Privacy Policy
Table of Contents
1. Introduction
At Arkraft Technica Ltd, we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our TARK platform and Qwerty Chat services ("Services").
Arkraft Technica Limited ("we," "our," or "us") is a company registered in [COUNTRY] with registration number [REGISTRATION_NUMBER]. We are committed to protecting your privacy and ensuring the security of your personal information in accordance with applicable data protection laws.
2. Information We Collect
2.1 Personal Data
We collect the following types of personal information:
- Contact Information: Name, email address, phone number, physical address
- Account Information: Username, password (encrypted), authentication credentials
- Organization Details: Company name, job title, organization size, industry
- Communication Preferences: Marketing preferences, notification settings
- Payment Information: Billing address, payment method details (processed securely)
2.2 Usage Data
We automatically collect information about how you use our Services:
- Service Usage: Login frequency, message volume, feature usage patterns
- Technical Data: IP address, device type, browser information, operating system
- Performance Data: Response times, error reports, connectivity status
- Network Data: Connection quality, offline usage statistics
2.3 Communication Content
Important: For TARK Enterprise (self-hosted), all communication content remains on your infrastructure and is never accessible to us. For Qwerty Chat, all content is end-to-end encrypted and we cannot access it.
3. How We Use Information
We use your information for the following purposes:
- Service Provision: To provide, maintain, and improve our Services
- Account Management: To create and manage your user account
- Customer Support: To provide technical assistance and respond to inquiries
- Payment Processing: To process subscriptions and payments
- Communication: To send service updates, security alerts, and marketing communications
- Analytics: To analyze usage patterns and improve our Services
- Legal Compliance: To comply with legal obligations and protect our rights
- Security: To detect and prevent fraud, abuse, and security threats
4. Data Protection & Security
We implement comprehensive security measures:
- Encryption: End-to-end encryption for all communications and data at rest
- Access Controls: Strict access controls and authentication mechanisms
- Regular Audits: Security audits and penetration testing by [AUDIT_FREQUENCY]
- Compliance: Compliance with ISO 27001 and other security standards
- Data Minimization: We collect only data necessary for our Services
- Secure Storage: Data stored in secure, redundant facilities
For TARK Enterprise deployments, all security measures are implemented on your infrastructure under your control.
5. Data Sharing
We may share your information in the following circumstances:
- Service Providers: With trusted third-party service providers who assist in operating our Services
- Legal Requirements: When required by law, court order, or government regulation
- Business Transfers: In connection with mergers, acquisitions, or sales of business assets
- Safety: To protect our rights, property, or safety, or that of our users or the public
We never sell your personal information to third parties.
6. Your Rights
Under the Kenya Data Protection Act 2019 and applicable GDPR principles, you have the following rights:
- Right to Access: Request access to your personal information
- Right to Rectification: Request correction of inaccurate information
- Right to Erasure: Request deletion of your personal information
- Right to Portability: Request transfer of your data to another service
- Right to Object: Object to processing of your personal information
- Right to Restrict: Request restriction of processing
To exercise these rights, please contact our Data Protection Officer at [DPO_EMAIL].
8. Third-Party Services
Our Services may integrate with the following third-party services:
- Payment Processors: [PAYMENT_PROVIDERS] for processing payments
- Analytics Services: [ANALYTICS_SERVICES] for usage analytics
- Content Delivery: [CDN_PROVIDERS] for content delivery
- Email Services: [EMAIL_PROVIDERS] for communications
These third parties have their own privacy policies and we are not responsible for their practices.
9. Data Retention
We retain your personal information for the following periods:
- Account Information: For the duration of your account plus [RETENTION_PERIOD] years
- Usage Data: For [USAGE_RETENTION_PERIOD] months for analytics purposes
- Support Communications: For [SUPPORT_RETENTION_PERIOD] years for quality assurance
- Legal Requirements: As required by applicable laws and regulations
Data may be retained longer if required for legal, regulatory, or security purposes.
10. Children's Privacy
Our Services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children under 18. If we become aware that we have collected such information, we will take immediate steps to delete it.
11. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of any material changes by:
- Posting the updated policy on our website
- Sending email notification to registered users
- Updating the "Last updated" date at the top of this policy
Your continued use of our Services after any changes constitutes acceptance of the updated policy.
12. Contact Information
If you have questions about this Privacy Policy or our data practices, please contact:
John Mwangi
Need to escalate a privacy concern?
For complaints related to data protection, you may also contact the Office of the Data Protection
Commissioner in Kenya:
complaints@odpc.go.ke |
www.odpc.go.ke |
+254 20 440 0000
See also our Terms of Service for more information about our services and user agreements.