Tappi Data Privacy & Policy

DATA PRIVACY POLICY 


 

I. OVERVIEW AND LOCATIONS 

At Tappi, Inc. (hereinafter “Tappi,” “We” or “Our”), We are committed to protecting the privacy rights of Tappi participants, Our clients’ customers and visitors to Our website (hereinafter “You” or “Your”) as well as abiding by all applicable privacy laws and regulations. Tappi operates internationally and has offices in the United States, Kenya and Nigeria. As Tappi has global operations, data is stored, processed and transferred between international and local data center providers.

 

a) Personal Data

In delivering survey services to Our clients, Tappi may collect Your personal data (hereinafter “Personal Data”) either from You, a Tappi client or a third party. Examples of the types of Personal Data Tappi collects include: phone number; email; gender; age; address or place of residence; spending habits; income level; education level; current employment; purchases; and ownership (e.g., smart phone or home).

The exact nature of the Personal Data Tappi collects will vary from client-to-client and from survey-to-survey.

However a Tappi client has to ensure that they have to adhere to the following:

  • The client has a clear and comprehensive privacy policy stating that they may share data with their 3rd party contracted partners in order to improve customer experience under the legitimate interest basis (Section 30b, part vii of the Data Protection Act(2019).
  • That the client has taken due diligence to ensure that the 3rd party they share data with is registered and regulated by the Office of the Data Commissioner (i.e. they are registered Data Processor and/or Data Controllers).
  • The client has signed a Data Protection Agreement with Tappi (the Data Processor).

 

b) Credit Card and Billing Data

Tappi will not collect, process or store Your credit card or billing data without Your prior authorization. Tappi uses third party software platforms to process online payments. Each such platform has its own privacy policy, which You will be asked to agree to prior to Your Personal Data being collected. Please make sure that You understand the online platform’s privacy policy prior to entering any information. If you have any questions, please contact the Tappi Privacy Officer as set forth in the Privacy Officer Contact section of this Privacy Policy.

 

c) Tappi Website Visitor Data

When You visit a Tappi Website, We use a third party service, Google Analytics, to collect standard internet log data and details of Your behavior patterns while on the site. Tappi does this to find out information such as the number of visitors to Our website and the pages of the site visited. The data is only processed in such a way that You remain anonymous. We do not make, and do not allow Google to make, any attempt to find out Your identity or the pages of the Website You visited.

 

d) Cookies

Tappi uses cookies to store visitor information that enhances website user experience, including user preference, look and feel, performance and app related data. All user related data is encrypted. No passwords or sensitive data is stored in cookies.

 

III. CHILDREN AND MINORS

If You are under the age of consent in the jurisdiction in which You reside, You will need the consent from a parent or guardian before you can create an account or provide any Personal Data to Tappi. For residents of the European Union: If You are under the age of 16 and reside in the European Union You will need the consent from a parent or guardian before you can create an account or provide any Personal Data to Tappi.

 

IV. WHY PERSONAL DATA IS COLLECTED

Tappi collects Your Personal Data to deliver contractual services to Our clients. Examples of the services We provide include:

  • targeted surveys (e.g., surveys that target certain demographics such as age or income level)
  • surveys to collect certain demographics (e.g., age or income) for internal audience segmentation and analysis for improving targeted services
  • surveys to improve the products and services offered to You as a consumer
  • surveys to improve the products and services offered by our clients
     

The nature of the survey services that We provide Our clients varies from client-to-client and from survey-to-survey. You will be advised of the nature of the survey and the use to which survey response data will be put prior to Your survey being launched.

 

V. HOW PERSONAL DATA IS COLLECTED

Personal Data is collected via questions and answers using short message service (“SMS” aka “text messaging”) or other communication platforms.

 

VI. DATA USE

a) Third Parties

Personal Data is not shared with any third party other than to deliver the surveys and related response data and analysis that We have contracted with Our clients to perform and in which You have agreed to participate. Tappi does not sell any Personal Data that it collects. 

 

b) Compliance with laws and public safety

Tappi may provide your Personal Data to comply with requests by law enforcement or other governmental authorities, or to protect the safety of the public.

 

VII. WHERE YOUR PERSONAL DATA IS STORED

Tappi utilizes Amazon Web Services (hereinafter “AWS”) Cloud Computing Services for storage of Personal Data. Personal Data is stored in AWS facilities located in the United States, the European Union and Africa. Data is transferred securely using the services of local messaging providers and other secure communication platforms. Personal Data is stored in Tappi’s databases using Our proprietary software and processes

 

VIII. ADDITIONAL USER RIGHTS PROVIDED UNDER EUROPEAN UNION DATA PRIVACY LAW  

For users residing in the European Union, Tappi adheres to the European Union’s applicable data privacy and protection laws for Personal Data, including the General Data Protection Regulation (hereinafter the “GDPR”), in connection with any Personal Data collected in connection with the delivery of Our services as set forth below. 

