Privacy & Data Protection
This Privacy Policy explains how Utheeri collects, uses, safeguards, and discloses data when delivering open‑data services, modeling, and advisory. It is designed to align with Kenya’s Data Protection Act (2019) and applicable health data procedures.
This document is provided for transparency and does not constitute legal advice. Please contact us for any clarifications.
Scope
This Policy covers personal data, sensitive personal data (including health data), and non‑personal data processed by Utheeri through our website, demos, ModelLab, and advisory engagements.
Definitions
- “Personal data”: information relating to an identified or identifiable person.
- “Sensitive personal data”: includes health data and other categories defined by law.
- “Controller” vs “Processor”: role clarity is maintained per engagement.
See Kenya Data Protection Act (2019) for official definitions. https://www.odpc.go.ke/wp-content/uploads/2024/02/TheDataProtectionAct__No24of2019.pdfDPA 2019 (PDF)
Categories of Data
- Contact & lead data (name, work email, organization, role).
- Usage & analytics (pages visited, device/browser, cookies/consent preferences).
- Program & research data (de‑identified indicators, model inputs, results).
We avoid storing directly identifiable health records unless strictly necessary and lawfully permitted.