Zambia Privacy Centre

General Privacy Notice

TransUnion Zambia

May, 2024

Version 1.0

 

Introduction

This privacy notice provides a high-level overview of how we use and share personal data across TransUnion. You can find more detailed information at the TransUnion Privacy Center or in other privacy information you may have received.

In Brief

TransUnion strives to protect privacy as we collect, use, process, disclose, transfer and retain personal data.

If your personal data is used unlawfully or infringes on your privacy, you have the right to object.

This notice covers the following topics:

  1. Who we are and how to contact us
  2. How we use personal data
  3. Where we get personal data
  4. How long we keep personal data
  5. Our legal basis for handling personal data
  6. Who we share personal data with
  7. Where we store and send personal data
  8. Your rights concerning your personal data
  9. Where to lodge a complaint

Information for Good®

We're in an era of rapid digital transformation where consumers demand more access to seamless, personalised products and services online. But the currency of personal data that fuels this platform economic boom poses threats to individuals and endangers corporate security.

Now more than ever — and likely more so in the future — consumers and corporates need new levels of trust and transparency.

As a global information and insights company, TransUnion seeks to make trust possible. We do this by curating an accurate and comprehensive picture of each consumer so they're safely and reliably represented in the marketplace. This enables businesses and consumers to transact with confidence and achieve great things. We call this Information for Good.

We have our registered offices at 5th Floor – Sun Share Tower Katima Mulilo Road, Lusaka, Zambia .  Although we're part of a larger group, this notice covers only the activities of TransUnion companies within the Republic of Zambia.

 

Contact details
Contact us about personal data issues, including the contents of this notice via:

  • Telephone:   +260 211 224263/570211 220 530/36/420500 and 0955985107/5307

How we use personal data

TransUnion limits the use and disclosure of personal data to the terms of the following legislation:

  • The Credit Reporting Act 2018;
  • Data Proteciton Act, 2021 relating to the protection of personal data and privacy; and
  • any other applicable laws.

Products and services

Many of our products and services rely on personal data. For example:

Credit reporting: TransUnion compiles consumer credit information in credit reports from applications to (for example) credit providers or services providers for credit or services.

Credit services:  We may provide your information to organisations you deal with directly, such as credit risk assessors.

Example: credit risk assessment

If you apply for credit from one of our clients, they send us your data so we can find you in our databases and reply with information about your credit history. They use that information to assess your creditworthiness.

Fraud detection services: We may provide personal information to organisations other than those you deal with directly.

Example: fraud alerts

If we receive numerous identity verification checks against an individual in a short space of time, this could indicate someone is attempting identity theft or another form of fraud. In this case, we provide real-time fraud alerts to clients subscribed to that service.

If you have provided your details to an organisation to confirm your identity, we may retain those details and link them to other details we hold about you. Then, if a fraudster tries to use your details to apply for credit with a different organisation, we can raise a potential fraud alert.

Development and testing

We sometimes use personal information to improve, develop, monitor, maintain and test our products, systems and security measures. Where possible, we create pseudonyms or make the data anonymous beforehand.

If you consent, TransUnion will at times access, use, process and analyse your personal data, your consumer credit information, and marketing data to provide personalised offers from TransUnion and our trusted partners.

Digital marketing: To provide relevant products and services to consumers, we may enable business partners to use our data and technology to create, deploy and measure targeted digital advertising programs.

Advertising: We may use domestic or overseas third-party advertising companies to serve ads on TransUnion Site or on other sites which we use for advertising. We may also use third-party analytical tools to personalise advertisements and enhance the visitor experience.

Market research: Participation in market research activities is optional. When you opt-in, we use your information to improve the experience of our products


Business products: We may use personal data to promote and market relevant products, services and special offers from us and our affiliates.

Customer service: We may use personal data to identify customers, process transactions and provide quality service.

Recruitment: We use personal data when we receive an employment application.

