Privacy Policy

Data Privacy Policy

Who We Are:

Aurigin Limited is an early venture investment company focussed on financial services software, animation & post production services, e-learning systems; particularly targeting Kenya and African markets. Aurigin Limited family of websites includes but is not limited to www.ikoju.com, www.markets.africa, www.aurigin.africa among others (each and collectively, the “Website”) and is based in Nairobi – Kenya; Thome 5, New Garden Estate Road.

Privacy Policy

Your privacy is important to us. We respect the privacy rights of all individuals and we are committed to handling personal data responsibly and in accordance with all applicable laws. This privacy notice, together with other notices provided at the time of data collection, explain what personal data Aurigin collects about you, how we will use this data, and your rights to this data.

Please note that this notice applies to the handling of your personal data as a Website User. Nothing in this notice should be construed to interfere with Aurigins's ability to process a Websites User's data for purposes of complying with any legal obligations, or for investigating alleged misconduct or violations of the law, subject to complying with applicable legal requirements.

  1. We collect, use, and maintain (collectively referred to as 'process' or ‘processing’) different types of personal data about you in the operation of our business. As a Website User, we process personal data about you primarily for managing our relationship with you in respect to the Services offered by the platform.

    We collect and use your personal data primarily for the purpose of managing our working relationship with you, and to fulfill our obligations under this Agreement including opening of a Website Account, Using the platform algorithm to provide data storage, manipulation or output capability through templates, charts or as further prescribed under this Agreement.

    Failure to provide your personal data when requested may prevent us from being able to carry out these tasks and/or comply with our legal obligations.
  2. The data we process is limited to the following:
    1. Name and contact data. Your personal or business email address and other similar contact data.
    2. In some limited circumstances, we may collect personal data for research purposes or other non-Service-related purpose, with your consent.
  3. Legitimate business purposes

    We use and collect your information (and its derivations) for business purposes including but not limited to ensuring effective systems and business operations in addition to management of network and information system security, quality control and training (internal operations) in accordance with applicable privacy and jurisdictional requirements.

    Scope Selection & Justification
    • https://www.googleapis.com/auth/userinfo.email - We need this to allow us fetch your data from our server.
    • https://www.googleapis.com/auth/script.container.ui - This allows us to display the login prompt for you to enter your website application password to allow you to fetch your data and any templates you may already have created in your profile.
    • https://www.googleapis.com/auth/script.external_request - This allows us to make URL Fetch requests to our server to fetch the data mentioned above.
    • https://www.googleapis.com/auth/spreadsheets - This allows you to uploaded and have the data manipulated through for fetching back and displayed to you on the spreadsheet while using our app in raw format or in template format of reports that you wish to regularly generate.
    We may also collect and use your personal data when it is necessary for legitimate purposes such as marketing and research related activities that such confidential information of the Website User is not provided or is suitably modified so as not be recognized as belonging or attributable to the Website User without the use of additional information and such additional information is kept separately and is subject to technical and organizational measures to ensure that the personal data is not attributed to an identified or identifiable Website User.
  4. Legal Reasons

    We also may use your personal data when we consider it necessary to comply with laws and regulations, including collecting and disclosing personal data as required by law, under judicial authorization, or to exercise or defend the legal rights of Aurigin.

    We may also share your information with our lawyers, auditors or other professional advisors in connection with any legal or audit proceedings.
  5. Change of purpose

    We will only use your personal data for the purposes for which it was collected, unless we reasonably consider that we need it for another purpose that is compatible with the original purpose and there is legal basis for the further processing.
  6. How and Why We Share Personal Data

