Privacy Policy

Nzasi Ventures Limited (“we”, “our”, “us”) respects your privacy. This Privacy Policy describes how we collect, use, and protect your personal information when you interact with our website or services.

1. Information We Collect

We may collect your name, email address, phone number, and organization details when you contact us or request information. The data we collect and use enables us to support and improve AfyaNumeriq GRC platform. We process data lawfully and only for specified purposes (service delivery, security, legal compliance, product improvement). We retain personal data only as long as necessary for the purpose collected, to meet contractual or legal obligations, or to resolve disputes. Typical retention windows:

• Account & billing data: retention for the duration of the contract + 7 years for accounting/legal compliance.
• Audit logs & backups: retention according to the organization’s policy (configurable) or minimum legal requirements.
• Website analytics and cookies: per the cookie banner preferences.

We delete or anonymize data when no longer required. Where data is retained for legal reasons, we document the justification.

2. How We Use Your Information

• To respond to your inquiries and provide support
• To send relevant updates or company information
• To improve our services and website
• To monitor the platform's security in line with regulatory and legal requirements.

3. Data Protection

We implement appropriate security measures to safeguard your data against unauthorized access, disclosure, alteration, or destruction.

4. Security

We use organizational and technical measures to protect personal data: access controls, encryption at rest and in transit, role-based access, logging, secure configuration, hardened backups, and periodic security testing. We maintain incident response procedures and will notify affected data subjects and regulators where required by law. Security controls and their exact settings are kept under change control and aligned with good industry practice (ISO/IEC 27001).

5. Your Rights

You may request access, correction, or deletion of your personal data by contacting us at info@nzasi.com.

Last updated: January 2026