Business operations

We may use personal data for our internal operations, such as:

Names, contact details, biometric and other information from consumers who visit our offices and contact us to deal with their enquiries. See our Customer Service Privacy Notice for more.

Employee information (including employment and educational history, background checks, biometric and performance appraisals) to manage our relationship.

CCTV cameras in public areas of our business premises for the safety of staff and visitors, and the security of our information and assets.

Legal and regulatory purposes, such as responding to complaints or enquiries about how we have used personal data.

In addition, we may aggregate anonymised data to provide performance analytics to business partners.

For more details on the kinds of data used for each purpose described, visit the TransUnion Privacy Center

For more on our use of cookies, see our Cookie Policy.

The kinds of personal information we use and where we get it

Information in your credit report includes:

  • Identifying information, such as first name, surname, ID number, physical and postal address, contact numbers, marital status, spouse details, and current employer and occupation
  • An account history or payment profile is a record of all your accounts with credit or service providers and a history of how you pay these accounts
  • Enquiries include a list of credit or service providers allowed by you or permitted in terms of the Consumer Credit Act to receive your credit report
  • Public records include publicly available information as permitted by law, such as judgments, administration orders, sequestrations and rehabilitation
  • Default data is a record of any failure to pay money owed
  • Other includes any information permitted under the Credit Reporting Act, 2018.

Information not included in your credit report:

  • Race, creed, colour, ancestry, ethnicity, religion, sexual orientation or political affiliations
  • Medical history or status
  • Major purchases paid in full with cash or cheques

Sources for information
We may collect your personal information, or obtain information originating from the following sources:

  • Financial Institutions: banks, micro finance institutions
  • Insurance Companies
  • Telecommunication companies
  • Public Service utilities
  • Any trader or any other company providing deferred payment services
  • Other organisations as may be approved by the Financial Services Regulatory Authority.

The information we need
To verify information, credit providers need to include:

  • Your full name and surname
  • Your Zambia  NRC number (where applicable) or your passport number and date of birth. Without this information, they can't lawfully grant credit.

Any further information requested by credit providers must be necessary and relevant to your application. No law forces you to give information, but a credit provider can't consider your credit application if you don't provide the information required.

We get personal data directly from our business partners, suppliers, clients, site visitors, and product and services customers signing up for any of our products or services.

When visitors use any products or functions in a TransUnion Site, we collect general internet data (including internet protocol ("IP") address, metadata, location data, date and time of the visit) and behavioural data, such as searches transactions and purchases.

How long we keep personal data

Simply put, we keep personal data for as long as necessary. More technically, we retain it to fulfil the purpose(s) of its provision, to comply with applicable laws, and for as long as your consent to such purpose(s) remains valid after termination of our relationship.

The Credit Reporting Act, 2018 requires we use credit information only for the provided maximum periods prescribed for credit scoring or credit assessment.

We keep specific data indefinitely to verify the integrity of the information we may need to process in the future. We store this information securely and don't use it for any other purpose.

Our legal basis for handling personal data

Legitimate interests
The Law relating to the protection of personal data and privacy allows personal data usage where necessary for legitimate purposes without undue adverse impact. We base most of our processing activities on the 'legitimate interests' condition. For more details, refer to the relevant privacy notices in the links above.

Interest

Explanation

Promoting responsible lending and helping prevent over-indebtedness.

Helping lenders only sell products that are affordable and suitable to the borrowers' circumstances.

Verifying identity, detecting and preventing crime and fraud

Assisting clients to meet business imperatives, and legal, compliance and regulatory requirements and obligations

Credit bureau functioning

Supporting Consumer Credit Act by promoting transparency and fairness in the access to credit, responsible borrowing, and protecting consumers against reckless credit granting.

 

Consent
In most instances, consumer consent to use personal information comes to TransUnion via our clients and data suppliers.

You need to agree on who can use your personal information and how. To do this, persons who have your information must notify you they have your data and how they plan to use it.

