosed.
Personal Data may be given to us directly by you or by people or companies authorized by you to act on your behalf. We may also collect Personal Data about you from third parties in connection with our Services (for example, a credit reporting agency). No Personal Data about you will be collected without your consent for us to do so.
Where we need to collect Personal Data by law, or under the terms of a contract we have with you and you fail to provide that data when requested, we may not be able to provide the Services envisaged or requested.
In general, website visitors do not need to provide personalized information to us. We may collect "aggregate data," i.e., group data with no personal identifiers such as IP address, device type, geo-location information, computer and connection information, mobile network information, statistics on page views, traffic to and from the sites, referral URL, ad data, and standard web log data and other information.
We use this aggregate data to help us understand how the Sites are being used and to improve usability. We also use it to enhance the quality and availability of products and services we offer.
This policy is enforced after you consent to it when you sign-up, access our products, services, content, features, technologies or functions offered from our websites, related sites, portals, applications and services. If you choose to use the Platform, you agree to the collection and use of your Personal Data in accordance with this Policy. The personal information collected may be used to improve our customer experience on the Platform. We will not use or share your personal information with anyone except as provided under this Policy.
We use Personal Data held about you in the following ways;
To undertake any obligation arising from and exercise our rights under any agreement between you and us
To notify you about changes to our services
To process and assess your application for employment with us
For statistical analysis and market research
To develop and improve our services
To update our records
To satisfy a legitimate interest (which is not overridden by your data protection interest)
To comply with a legal or regulatory obligation
To manage risk, detect or prevent or remediate fraud or other potentially prohibited or illegal services
For any other purpose you have specifically consented to
The collection and use of personal data by US is guided by certain principles. These principles state that personal data should:
Be processed fairly, lawfully, and in a transparent manner
Be obtained for a specified and lawful purpose and shall not be processed in any manner incompatible with such purposes
Be adequate, relevant, and limited to what is necessary to fulfill the purpose of processing
Be accurate and, where necessary, up to date
Not be kept for longer than necessary for the purpose of processing
Be processed in accordance with the data subject's rights
Be kept safe from unauthorized processing, and accidental loss, damage, or destruction using adequate technical and organizational measures
We will retain your Personal Data for as long as you remain an active user of the Platform unless you request we remove your Personal Data as provided under this Policy. Please note that your Personal Data may be retained for a longer period notwithstanding your request to remove your Personal Data, where there is a legal requirement to do so.
Where your Personal Data has been shared with a third-party on the Platform whose services you have subscribed to, the Personal Information held by such third-party may also be retained thereby and shall be governed by the third-party's applicable policy on retention of user's data.
To ensure that personal data is kept for no longer than necessary, the Company puts in place a data retention policy for each area in which personal data is processed and review this process annually. This retention policy considers what data should/must be retained, for how long, and why.
Please note that the services provided via the Platform may contain links to other websites not operated or controlled by Us. We are not responsible for the content, accuracy, opinions expressed in such websites, privacy policies, or practices of any such third-party sites or services, and such websites are not investigated, monitored or checked for accuracy or completeness by us. Please remember that when you use a link to go from any of our services to another website, our Privacy and Cookies Policy is no longer in effect. Your browsing and interaction on any other website, including those that have a link on our site, is subject to the website's own rules and policies. Such third parties may use their own cookies or other methods to collect information about you. Therefore, we strongly advise you to review the privacy policy of these websites.
You have the following rights in relation to your Personal Data held with us;
To access the Personal Data held by Us about you
To have your Personal Data corrected, e.g., if it is incomplete or incorrect
To opt out of receiving marketing communications at any time
To restrict or object to the processing of Personal Data or request erasing Personal Data (subject to applicable law)
To receive a copy of the Personal Data which you have provided to Us, in a structured, commonly used, and machine-readable format (in certain circumstances and subject to applicable law)
Where you have provided Personal Data voluntarily, or otherwise consented to its use, the right to withdraw your consent
The right to complain to a data protection authority (see section on Complaints)
We store and process your Personal Data on our computers in our cloud-based network. Data protection laws vary among countries, with some providing more protection than others. Regardless of where your information is processed, we apply the same protections described in this Policy. You have a right (upon your request) to be informed of the appropriate safeguards for data protection in the foreign country.
