MJV Consultants Ltd

Certified Public Accountants

PRIVACY POLICY

 

MJV Consultants Ltd (MJV) respects your privacy and is committed to protecting your personal data. This Privacy Policy (and any other documents referred to on it) sets out the basis on which any personal data we collect from you, that you provide to us, or that is otherwise made available to us will be processed by us.

 

This Privacy Policy will inform you as to how we look after your personal data when you take our services with us, use our or services, or visit our website and tell you about your privacy rights and how the law protects you. Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it.

 

This Privacy Policy may be amended or updated from time to time to reflect changes in our practices with respect to the processing of personal data, or changes in applicable law. It is important that you read this Privacy Policy together with our terms and conditions, and any other policies and notices we may provide on specific occasions when we are collecting or processing personal data about you so that you are fully aware of how and why we are using your data. This Privacy Policy supplements other notices and related policies and is not intended to override them.

 

  1. DEFINITIONS AND INTERPRETATION

 

  • For the purposes of this Privacy Policy, the following definitions apply:
    • “Applicable Law”means the Constitution of the Republic of Rwanda, all Acts of Parliament including regulations, rules, guidelines, guidance notes issued pursuant to any Act of Parliament, legislative and regulatory requirements, and codes of practice applicable to the processing of personal data and/or applicable to a data controller or data processor as may be amended from time to time;
    • “Personal Data”means any information relating to an identified or identifiable natural person (hereinafter “Data Subject”). For clarity, an identifiable person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of such a natural person;
    • “Controller” means the natural or legal person, authority, organization or other agency that makes decisions individually or together with other parties regarding the purposes and means for processing personal data;
    • “MJV Consultants Ltd”means (hereafter referred to as “MJV”, “we”, “us” or “our”);
    • “Processing” means an operation or activity or set of operations or activities performed on personal data whether or not by automated means;
    • “Processor” is a natural or legal person, authority, organization or other agency that processesPersonal Data on behalf of the Controller.
    • “Third Party” means a natural or legal person, public authority, agency or body other than the Data Subject, Controller, Processor, Sub-processor, and persons who, under the direct authority of the Controller, Processor or Sub-processor, are authorized to process Personal Data;
    • “Website” means the website of MJV which is www.mjvconsultants.com

 

  1. THE DATA WE COLLECT
    • We may collect, use, store and transfer different kinds of Personal Data about you which we have grouped as follows:
      • Identity data which includes name, username or similar identifier, Identity card/Passport number, PIN number, photo, marital status, property details, nationality, age, title, date of birth and gender, and any other similar information;
      • Contact data which includes, email address and telephone numbers;

 

  • Employment information
  1. HOW YOUR PERSONAL DATA IS COLLECTED

 

  • Information you give us:

 

  1. HOW WE USE YOUR PERSONAL DATA

 

  • We will only use your Personal Data where we have your consent or a legal basis to process the same. Most commonly, we will use your Personal Data in the following circumstances:
    • Where we need to comply with a legal obligation.

 

  1. CHANGE OF PURPOSE

 

  • We will only use your Personal Data and special category data for the purposes for which we collected it as indicated in this Privacy Policy or for reasons we give you during the collection of the data.
  • If we need to use your Personal Data for an unrelated purpose, we will notify you and seek your consent where necessary.
  • Please note that we may process your Personal Data without your knowledge or consent if this is required or permitted by law.
  1. DISCLOSURE OF PERSONAL INFORMATION

 

  • We may disclose your Personal Data to other entities, the affiliates of NCBA, for legitimate business purposes (including providing services to you and operating our sites and systems), in accordance with applicable law.
  1. TRANSFER OF YOUR PERSONAL DATA OUTSIDE RWANDA

 

  • We may need to transfer or store your information in another jurisdiction to fulfill a legal obligation, for our legitimate interest and to protect the public interest.
  • Insofar as is required for providing our services, we use third-party service providers who are located outside Kenya or store your information (including your sensitive personal data) outside Kenya.
  • When we, or our permitted third parties transfer or store information outside Kenya, we or they will ensure that it is lawful and that it has an appropriate level of protection, including transfer to jurisdictions that have established data protection laws, and entering legally binding agreements to ensure the security of your Personal Data.
  • Where your information is transferred to affiliates of NCBA in other countries, we ensure that your Personal Data is protected by requiring that they follow the same rules when processing your Personal Data.
  • We may also transfer your information across country borders where you have consented to the transfer.
  • If we transfer your information outside Kenya in other circumstances (for example, because we have to provide such information by law), we will use best endeavours to put on place appropriate safeguards to ensure that your information remains adequately protected.
  1. HOW WE KEEP YOUR INFORMATION SECURE
    • We have put in place appropriate security measures to prevent your Personal Data from being lost, used or accessed in an unauthorized way, altered or disclosed. In addition, we limit access to your Personal Data to those employees, agents, contractors and other third parties who have a business need to know. They will only process your Personal Data on our instructions and they are subject to a duty of confidentiality.
    • We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.
  2. HOW LONG WE SHALL RETAIN YOUR PERSONAL DATA
    • We will only retain your Personal Data for as long as reasonably necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, tax, accounting or reporting requirements. We may retain your Personal Data for a longer period in the event of a complaint or if we reasonably believe there is a prospect of litigation in respect of our relationship with you.
    • To determine the appropriate retention period for Personal Data, we consider the amount, nature and sensitivity of the Personal Data, the potential risk of harm from unauthorized use or disclosure of your Personal Data, the purposes for which we process your Personal Data and whether we can achieve those purposes through other means, and the applicable legal, regulatory, tax, accounting or other requirements.
    • By law we have to keep basic information about our customers (including contact, identity, financial and transaction data) for a minimum of seven years after they cease being customers. Our internal policy as amended from time to time may also require us to keep customer data for a longer period.
    • In some circumstances, we will anonymize your Personal Data (so that it can no longer be associated with you) for research or statistical purposes, in which case we may use this information indefinitely without further notice to you.
  3. DATA SUBJECT’S RIGHTS
    1. Subject to legal and contractual exceptions, you have rights under applicable laws in relation to your Personal Data. These are listed below:
      • Right to be informed that we are collecting your personal information and how we are processing it;
      • Right to rectify your personal data where it is inaccurate or incomplete;
      • Right to withdraw your consent to the processing of your personal data. However, we may continue processing your personal data for legitimate interests or legal grounds;

 

  1. CHANGES TO THIS PRIVACY POLICY

 

Change if any in the law or regulation will be updated accordingly.

 

  1. HOW TO CONTACT US

In case you would like to contact us with reference to the terms of this privacy policy, or in order to exercise any of your rights in relation to your Personal Data, you can reach us through the below contacts.

MJV Consultants Ltd

2nd Floor, ECD Plaza,

KN 4 Ave, 23, Kiyovu,

Kigali, Rwanda
Tel: +250-784227792

md@mjvconsultantsltd.com

 

Data Protection Officer
Manish Gupta
Manish Gupta
Tel: +250784227792