We strive to ensure our clients and data suppliers honour their contractual obligation to get all legally required consents before accessing personal information in our credit reports.

Contracts
If you sign up for one of our online services, we need to use personal data to provide the services as set out in the Terms & Conditions. We also use this basis for processing some of our staff data. Refer to the privacy notice on the relevant website for details.

Compliance
We only access, use and disclose personal data without consent in exceptional circumstances where necessary to:

  • Comply with the law or a legal process served on us
  • Comply with requests for information from police or government authorities
  • Protect and defend our rights or property (including the enforcement of agreements)
  • Protect the public interest
  • Act in urgent circumstances to protect the personal safety of our employees or members of the public

We apply the above in terms of the Crediting Reporting Act, 2018, The Data Protection Act 2021 and other relevant national legislation.

 

Clients

Our clients have privacy notices that provide more information about how they use the data we supply. These clients typically operate in the following sectors:

  • Banks, Microfinance institutions etc.
  • Traders
  • Insurance
  • Retail
  • Telecommunications
  • Collections
  • Employment agencies
  • Financial services
  • Public sector
  • Startup

If our clients appoint an intermediary to act on their behalf, they too will receive the data.

Service providers

Our clients and we might provide information to third parties that help us achieve the purposes described in section 2. For example:

  • Cloud-based services, such as Salesforce, help host, manage and analyse our databases.
  • Cloud-based technologies, such as Microsoft Office 365, support our ordinary business operations.
  • Printing companies to produce and send direct mail or other correspondence.
  • Payment service providers to help with payments made by individuals.
  • Market research companies to help us better understand our customers.
  • A specialist sub-contractor operates our CCTV system.
  • Services Providers that assists us with providing our services to you.
  • Regulators like the Eswatini Data Protection Authority or Financial Services Regulatory Authority.

These service providers can't use your information for their purposes or on behalf of other organisations unless you agree otherwise.

Where we store and send personal data

We sometimes make use of Service Providers that are situated outside of Zambia, e.g. South Africa, Kenya, UK and US.  We access and use your information from our base in Zambia and will not transfer personal data to a country lacking laws that provide an adequate level of information protection, unless we have an agreement with the recipient requiring measures that offer a similar level of protection as The Data Protection Act, 2021 in Zambia and with the required permission from the relevant supervisory authority.

Your rights concerning personal data

We outline your rights regarding the personal data we hold about you below.

Access: You can access all information that we hold about you by contacting us through DPOZambia@transunion.com

Correction/Destruction/Deletion: If the information we hold about you is inaccurate, irrelevant, excessive, out of date, incomplete, misleading or obtained lawfully, you have a right to ask us to correct it or delete it.

Objection to processing: You may object (on reasonable grounds) to processing your personal data unless legislation provides for such processing.

Objection to direct marketing: You may object to us using your personal data for direct marketing, and if you do, we will stop.

Where to lodge a complaint

We strive to deliver the highest levels of customer service. However, if you’re ever unhappy with us, please contact us so we can investigate.

  • Location: 5th Floor – Sun Share Tower Katima Mulilo Road, Lusaka, ZambiaPostal Address:  5th Floor – Sun Share Tower Katima Mulilo Road, Lusaka, Zambia
  • Telephone:  +260 211 224263/57 | 220530
  • Email: DPOZambia@transunion.com

    Business Contact Privacy Notice

    TransUnion Zambia

    May, 2024

    Version 1.0

     

    Introduction

    This privacy notice provides a high-level overview of how we use and share personal data across TransUnion. You can find more detailed information at the TransUnion Privacy Center or in other privacy information you may have received.

