Community

Privacy Policy

Africa Climate Insights (ACI) attaches great importance to respecting the right to privacy of the visitors of its website. You can contact us at:

Africa Climate Insights
[email protected]

1. Who is concerned by this privacy policy

Every visitor of our website, as well as people who register to our community of practice, contact us, sign-up for our newsletter and/or attend webinars organised by ACI.

2. What information do we handle about you and why?

We handle the hereunder mentioned personal data that we collect directly from you or via cookies (see our cookie policy).

The data processings which we conduct are there because either you have consented to it, or for our legitimate interests. You can find those reasons and legal bases hereunder.

2.1. When you make use of our website

We use a third-party service, such as Google Analytics, to collect standard internet log information and details of visitor behaviour patterns. We do this to find out things such as the number of visitors to the various parts of our website. This information is only processed in a way which does not identify anyone. We do not make, and do not allow Google Analytics to make, any attempt to find out the identities of those visiting our website. If we do want to collect personally identifiable information through our website, we will be up front about this. We will make it clear when we collect personal information and will explain what we intend to do with it.

This data processing is based on your consent (section 30(1)(a) of the Kenyan Data Protection Act ; article 6.1.a of the GDPR).

You have the right to withdraw your consent at any time (see Your Rights hereunder).

You can read more about how we use cookies on our cookie policy.

2.2. When you register for our newsletters 

2.2.1. Based on your consent (section 30(1)(a) of the Kenyan Data Protection Act; article 6.1.a of the GDPR)

We collect and process your identification data (full name and email address) for registration to and delivery of our newsletters. Note that we use a service provider – MailChimp – to deliver our newsletters. 

2.2.2. Based on our legitimate interests (section 30(1)(b)vii) of the Kenyan Data Protection Act; article 6.1.f of the GDPR)

When you register for our newsletters, we gather statistics around email opening and clicks using industry standard technologies including clear gifs. This information is only processed in a way which does not identify anyone. We do not make any attempt to find out the identities of those visiting our website. Those data are kept as long as you do not oppose it.

2.3. When you register to our community of practice (based on your consent (section 30(1)(a) of the Kenyan Data Protection Act; article 6.1.a of the GDPR))

When you register to our community of practice we collect and process your identification data (full name and  email address), professional data (occupation and organisation) and, on a voluntary basis, your social media accounts. 

Those data are collected for the organisation of the community of practice.

Should you not provide us with your social media accounts details , your participation in the community of practice  will be not compromised. 

The data we collect are kept as long as you do not oppose it so as to possibly share materials with you  that may be relevant to you for research or career development purposes.

2.4. When you email or otherwise contact us

We process your contact details (full name and email address), when required, in order to provide you with the requested support. This data processing is based on your consent (section 30(1)(a) of the Kenyan Data Protection Act; article 6.1.a of the GDPR). 

Those data are kept as long as you do not oppose it.

2.5. We can also collect data that you otherwise made public in order to contact you when we think it is relevant for your and our business (journalists, service providers, etc.)

This data processing is based on our legitimate interests and aims at creating collaboration in our fields of activities (section 30(1)(b)vii) of the Kenyan Data Protection Act; article 6.1.f of the GDPR).

We retain those data as long as they are relevant.

2.6. When you contact us to make use of your data subject rights

We process your contact details and the proof of your identity you send us in order to address your request. We can also, depending on your request, process other personal data we have collected in order to address your request.

This data processing is for compliance with legal obligations to which we are subject (section 30(1)(b)ii) of the Kenyan Data Protection Act; article 6.1.c of the GDPR).

We will store those data for the duration of one year. This duration aims at having history of the case in case the data subject comes back with further requests. Further, all our emails are achieved for audit purposes for the duration of our audit obligations.

2.7. Reach-out

To deliver our public interest campaign messages, we use advertisement tools provided by social media platforms. These tools offer target-based advertising options including interests, geographical position, age and gender that may be of relevance to reach out to likely interested audiences.  When making use of those target-based advertising options, we do not collect the data used by these ads tools. Please note that those tools are not operated by us, therefore, we strongly advise you to review the privacy policies of those websites, too, as we have no control over the content, privacy policies or practices of any third-party sites or services.

This data processing is based on our legitimate interests (section 30(1)(b)vii) of the Kenyan Data Protection Act; article 6.1.f of the GDPR).

2.8. Links to other sites

Our website may contain links to other websites. If you click on a third-party link, you will be directed to that site. These external sites are not operated by us, therefore, we strongly advise you to review the privacy policies of those websites, too, as we have no control over, and assume no responsibility for, the content, privacy policies or practices of any third-party sites or services.

3. How do we protect your personal data?

Your personal data is handled in full confidentiality. We make all necessary effort to take technical and organisational measures that might be required so as to ensure security of your personal data.

4. Use of service providers and transfer to third parties

We do have recourse to service providers to deliver our newsletters.

Those service providers, otherwise referred to as data processors, are third parties who provide elements of support to us. We have contracts in place with our data processors. They cannot do anything with your personal information unless we have instructed them to do so. They will not share your personal information with any organisation apart from us. They will hold it securely and retain it for the period we instruct. We do not transfer any of your personal data collected, as mentioned above, to any third party for commercial purposes.

5. Your rights

Under the Kenyan Data Protection Act, 2019, you have rights as an individual which you can exercise in relation to the information we hold about you: 

  • Right to request erasure of your data ; 
  • Right to obtain from us restriction of processing where there is contestation about the data processing for a period enabling to solve the issue.
  • Right to request access to your data and rectification of your personal data; 
  • Right to data portability.

You have a right to object to the processing of all or parts of your personal data (section 26 of the Kenyan Data Protection Act, 2019). To exercise your rights, please send us an email to [email protected] together with a proof of your identity.

For EU residents, under the General Data Protection Regulation (Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC) (“GDPR”), you have rights as an individual which you can exercise in relation to the information we hold about you:

  • Right to request access to your data and rectification of your personal data.
  • Right to request erasure of your data (right to be forgotten) in the cases described in article 17 of the GDPR.
  • Right to obtain from us restriction of processing where there is contestation about the data processing for a period enabling to solve the issue.
  • Right to data portability.
  • Where the processing of your personal data is based on your consent, you have the right to withdraw your consent at any time. Withdrawing your consent means that we will not make use of your data any longer. However, use made of your data in the past remains valid.

You have the right to object, on grounds relating to your particular situation, at any time to the processing of your personal data which is based on our legitimate interests (article 6.1.f of the GDPR). To exercise your rights, please send us an email to [email protected] together with a proof of your identity. Please note that you always have the right to lodge a complaint with the Data Protection Authority of the European country of your choice.