 

a) Personal data retention

Your Personal Data will be retained for or as long as required:

to fulfill the purposes for which the Personal Data was collected;

in order to establish or defend legal rights or obligations or to satisfy any reporting or accounting obligations; or

as required by other applicable laws or regulatory requirements.

Certain Personal Data may be retained in perpetuity by Tappi. 

 

b) Right to access, copy and correct Personal Data

You have the right to see all of Your Personal Data that Tappi maintains and to have a copy of such data. You also have the right to make corrections to Your Personal Data as maintained by Tappi. Any request to access, copy or correct Personal Data should be made to the Tappi Data Protection Officer as set forth in Section XII of this Privacy Policy. 

 

c) Right to delete Personal Data

Unless prohibited by law, you may request to have Your Personal Data deleted from Tappi’s systems and files. By requesting such deletion You are agreeing that We will no longer maintain any archival data on Your behalf and as such We will not be able to verify or reconstruct missing or lost data. In addition, We may not be able to provide or complete the survey(s) in which You have agreed to participate. Any request to delete Personal Data should be made to the Tappi Privacy Officer as set forth in the Privacy Officer Contact section of this Privacy Policy.

 

d) Right to opt-out

You have the right to opt-out of the collection or use of Personal Data at any time. In doing so, however, We may not be able to provide or complete the survey(s) in which You have agreed to participate. Any request to opt-out of the collection of Personal Data should be made to the Tappi Privacy Officer as set forth in the Privacy Officer Contact section of this Privacy Policy.

 

e) Right to restrict the use of Personal Data

You have the right to restrict the use of Your Personal Data at any time. In doing so, however, We may not be able to provide or complete the survey(s) in which You have agreed to participate. Any request to restrict the use of Personal Data should be made to the Tappi Privacy Officer as set forth in the Privacy Officer Contact section of this Privacy Policy.

 

f) Right to object to the further processing of Personal Data

You have the right to object to the further processing of Your Personal Data at any time. In doing so, however, We may not be able to provide or complete the survey(s) in which You have agreed to participate. Any request to restrict the further processing of Personal Data should be made to the Tappi Privacy Officer as set forth in the Privacy Officer Contact section of this Privacy Policy.

 

g) Sharing of data with third parties

In the delivery of services, Tappi may share your Personal Data with third parties. Where such entities act as Data Processors, We will ensure that there is an appropriate agreement in place. Where such entities act as Data Controllers, they will be under an obligation to process your Personal Data in accordance with applicable privacy laws such as the GDPR.

 

h) Notice of security breach

If a security breach causes unauthorized intrusion, which results in unauthorized access to your Personal Data We will notify You as soon as possible and advise You of all corrective actions, taken in response.

 

ADDITIONAL USER RIGHTS UNDER THE KENYA DATA PROTECTION ACT, THE NIGERIA DATA PROTECTION REGULATION AND OTHER LOCAL LAWS

 

For users residing in Kenya, Nigeria and the rest of the world, Tappi adheres to their respective and applicable data privacy and protection laws for Personal Data, 

 

X. SECURITY

Tappi uses reasonable precautions to protect Personal Data from unauthorized use, access, disclosure, alteration or destruction. These precautions include appropriate physical, electronic and managerial procedures. Tappi is dedicated to providing a high level of privacy protection for all of the Personal Data that it collects. Tappi has security measures in place to prevent data loss and alteration of Personal Data during the transmission from You to Our servers. Unfortunately, data transmission via SMS is not completely secure, the security of data exchanged via SMS is not guaranteed and Tappi does not warrant, guarantee or make any representations regarding the security of any Personal Data transmitted.

 

We do appreciate that all security mechanisms can be breached and we have therefore put in place systems to detect, contain and restore integrity of your data expeditiously if and when this happens.

 

XI. CONSENT

By submitting Your Personal Data to Tappi You consent to the use of Your Personal Data by Tappi as set forth in this Privacy Policy.

 

XII. UPDATES

 Tappi reserves the right to modify this Privacy Policy any time without notice.

 

XIII. DATA PROTECTION OFFICER CONTACT 

 Anyone with questions about Tappi Privacy Policy should contact the Tappi Data Protection Officer by email at: [email protected]

 

The Tappi Data Protection Officer can also be contacted by mail at:

 

Tappi KENYA.

Attention: The Data Protection Officer

Mitsumi Business Park

4th Floor

Muthithi Rd, Westlands

Nairobi, Kenya

Telephone: +254 115574380

 

Tappi NIGERIA

Attention: The Data Protection Officer

Plot 8 Providence Street, Venia Business Suites, Lekki Phase I , Lagos

+2349136000761

 

Residents of the European Union may also contact a Supervisory Authority in the member state of their usual residence or place of work or in the member state in which an alleged breach occurred.

Residents of jurisdictions other than the European Union should consult their local law for guidance on reporting a privacy concern.


 

Tappi Privacy Policy Last Update:  25 APRIL 2024