    In Brief

    We use personal information to:

    • Manage our relationship with our business contacts and keep in touch with them
    • Promote our products and services to our customers and potential customers

    This notice covers the following topics:

    1. Who we are and how to contact us
    2. How we use personal data
    3. Where we get personal data
    4. How long we keep personal data
    5. Our legal basis for handling personal data
    6. Who we share personal data with
    7. Where we store and send personal data
    8. Your rights concerning your personal data
    9. Where to lodge a complaint

    Information for Good®

    We're in an era of rapid digital transformation where consumers demand more access to seamless, personalised products and services online. But the currency of personal data that fuels this platform economic boom poses threats to individuals and endangers corporate security.

    Now more than ever — and likely more so in the future — consumers and corporates need new levels of trust and transparency.

    As a global information and insights company, TransUnion seeks to make trust possible. We do this by curating an accurate and comprehensive picture of each consumer so they're safely and reliably represented in the marketplace. This enables businesses and consumers to transact with confidence and achieve great things. We call this Information for Good.

    We have our registered offices at 5th Floor – Sun Share Tower Katima Mulilo Road, Lusaka, Zambia .  Although we're part of a larger group, this notice covers only the activities of TransUnion companies within the Republic of Zambia.

     

    Contact details
    Contact us about personal data issues, including the contents of this notice via:

    • Telephone:   +260 211 224263/570211 220 530/36/420500 and 0955985107/5307

    How we use personal data

    Relationship management

    We use personal information to maintain and develop our relationships with clients, suppliers and their representatives.

    Example: relationship management

    • Informing you about product changes or planned maintenance activity
    • Contacting you with billing enquiries
    • Inviting you to events and webinars
    • Corresponding with you about your enquiries
    • Conducting surveys to collect qualitative and quantitative feedback
    • Canvassing you about products or product features you want us to develop

    Marketing

    We use personal information to market our products and services to current and potential clients and their representatives. This includes providing industry insights, commentary and research on data and software, notification of events and webinars, and updates on products and services.

    Example: Marketing

    • Monitoring your interactions to understand the products and services that interest you so we can tailor our marketing
    • Contacting you by email, telephone, SMS or post to tell you about products and services we think will interest you

    Providing services

    Sometimes we use personal information to provide information, services, alerts and other facilities requested. For example, we might use your contact details to grant access to one of our webinars.

    As a registered user of one of our products, we may use your personal information within that product — please refer to the privacy notice available within the product for more details.

    Monitoring and improving our websites

    We use information such as how different people navigate our websites, how long they spend on particular pages and what content they download. This helps us improve the user experience by tailoring our website to match individual interests and preferences.

    Security and systems administration

    We also use this information for security and system administration to generate non-personalised data (such as statistics on the uptake of services and patterns of browsing). In addition, we may share this anonymous data with business contacts, selected third parties, sponsors and advertisers.

    Legal and regulatory purposes

    We may also need to use your personal information for legal and regulatory purposes.

     

    The kinds of personal information we use and where we get it

    We obtain and use information from various sources summarised in the following table:

    Type of information

    Description

    Source

    Name and contact details

    Basic personal information about you and your workplace

    Usually provided by the individual via telephone, email, our websites or in person at an event

     

    Organisation-related details

    Your organisation, department and role

    Login credentials

    Username and password recorded when you sign up to any of our web-based services

    Provided by the user or AI-generated or by us (if we reset a password)

    Contact history

    Our engagements, such as information exchanged, meetings, events or webinars attended, emails opened, links clicked and contacts within TransUnion

    We produce these records

    Device information

    The type of device used to access our websites, its operating system, cookies, browser and IP address

    We produce this information

    Website usage

    Use of our websites, such as pages visited and content downloaded

    We need your personal information to provide our products correctly. You don’t have to provide us with personal information for technical support requests, but this may impede the help we can provide.

    How long we keep personal data

    Simply put, we keep personal data for as long as necessary. More technically, we retain it to fulfil the purpose(s) of its provision, to comply with applicable laws, and for as long as your consent to such purpose(s) remains valid after termination of our relationship.

    The Credit Reporting Act, 2018 require we use credit information only for the provided maximum periods prescribed for credit scoring or credit assessment.

