Privacy policy
Introduction
This Privacy Policy (Policy) sets out how Africa Partners Collective (Company) collects, uses, and shares personal data in the course of its business, including providing prospect research services to organisations with a charitable purpose.
Data Controller or Processor
The Company predominantly acts as a Data Processor of all personal data, while our clients are the Data Controller. The Company remains responsible for ensuring that personal data is processed in accordance with the General Data Protection Regulation (GDPR). This includes storing data in the United Kingdom.
Scope
This Policy applies to all personal data collected by the Company, whether in electronic or paper form. This includes data collected about individuals who are:
- Potential donors to organisations with a charitable purpose.
- Current donors to organisations with a charitable purpose.
- Other individuals who interact with the Company in the course of its business
Data Collected
The Company may collect a variety of personal data about individuals in order to deliver our services. This includes gathering information from publicly accessible sources such as public registers, trade and industry references, professional directories, or print and broadcast media and company websites. The company may also gather information from information providers, or “data brokers,” such as demographic information, commercial or transactions information, and professional or employment-related information.
This information may include:
- Name
- Age
- Employment history
- Investment history, including previous charitable contributions
- Family and professional or political affiliations
- Personal wealth ownership details and estimates
- Reputational background information or litigation involvement
Purposes of and Legal Basis for Processing
The Company processes personal data for the following purposes and under the following legal basis:
- To provide prospect research services to organisations with a charitable purpose (contractual necessity, legitimate interest)
- To manage the Company's relationships with clients (consent)
- To comply with legal and regulatory requirements
Data Sharing
The Company may share personal data with third parties, including:
- Clients
- Third-party service providers
- Government agencies
The Company will only share personal data with third parties who have agreed to process it in accordance with the GDPR.
Data Security
The Company takes appropriate technical and organizational measures to protect personal data from unauthorized access, use, disclosure, alteration, or destruction. These measures include:
- Access controls
- Data encryption
- Data backup
Data Retention
The Company will only retain personal data for as long as it is necessary for the purposes for which it was collected. This will vary depending on the purpose, but will typically be no longer than 10 years.
Individual Rights
Individuals have a number of rights under the GDPR, including the right to:
- Access their personal data
- Request that their personal data be corrected or deleted
- Object to the processing of their personal data
- Restrict the processing of their personal data
- Port their personal data
Individuals can exercise their rights by contacting the Company at josie@thesocialgoodnetwork.org
Use of cookies
This website does not use cookies to collect data about individuals.
Changes to this Policy
The Company may update this Policy from time to time. The most up-to-date version of the Policy will be available on the Company's website.
Contact
If you have any questions about this Policy, please contact the Company at josie@thesocialgoodnetwork.org