    Aurigin will only share your personal data with those who have a legitimate need for it. Humans are not allowed to the data and whenever we permit a third party to access personal data, we will make sure the data is used in a manner consistent with this notice (and any applicable internal data handling guidelines consistent with the sensitivity and classification of the data). Your personal data may be shared with our subsidiaries and affiliates and other third parties, including service providers, for legitimate purposes as follows:
    1. In order to carry out the uses of personal data described above (See section 3 under Data Privacy Policy titled: Why We Process Personal Data);
    2. To enable third parties to provide services to us. Categories of recipients of data would include, data hosting service providers, system maintenance support service providers, insurance providers, tax service providers;
    3. To comply with our legal obligations, regulations or contracts, or to respond to a court order, administrative or judicial process, such as a subpoena, government audit or search warrant. Categories of recipients would include counter-parties to contracts, judicial and governmental bodies;
    4. In response to lawful requests by public authorities (such as national security or law enforcement);
    5. To seek legal advice from external lawyers and advice from other professional advisers such as accountants, management consultants, etc.;
    6. As necessary to establish, exercise or defend against potential, threatened or actual litigation (such as adverse parties in litigation);
    7. In connection with the sale, assignment or other transfer of all or part of our business (such as a potential purchaser and its legal / professional advisers); or
    8. Otherwise in accordance with your consent.
    Please note that where legal requirements limit the sharing of your data, Aurigin will respect such requirements.
  7. Your Rights to Your Personal Information

    With respect to Rights to Your Personal Information, Aurigin Website Users are entitled to the following rights;
    1. To be informed of the use to which their personal data is to be used for;
    2. To access and ascertain their personal data that is in with Aurigin or any third party with whom Aurigin has shared the data;
    3. To object or restrict to the processing of all or part of their personal data by Aurigin or any third party with whom Aurigin has shared data;
    4. To have false or misleading data about them corrected;
    5. To have false or misleading data about them deleted;
    6. To be notified of the purpose for which the personal data is collected, the categories of the intended recipients of the data, the contacts of the data controller or processor and to be informed on whether any other entity may receive their collected personal data;
    7. To be informed whether the data collection exercise is made pursuant to any law and whether such collection is voluntary or involuntary;
    8. To be informed of the consequence of the data subject not providing all or any of the requested data
    9. To request for an explanation on the processing of data and the outcome of such data
    10. To be provided with a description of the technical and organizational security measures taken to ensure the integrity and confidentiality of the data;
    In collecting or processing personal data, Aurigin will ensure that data collected is complete, accurate, up to date and not misleading having regard to the purpose for the collection or processing of the personal data.
  8. Updating your details

    In addition to the above, you may have certain rights under the Data Protection Act No.24 of 2019 including deletion of account. Upon your submission of a request relating to your rights as a data subject, such request shall be finalized by Aurigin free of charge, at the latest within thirty days, depending on the nature of the request.
  9. Security of Your Personal Data

    Aurigin recognizes that protection of its users' privacy is a matter of critical importance in its operations. As such, Aurigin is bound by the Data Protection Act (Act No. 24 of 2019) – Kenya, General Data Protection Regulation (GDPR) with regards to collection of data, use, sharing and breach procedures for this purpose and is committed to treating its users' personal information in a careful and secure manner so that it will be appropriately protected.

    This includes:
    1. Personal data is processed in accordance with your right to privacy as a data subject;
    2. Personal data is adequate, relevant, and limited to what is necessary in relation to the purposes for which it is processed;
    3. Personal data is processed lawfully, fairly and in a transparent manner;
    4. Personal data is collected for explicit, specified and legitimate purposes and not further processed in a manner incompatible with those purposes;
    5. Personal data is collected only where a valid explanation is provided whenever information relating to family or private affairs is required;
    6. Personal data is accurate and, where necessary, kept up to date, with every reasonable step being taken to ensure that any inaccurate personal data is erased or rectified without delay;
    7. Personal data is kept in a form which identifies the data subjects for no longer than is necessary for the purposes which it was collected; and
    8. Personal data is not transferred outside Kenya, unless there is proof of adequate data protection safeguards or consent from the data subject
  10. The applications/website will use and transfer to any other app information received from Google APIs in adherence to Google API Services User Data Policy, including the Limited Use requirements.
  11. Aurigin may update its privacy notice at any time but if we do so, we will provide you with an updated copy as soon as reasonably practical.