    We keep specific data indefinitely to verify the integrity of the information we may need to process in the future. We store this information securely and don't use it for any other purpose.

    Our legal basis for handling personal data

    Legitimate interests
    The Data Protection Act, 2021 allows personal data usage where necessary for legitimate purposes without undue adverse impact. We base most of our processing activities on the 'legitimate interests' condition. For more details, refer to the relevant privacy notices in the links above.

    Interest

    Explanation

    Strategic customer engagement

     

     

     

    Develop and leverage our understanding of customers and suppliers and how they use our products and services

     

    Strategically targeted marketing

    Promote new and existing products and services to suitable current and potential clients

    Develop new and improve existing products and services

    Help us remain competitive, differentiated and attractive to clients by providing world-class, future-fit solutions

    Monitor and secure our systems and data

    Fulfil our promise by keeping our systems and data secure

     

    Other legal bases

    Sometimes we process personal information on the following grounds:

    Grounds

    Examples

    Consent

    We’ll ask if you agree to us using your data in specified ways, such as when you tick a box showing you wish to receive marketing emails or telephone calls from us

    Contractual

     

    We may need to use your details to perform a contracted product or service

    Legal

    Regulators, government bodies and courts can order us to provide information and we may have to comply

     

    Who we share personal information with

    Clients

    Our clients have privacy notices that provide more information about how they use the data we supply. These clients typically operate in the following sectors:

    • Banks, Microfinance institutions etc.
    • Traders
    • Insurance
    • Retail
    • Telecommunications
    • Collections
    • Employment agencies
    • Financial services
    • Public sector
    • Startup

    If our clients appoint an intermediary to act on their behalf, they too will receive the data.

    Service providers

    Our clients and we might provide information to third parties that help us achieve the purposes described in section 2. For example:

    • Cloud-based services, such as Salesforce, help host, manage and analyse our databases.
    • Cloud-based technologies, such as Microsoft Office 365, support our ordinary business operations.
    • Printing companies to produce and send direct mail or other correspondence.
    • Payment service providers to help with payments made by individuals.
    • Market research companies to help us better understand our customers.
    • Services Providers that assists us with providing our services to you.
    • A specialist sub-contractor operates our CCTV system.
    • Regulators like the Eswatini Data Protection Authority or Financial Services Regulatory Authority.

    These service providers can't use your information for their purposes or on behalf of other organisations unless you agree otherwise.

    Where we store and send personal data

    We sometimes make use of Service Providers that are situated outside of Zambia, e.g. South Africa, Kenya, UK and US.  We access and use your information from our base in Zambia and will not transfer personal data to a country lacking laws that provide an adequate level of information protection, unless we have an agreement with the recipient requiring measures that offer a similar level of protection as thee Data Protection Act, 2021 in Zambia and with the required permission from the relevant supervisory authority.

    Your rights concerning personal data

    We outline your rights regarding the personal data we hold about you below.

    Access: You can access all information that we hold about you by contacting us through DPOZambia@transunion.com

    Correction/Destruction/Deletion: If the information we hold about you is inaccurate, irrelevant, excessive, out of date, incomplete, misleading or obtained lawfully, you have a right to ask us to correct it or delete it.

    Objection to processing: You may object (on reasonable grounds) to processing your personal data unless legislation provides for such processing.

    Objection to direct marketing: You may object to us using your personal data for direct marketing, and if you do, we will stop.

     

    Where to lodge a complaint

    We strive to deliver the highest levels of customer service. However, if you’re ever unhappy with us, please contact us so we can investigate.

    • Location:  5th Floor – Sun Share Tower Katima Mulilo Road, Lusaka, Zambia
    • Postal Address:  P O Box 31199, Lusaka, 10101
    • Telephone:  +260 211 224263/57 | 220530

    Email: DPOZambia@transunion.com

    Customer Service Privacy Notice

    TransUnion Zambia

    May, 2024

    Version 1.0

     

    Introduction

    This privacy notice provides a high-level overview of how we use and share personal data across TransUnion. You can find more detailed information at the TransUnion Privacy Center or in other privacy information you may have received.

