We may collect information about application crashes and other malfunctions for purposes of diagnosing possible causes of such malfunctions and as part of our goal to constantly improve the user experience with our products and services.

The crash analytics information is not personally identifiable, is only used for diagnostic purposes and is never shared with third parties.

The phone number is central to enabling communications with our users and managing their activities during their normal usage of ICTLife services. We collect your phone number during account setup for the purpose of verifying your account and also securely associating the resultant account activity with you.

We may also use your phone number to communicate account-related information to you thereafter. We will not share or disclose your phone number to third parties without your consent or for any purposes not outlined in this privacy policy and/or our terms and conditions.

When making certain interactions with our services, such as when creating a business profile, you may allow our application to read your device location information to provide location-aware information such as a business address or a delivery address of a related service or product.

The application will prompt you to grant, or deny, the permissions to use your current device location information to enable this functionality. Upon your acceptance and authorization, the application will read your device location information, securely upload it to our servers and utilize it for the purpose of that interaction.

You may also opt to use the application and related services without granting the permission to read your location data. Your location information will not be shared with any third parties without your explicit consent.

Users may upload image files to our servers through the platform, such as when creating a business profile, when reacting to an interaction thread such as a review, or as a complement to other content. Such images will be securely uploaded to our servers where they will be stored securely.

The images will be displayed within the context of the corresponding profile or transaction. Users may choose to delete such content through from the platform using the provided deletion feature.

Users on the ICTLife platform may choose to upload an image which will be used as their account profile image. The image will be securely uploaded to our servers, where it will be stored securely. The image will be displayed as part of the user profile listing and as part of associating the user with the content they contribute on the platform, for example the image may feature as a corresponding avatar for interactive communication threads.

Users may choose to delete such content using the provided deletion feature.

When using the ICTLife platform, users may express their opinion, for example by making a star-rating when creating a review, or by reacting with a “like” to an existing review.

This information is securely communicated to our servers where it will be stored securely. The content will then be displayed within the context of a corresponding review or transaction as applicable.

We do our best to be transparent in our data collection and use including the purposes for which we collect the information we hold about users on our platforms. As required and where applicable, we provision for the explicit authority by the user to grant us the necessary permission on their device to collect the data, such as through in-app prompts. We will not obtain information or data without your permission and we will endeavor to fully inform you and require your explicit permission, even in cases where data collection may happen in the background.

In circumstances where data needs to be transferred to our servers to provide the necessary services to our users, we will strive to protect the data using modern encryption protocols, such as TLSv2 in order to safeguard against possible exposure of the data in transit. We will also strive to implement the necessary safeguards for data stored on our systems, including encryption of data during transfer within and across our infrastructure as well as during long-term storage within our databases.

We never sell or share your data with third parties outside the provisions of this privacy policy and the related terms and conditions of use of the ICTLife merchant platform. Under such circumstances where the data of our users may need to be handled by a third-party provider, for example to dispatch email or SMS communications, we will ensure we work only with service providers who observe similar or stricter levels of user data privacy and related practices.

ICTLife is a company incorporated and existing under the laws of Kenya. However we will primarily engage Amazon Web services Inc(AWS) as a hosting service provider, with the primary data processing and storage centres located within the European Economic area(EEA).

Your personal data stored with us may also be transferred to countries outside of the EU should we have the business need to change our cloud hosting providers, and only for purposes of providing the services required for the ICTLIfe merchant platform and related components to work.

All such transfers of personal data will be made in accordance with applicable laws and we will do our best to maintain the privacy of all your data that we hold.

We may collect user activity on our applications as outlined under the non-sensitive data we collect. We will only use this data to improve the user experience and derive usage metrics of the platform in a non-personal way. We will not track or profile personal user activity on our platform without your consent.

The metrics we collect in such exercises are only used to inform our internal product usage analytics and related improvement procedures and are never shared with third-parties.

To improve the user experience of our products and services, we sometimes make use of small and usually temporary files (commonly referred to as cookies) stored on your computer, or similar information tracking technology. Please see our full cookie notice here.

Whenever possible, we deploy two or more factors of authentication in your use of our services to give you added security. For example,we require QR Code login to protect your account information from the mobile to the web.

This ensures that someone must additionally have your phone and PIN number when logging into the web to view your transactions.

We protect your data while in transit from your devices to our servers by deploying the same grade of encryption used by sensitive industries such as banking.

