Select Page

Data Deletion Policy

Policy Statement:

GirlTech Africa is committed to protecting the privacy and security of personal and sensitive data collected in the course of our operations. This Data Deletion Policy outlines the procedures for the secure and timely deletion of data when it is no longer necessary or when requested by data subjects.

Scope:

This policy applies to all personal and sensitive data held or processed by GirlTech Africa, including data related to members, volunteers, participants, partners, employees, and website visitors.

Data Retention Principles:

  1. Purpose Limitation: We only collect and retain data for specific, legitimate purposes, as outlined in our Privacy Policy.
  2. Data Minimization: We collect only the data necessary for the purposes for which it is processed.
  3. Accuracy: We maintain accurate and up-to-date records of personal data to the best of our ability.
  4. Data Security: We implement appropriate security measures to protect data from unauthorized access, disclosure, alteration, or destruction.

Data Deletion Procedures:

  1. Data Lifecycle Assessment: GirlTech Africa regularly reviews the data it holds to assess whether it is still required for the purpose for which it was collected. If data is no longer necessary, it will be marked for deletion.
  2. Data Subject Requests: We respect the rights of data subjects, including the right to erasure (the right to be forgotten). Upon receiving a valid data deletion request, we will promptly delete the requested data.
  3. Data Deletion Process: When data is marked for deletion, it will be securely and permanently removed from all systems and storage devices. We use secure deletion methods to ensure data cannot be recovered.
  4. Backup Data: Backup copies of data may also be subject to deletion in accordance with this policy. We maintain a process to identify and securely delete data from backups.
  5. Third-Party Data Processors: When GirlTech Africa uses third-party data processors, we ensure they have appropriate data deletion mechanisms in place and require them to delete data in compliance with this policy.

Retention Periods:

Data retention periods will be determined based on legal requirements, operational needs, and the purpose for which the data was collected. When data reaches the end of its retention period, it will be deleted in accordance with this policy.

Documentation:

Records of data deletion activities, including the date, reason, and person responsible, will be maintained as part of our data protection documentation.

Training and Awareness:

All GirlTech Africa staff and volunteers will receive training and guidance on data deletion procedures and their responsibilities under this policy.

Compliance and Monitoring:

GirlTech Africa will regularly review and audit its data deletion processes to ensure compliance with this policy and relevant data protection regulations.

Policy Review:

This Data Deletion Policy will be reviewed periodically and updated as needed to reflect changes in data protection regulations or organizational practices.

Contact Information:

If you have any questions or concerns regarding this Data Deletion Policy or the handling of personal data, please contact us