    In Brief

    When you contact us with a request, complaint or enquiry, we will use your personal data in order to help us to respond to you.

    Sometimes this will mean sharing personal data with third parties. For example, if you dispute the accuracy of information on your credit report, we may need to contact the organisation who provided us with that information to check whether it is correct.

    This notice covers the following topics:

    1. Who we are and how to contact us
    2. How we use personal data
    3. Where we get personal data
    4. How long we keep personal data
    5. Our legal basis for handling personal data
    6. Who we share personal data with
    7. Where we store and send personal data
    8. Your rights concerning your personal data
    9. Where to lodge a complaint

    Information for Good®

    We're in an era of rapid digital transformation where consumers demand more access to seamless, personalised products and services online. But the currency of personal data that fuels this platform economic boom poses threats to individuals and endangers corporate security.

    Now more than ever — and likely more so in the future — consumers and corporates need new levels of trust and transparency.

    As a global information and insights company, TransUnion seeks to make trust possible. We do this by curating an accurate and comprehensive picture of each consumer so they're safely and reliably represented in the marketplace. This enables businesses and consumers to transact with confidence and achieve great things. We call this Information for Good.

    We have our registered offices at 5th Floor – Sun Share Tower Katima Mulilo Road, Lusaka, Zambia.  Although we're part of a larger group, this notice covers only the activities of TransUnion companies within the Republic of Zambia.

     

     

    Contact details
    Contact us about personal data issues, including the contents of this notice via:

    • Telephone:   +260 211 224263/570211 220 530/36/420500 and 0955985107/5307

    How we use personal data

    Enquiries

    We use your personal data to deal with any issue or complaint you have raised (which we refer to as an “enquiry”). This might include contacting you for more information or tell you the outcome of your enquiry. Typical enquiries include:

    • Requests for access to personal data, to challenge the accuracy of personal data, or to request the erasure of personal data
    • Support requests for our consumer products
    • Complaints of any nature
    • General enquiries

    Identity verification

    When you contact us, we may need to verify your identity to ensure we don’t provide personal data to unauthorised parties.

    Example: identity verification

    If someone contacts us and asks us for a copy of your credit report, we’ll check that it’s you (or someone authorised by you) asking for it. We may ask for evidence of identity such as copies of your driving license, copy of your NRC or a bank statement.

    It’s important to do this because the information in your credit report is valuable and could be used to impersonate you if it were to fall into the wrong hands.

    Feedback

    We may ask you to provide us with feedback or to leave a review about the service you received. Your feedback helps us to improve our services.

    Products and services

    We use aggregated statistics about enquiries, requests and complaints to help manage our services and identify potential problems. Some enquiries lead to changes to the personal data we use in our products and services.

    Constant improvement

    We use information from complaints and requests to help understand what went wrong, fix any problems, and improve how we deal with similar issues.

    Legal and regulatory purposes

    We may use personal data for legal and regulatory purposes. This might include responding to complaints or enquiries from you or a regulator about how we have handled your enquiry or used your personal data.

     

    The kinds of personal information we use and where we get it

    We obtain and use information from various sources summarised in the following table:

    Type of Information

    Description

    Source

    Basic contact information.

    Name, email address and job title

    You provide this information when you make an enquiry or when we subsequently request it.

    Your enquiry.

    Any enquiry you make

    Proof of identity or authority and other supporting documentation.

    To prove your identity. If you enquire on someone else’s behalf, we may ask for proof of authority, such as a power of attorney. Sometimes we may require additional supporting documentation.

    Information gathered in dealing with your enquiry.

    Dealing with an enquiry involves investigating the circumstances. This type of information depends on the enquiry.

    Internal records and external organisations, such as clients and suppliers.

