At the Zimbabwe German Society/ Goethe Zentrum Harare (ZGS/GZH), we are committed to protecting the privacy and personal information of our website users, particularly in relation to the collection, storage, and use of personal data. This Data Protection Policy outlines our practices and procedures regarding data protection and privacy. It is designed to ensure compliance with applicable data protection laws and regulations, including the General Data Protection Regulation (GDPR).
1. Data Collection and Use
1.1. Personal Information: We collect personal information, such as names, contact details, and relevant information, when users voluntarily provide it through our online platform. This information is collected to provide educational services, assess exam registrations, process membership applications, and communicate effectively with users.
1.2. Consent: By using our website and providing personal information, users consent to the collection, processing, and storage of their data as described in this Data Protection Policy.
1.3. Purpose Limitation: We will only collect and use personal information for the purposes specified at the time of collection or as otherwise permitted by law.
1.4. Data Minimization: We will only collect personal information that is relevant, adequate, and necessary for the purposes for which it is collected.
2. Data Security
2.1. Confidentiality: We implement appropriate technical and organisational measures to protect personal data against unauthorised access, loss, disclosure, alteration, or destruction.
2.2. Access Control: Access to personal information is restricted to authorised personnel who need access to perform their designated duties. All employees and authorised third parties must respect the confidentiality of personal data.
2.3. Data Retention: Personal data will be retained for as long as necessary to fulfil the purposes for which it was collected or as required by applicable laws and regulations.
3. Data Sharing and Disclosure
3.1. Third-Party Processors: We may engage trusted third-party processors to assist in providing our services. These processors will only process personal data on our behalf and in accordance with our instructions, and they will be subject to contractual obligations to implement appropriate data protection measures.
3.2. Legal Requirements: We may disclose personal data if required to do so by law or if such disclosure is reasonably necessary to protect our rights, comply with legal processes, or respond to valid requests from public authorities.
4. User Rights
4.1. Access, Rectification, and Erasure: Users have the right to request access, rectification, or erasure of their personal data held by us. We will respond to such requests in accordance with applicable data protection laws.
4.2. Marketing Communications: Users can opt out of receiving marketing communications from us at any time by following the unsubscribe instructions provided in the communication.
5. Cookies and Tracking Technologies:
5.1. Cookies: We may use cookies and similar tracking technologies to enhance user experience, analyse website usage, and improve our services. Users can manage their cookie preferences through their browser settings.
6. Changes to the Policy:
We reserve the right to modify or update this Data Protection Policy from time to time. Any changes will be effective upon posting the updated policy on our website. Users are encouraged to review this policy periodically.
7. Contact Information:
If you have any questions, concerns, or requests related to this Data Protection Policy or the handling of personal data, please contact us using the information provided on our website.