Data Protection at Findaam

1. Our Commitment to Data Protection

At Findaam, we are committed to protecting the privacy and security of personal data. As an AI-powered people search platform operating across Africa, we understand the importance of handling personal information responsibly and in compliance with applicable data protection laws.

2. Compliance with Data Protection Laws

Findaam adheres to various data protection laws and regulations, including:

• Nigeria's Nigeria Data Protection Regulation (NDPR)
• South Africa's Protection of Personal Information Act (POPIA)
• Kenya's Data Protection Act
• The EU's General Data Protection Regulation (GDPR)
• Other relevant national and international data protection laws

We continuously monitor changes in data protection legislation across Africa and globally to ensure ongoing compliance.

3. Data Collection and Processing

Findaam collects and processes personal data for the purpose of providing our AI-powered people search services. This includes:

• Information provided by users when creating an account or using our services
• Publicly available information gathered from various sources across Africa
• Information obtained from our partners and third-party providers

We process this data based on legitimate interests, consent, or other legal bases as appropriate under applicable laws.

4. Data Subject Rights

We respect and uphold the rights of data subjects. Individuals have the right to:

• Access their personal data
• Rectify inaccurate or incomplete data
• Erase their personal data ("right to be forgotten")
• Restrict processing of their data
• Data portability
• Object to processing based on legitimate interests
• Withdraw consent at any time

To exercise these rights, please contact our Data Protection Officer at dpo@findaam.com.

5. Data Security Measures

Findaam implements robust technical and organizational measures to ensure the security of personal data, including:

• Encryption of data in transit and at rest
• Regular security audits and penetration testing
• Access controls and authentication mechanisms
• Employee training on data protection and security
• Incident response and data breach notification procedures

6. Cross-Border Data Transfers

Given our pan-African operations, Findaam may transfer personal data across borders. We ensure that such transfers comply with applicable data protection laws by implementing appropriate safeguards, such as:

• Standard Contractual Clauses (SCCs)
• Binding Corporate Rules (BCRs)
• Adequacy decisions where applicable

7. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by applicable laws. Our retention policies are regularly reviewed and updated to ensure compliance with data protection principles.

8. Third-Party Processors

Findaam may engage third-party service providers to process personal data on our behalf. We ensure that these processors provide sufficient guarantees to implement appropriate technical and organizational measures in compliance with data protection requirements.

9. Data Protection Impact Assessments

We conduct Data Protection Impact Assessments (DPIAs) for high-risk processing activities to identify and mitigate potential privacy risks.

10. Data Protection Officer

Findaam has appointed a Data Protection Officer (DPO) to oversee our data protection strategy and ensure compliance with data protection laws. You can contact our DPO at dpo@findaam.com for any data protection-related inquiries or concerns.