    Our response and other correspondence.

    Our response to and other correspondence relating to your enquiry.

    We produce this ourselves.

    Website usage.

    If you access or submit information through our website, we record information such as IP address, operating system and browser type.

    We gather this through the website.

    You are free to choose whether you give us your personal data. However, if you don’t provide the information we need, this may limit our ability to help.

    How long we keep personal data

    We keep your personal data during the enquiry and for an additional period after completion. That period depends on purposes, such as:

    • Showing we have processes to deal with enquiries and are doing so fairly under our regulatory requirements
    • Responding to you or a regulator to show we dealt with an enquiry properly
    • Defending legal claims or regulatory action that might arise because of the enquiry

    Our legal basis for handling personal data

    Legitimate interests
    The Law relating to the protection of personal data and privacy allows personal data usage where necessary for legitimate purposes without undue adverse impact. We base most of our processing activities on the 'legitimate interests' condition. For more details, refer to the relevant privacy notices in the links above.

    Interest

    Explanation

    Security

    To keep your personal data secure

    Reputation and service improvement

    Manage enquiries quickly and efficiently to build our business reputation

    Who we share personal information with

    Clients

    Our clients have privacy notices that provide more information about how they use the data we supply. These clients typically operate in the following sectors:

    • Banks, Microfinance institutions etc.
    • Traders
    • Insurance
    • Retail
    • Telecommunications
    • Collections
    • Employment agencies
    • Financial services
    • Public sector
    • Startup

    If our clients appoint an intermediary to act on their behalf, they too will receive the data.

    Service providers

    We may provide information to third parties who help us use it for purposes described For example:

    • Cloud-based services, such as Salesforce, help host, manage and analyse our databases.
    • Cloud-based technologies, such as Microsoft Office 365, support our ordinary business operations.
    • Printing companies to produce and send direct mail or other correspondence.
    • Payment service providers to help with payments made by individuals.
    • Market research companies to help us better understand our customers.
    • A specialist sub-contractor operates our CCTV system.
    • Services Providers that assists us with providing our services to you.
    • Regulators like the Eswatini Data Protection Authority or the Financial Services Regulatory Authority.

     

    Data suppliers and other third parties

    If your enquiry is about data supplied to us by third parties, we might provide them with your personal data to help manage your enquiry. For example, if you dispute the accuracy of an entry on your credit file, we may contact the provider of that information to check whether its validity.

    These service providers can’t use your information for their purposes or on behalf of other organisations unless you agree otherwise.

    Where we store and send personal data

    We sometimes make use of Service Providers that are situated outside of Zambia, e.g. South Africa, Kenya, UK and US.  We access and use your information from our base in Zambia and will not transfer personal data to a country lacking laws that provide an adequate level of information protection, unless we have an agreement with the recipient requiring measures that offer a similar level of protection as The Law relating to the protection of personal data and privacy in Zambia and with the required permission from the relevant supervisory authority.

    Your rights concerning personal data

    We outline your rights regarding the personal data we hold about you below.

    Access: You can access all information that we hold about you by contacting us through DPOZambia@transunion.com

    Correction/Destruction/Deletion: If the information we hold about you is inaccurate, irrelevant, excessive, out of date, incomplete, misleading or obtained lawfully, you have a right to ask us to correct it or delete it.

    Objection to processing: You may object (on reasonable grounds) to processing your personal data unless legislation provides for such processing.

    Objection to direct marketing: You may object to us using your personal data for direct marketing, and if you do, we will stop.

    Where to lodge a complaint

    We strive to deliver the highest levels of customer service. However, if you’re ever unhappy with us, please contact us so we can investigate.

    • Location: 5th Floor – Sun Share Tower Katima Mulilo Road, Lusaka, Zambia
    • Postal Address: P O Box 31199, Lusaka, 10101
    • Telephone: +260 211 224263/57 | 220530

    Email: DPOZambia@transunion.com