We encrypt the data we need to store within our infrastructure to ensure that such data cannot be viewed in the unfortunate event that it ended up in the hands of rogue actors.

We emphasize information security in our software development process, including counter-checking of our application code by several software developers and teams other than those who originally wrote the application, amongst other internal security protocols.

Including our internal leadership, the management and internal culture, we have always been keen on respecting and upholding the data privacy and intellectual property rights of all users and parties on our platforms. We always take these matters as a serious responsibility and core to our work as a business and technology provider.

We do not sell your data to third parties, or otherwise use your information for reasons outside the provisions of this privacy policy and our terms and conditions.

We will notify you of changes and updates to our policies through our website and relevant channels (such as in-App notifications) for your feedback and response. Whenever we make such updates, we will be guided by the principle that users have a fundamental right to privacy and control of their data.

Access to our internal systems is restricted to authorized staff and on a legitimate need to know basis. We limit such access and it is only granted for the purpose of providing the relevant ICTLife services.

We maintain strict internal information security procedures and controls to ensure your data remains safe and secure

We do not grant third party access to our systems, except for the purpose of providing the relevant ICTLife service or product. Any access we grant to third parties requires that they sign a data processing agreement which contains the relevant provisions to uphold our data security and privacy protocols.

This may include further customization and/or personalization of your experience with our services on an on-going basis and also depending on your choices and interaction patterns as you use the services over time;

We use your personal information to provide functionality, analyse performance, fix errors, and improve the usability and effectiveness of our services.

We use your personal information to communicate with you in relation to our services through different communication channels (e.g. by phone, email, sms, chat). Where such communication is channeled through a third party service provider, we will endeavor to work with providers who uphold data privacy regulations to best protect the privacy of your data.

In certain cases, we have a legal obligation to collect and process your personal information. For instance, we collect from merchants information regarding their place of establishment and confirm receiving account and billing information for identity verification and possibly other purposes such as fraud prevention.

We may also seek your consent to process your personal information for a specific purpose that we communicate to you. When you consent to our processing of your personal information for a specified purpose, you may withdraw your consent at any time and we will stop processing of your data for that purpose.

You can access your information including your name, address and profile information

You can add or update certain information on your profile under the relevant account settings section of the ICTLife service or platform. When you update such information, we may keep a copy of the previous version for our records.

You can opt out of certain other types of data processing by updating your account settings on the applicable ICTLife Service or application.

For example, if you do not want to receive notifications, emails or other communications from us, please adjust your preferences under the account settings. If you do not want to receive in-app notifications from us, please adjust your notification settings within the application or on your device.

Please note that we may mark some options as required to meet and maintain the required minimum service level, such as important notifications.

When you consent to our processing of your personal information for a specified purpose, you may withdraw your consent at any time and we will stop any further processing of your data for that purpose.

Additionally, subject to applicable law, you have the right to:

You may request information about the purpose of the processing; the categories of personal data we process; what third parties may receive the data from us; what the source of the information was (if you didn’t provide it directly to us); and how long we may retain such information.

We provide mechanisms within the service or platform to enable you to update and make corrections to your information as necessary. You may also contact us should you need to make amendments on your information where a provision for you to do this is not available or enabled on the platform.

Subject to certain exceptions, and as provided in the terms and conditions and our other policies:

- We may stop processing your data upon your request, for example if such data was submitted to us through an act of impersonation or identity theft.

- In some cases, such as for statistical analyses purposes, we may anonymize the data that you instruct us to erase, such that it can no longer be used to personally identify you.

Whenever technically feasible, we will — upon your request — provide your personal data to you or transmit it directly to another controller of your choice within 30 days.

If access cannot be provided within a reasonable time frame, we will provide you with a date when the information will be provided.

If for some reason your access to such information is denied, ICTLife will provide an explanation as to why access has been denied.

You can opt out of certain types of data processing by updating your preferences under the relevant settings on the service or platform.

For example, you may opt out of specific communication categories where applicable, such as only receiving specific newsletter categories.

Please note that we may require certain categories of data processing to remain enabled to maintain the minimum level of service for the platform, for example important communications about your account status cannot be disabled.

You may request that we restrict the processing of your personal data in certain instances, for example, you may opt out of receiving email communications of certain categories if we provide categorised newsletter mailing lists.