OR
We use a security-cleared data processor to store files and data on secure cloud- based servers hosted in the Republic of Ireland region of Amazon Web Services, and the North Europe Region of Microsoft Azure. The data processors are certified under the applicable frameworks and thereby guarantees and operates an appropriate standard of data protection and data security. Regardless of where your information is processed, we apply the same protections described in this policy and you have the right (upon your request) to be informed of the appropriate safeguards for data protection in the foreign country
We protect your Personal Data using physical, technical, and administrative security measures to reduce the risks of loss, misuse, unauthorized access, disclosure and alteration. Some of the safeguards we use are firewalls and data encryption, physical access controls to our data centers, and information access authorization controls.
Despite our efforts to establish a secure environment for the website, you should be aware that no information is completely secure on the internet. Therefore, you should always take the necessary safeguards and precautions on your own equipment In the event of an actual or suspected breach of your Personal Data, we will use best effort to remedy the breach within one (1) month from the date we report the breach to you.
We do not rent or sell your personally identifiable information to other individuals or organizations. You agree that we may share your Personal Data with third parties as described in the table below.
Affiliates - Our Affiliates may access your Personal Data to help us develop, maintain, and provide the services via the Platform.
Service Providers - Our Service Providers provide us support for our services, including website and maintenance development, hosting, maintenance, backup, storage, virtual infrastructure, payment processing, third-party lenders, and other services which may require them to access or use Personal Data about you. When we transfer your personal data to business partners, you should be aware that they might have stored personal data concerning you collected through other means, e.g., if you have been in contact with them in another context.
Professional Advisers - Our lawyers, accountants, auditors may need to review your Personal Data to provide consultancy, compliance, legal, accounting, and similar services.
Legal / Regulatory Authority - We may disclose your Personal Data if we believe it is reasonably necessary to comply with a law, regulation, order, subpoena, or audit, or to protect the safety of any person, to address fraud, security, or technical issues.
Advertisers - We may allow third parties including ad-servers or ad-networks, to serve advertisements on the Platform, and such third parties may be provided with access to your Personal Data to provide advertising tailored to your interest.
Application Program Interface (API) Users - A limited number of partners may have API access to portions of the Platform, e.g., any other aggregator and/or funder and/or credit bureau agency that may be granted access to our API documentation.
Other parties - Please note that top-level employees, authorized employees required to have access to the Platform in the course of their employment with Us, and investors may have access to your Personal Data. In the event of a corporate sale, merger, reorganization, dissolution, or similar event, we may also transfer your Personal Data as part of the transferred asset without your consent or notice to you.
We also transfer your personal data to the above or other third parties if we are obliged to do so according to legislation or in order to protect our or the group's interests in legal disputes.
We partner with various technology vendors from time to time. This may result in a transfer of personal data to a third country or international organization. In order to ensure an equal level of security for such transfer in accordance with the NDPA, Grupp has chosen to work only with vendors that have entered Standard Contractual Clauses with us.
We value your trust in providing us with your Personal Data in connection with your use of the Platform and shall endeavor to use commercially acceptable means of protecting it. However, we do not guarantee its absolute security.
We may update this Policy from time to time without any prior notice to you or consent. Thus, you are advised to consult this Platform periodically for any changes. We will notify you of any changes by posting the revised Policy on this Platform. Please note that changes shall be effective immediately after they are updated on this Platform.
If you are concerned about an alleged breach of privacy law or any other regulation by Us, you can contact the Data Protection Officer via email. The Data Protection Officer will investigate your complaint and provide information about how your complaint is handled.
Please be informed that where your complaints are not satisfactorily addressed, you may lodge a complaint with a relevant data protection authority.
If you have any questions or suggestions about our Policy, do not hesitate to contact us via grc@mikro.africa
