Data Protection Policy for Perfometer's Digital Products
This Data Protection Policy is tailored for Perfometer's Digital Products, including usage on our company websites (Cowpro, DFB, and Cowdish). This policy is designed to comply with general data protection principles, including GDPR and the Data Protection Act 2019.
Effective Date: [01/01/2022]
Last Updated: [28/01/2025]
Perfometer is committed to protecting the privacy and security of personal data collected through its digital products, including but not limited to websites (Cowpro, DFB, and Cowdish), applications, and associated services. This Data Protection Policy outlines how we collect, use, store, and protect personal data in compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR).
This policy applies to all personal data processed by Perfometer through its digital products, including:
• Company Websites: Cowpro, DFB, and Cowdish
• Mobile and web applications
• APIs and integrations
• Any other digital platforms operated by Perfometer
• Personal Data: Any information relating to an identified or identifiable natural person.
• Processing: Any operation performed on personal data, such as collection, storage, use, or disclosure.
• Data Subject: The individual to whom the personal data relates.
• Controller: The entity that determines the purposes and means of processing personal data (e.g., Perfometer).
• Processor: The entity that processes personal data on behalf of the controller.
Perfometer adheres to the following principles when processing personal data:
1. Lawfulness, Fairness, and Transparency: Personal data is processed lawfully, fairly, and in a transparent manner.
2. Purpose Limitation: Data is collected for specified, explicit, and legitimate purposes and not further processed in a manner incompatible with those purposes.
3. Data Minimization: Only the minimum amount of personal data necessary for the intended purpose is collected.
4. Accuracy: Personal data is kept accurate and up to date.
5. Storage Limitation: Personal data is retained only for as long as necessary for the intended purpose.
6. Integrity and Confidentiality: Personal data is processed securely to protect against unauthorized access, loss, or damage.
Perfometer may collect the following types of personal data:
• Identity Data: Name, username, or similar identifier.
• Contact Data: Email address, phone number, or mailing address.
• Technical Data: IP address, browser type, device information, and usage data.
• Usage Data: Information about how users interact with our digital products.
• Marketing Data: Preferences for receiving marketing communications.
Perfometer processes personal data based on one or more of the following legal grounds:
• Consent: The data subject has given explicit consent.
• Contractual Necessity: Processing is necessary for the performance of a contract.
• Legal Obligation: Processing is required to comply with applicable laws.
• Legitimate Interests: Processing is necessary for Perfometer’s legitimate business interests, provided they do not override the rights of the data subject.
Perfometer uses personal data for the following purposes:
• To provide and improve our digital products and services.
• To communicate with users, including responding to inquiries and providing support.
• To send marketing communications (where consent has been given).
• To analyze usage patterns and improve user experience.
• To comply with legal and regulatory obligations.
Perfometer may share personal data with:
• Third-Party Service Providers: Such as hosting providers, analytics tools, and marketing platforms, under strict contractual obligations.
• Legal Authorities: When required by law or to protect our rights and interests.
• Business Partners: With user consent, for joint marketing or service offerings.
Personal data may be transferred outside the European Economic Area (EEA) only if adequate safeguards are in place, such as Standard Contractual Clauses (SCCs).
Perfometer implements appropriate technical and organizational measures to protect personal data, including:
• Encryption of data in transit and at rest.
• Regular security assessments and audits.
• Access controls and authentication mechanisms.
• Employee training on data protection best practices.
Personal data is retained only for as long as necessary to fulfill the purposes for which it was collected, unless a longer retention period is required by law. Retention periods are determined based on the type of data and its purpose.
Under applicable data protection laws, data subjects have the following rights:
• Right to Access: Request a copy of their personal data.
• Right to Rectification: Request correction of inaccurate or incomplete data.
• Right to Erasure: Request deletion of their personal data.
• Right to Restrict Processing: Request limitation of processing under certain conditions.
• Right to Data Portability: Request transfer of their data to another controller.
• Right to Object: Object to processing based on legitimate interests or for direct marketing.
• Right to Withdraw Consent: Withdraw consent at any time, where applicable.
To exercise these rights, data subjects may contact Perfometer using the details provided in Section 14.
Perfometer’s digital products may use cookies and similar technologies to enhance user experience and analyze usage patterns. Users can manage their cookie preferences through their browser settings.
Perfometer reserves the right to update this Data Protection Policy periodically. Any changes will be communicated through our websites or other appropriate channels.
For questions or concerns regarding this policy or to exercise your data protection rights, please contact:
Perfometer Head of Business
Email: [Md@perfometer.co.ke]
Phone: [+254721428770]
Address: [4th Floor Ntshart Plaza Kilimani Rd]
If you believe that your data protection rights have been violated, you have the right to lodge a complaint with the relevant supervisory authority.
