Privacy Policy

General Overview


At Oduma Group, your privacy is of utmost importance to us. We are committed to protecting
your personal information whenever you interact with us. This Privacy Notice explains how we
collect, use, and safeguard your personal data in compliance with the Data Protection Act, 2012
(Act 843) of Ghana.


Data Controller


Oduma Group is the data controller for the information we process. You can reach us at:


Office Address


No.3 Nuumo Abbey Street, East Legon, Accra, Ghana


How We Obtain Your Personal Data


We collect personal information from you through various channels, including but not limited
to:


Registration processes with Oduma Group.
Participation in training sessions.
Attendance at events or conferences.
Enquiries or requests for information.
Feedback or complaints.
Job applications.
Any other interactions with us.


Purpose of Processing and Lawfulness


We ensure that your personal data is processed lawfully and reasonably. We will only process
your data if it is necessary for the purposes stated at the time of collection. We are committed
to transparency and will inform you of the purpose for which we are processing your personal
information.

Your Consent


We will not process your personal data without your prior consent unless it is necessary for the
performance of a contract to which you are a party, or when it is in our legitimate interest to do
so. If we rely on your consent, then you have the right to withdraw your consent at any time;
however, this may affect our ability to provide certain services.


Retention of Personal Data


We will retain your personal data only as long as necessary to fulfil the purposes for which it
was collected. At the end of the retention period, your data will either be deleted or
anonymized for statistical analysis. Specific retention periods can be requested from us.


Disclosure of Personal Data to Third Parties


Aside from situations where Oduma Group may be required to disclose the personal data of
individuals in accordance with a legal obligation in response to requests by government
authorities or law courts on matters involving national security or law enforcement
requirements, Oduma Group will not pass on its data subjects’ personal data to third parties
without first obtaining consent.
In situations where the processing of personal data will involve an investigation of potential
violations of the bank’s terms of service, fraud prevention and mitigation, security issue
management, and the preservation of the rights and freedoms of staff, customers, and clients,
the bank shall establish an appropriate legal ground for such data transfers.
Oduma Group has put in place, to the best of its ability and in line with standard global
practices, physical, technical, and organizational measures (including secure encryption and
anonymization) to ensure the optimum protection of personal data, which also extends to data
transferred or shared with third parties.

Your Rights Under the Data Protection Act


You have rights under the Data Protection Act 2012 (Act 843), including:
1. Right to Object: You can object to our processing of your data if it impacts your fundamental
rights and freedoms.
2. Right to Access: You can request a description of your personal data held by us and details
about third parties who have accessed it.
3. Right to Rectification: You can request corrections to inaccurate or incomplete personal
data.
4. Right to Erasure: You can request deletion of your personal data when it is no longer
necessary.
5. Right to Restrict Processing: You can request that we limit processing in certain
circumstances.
To exercise these rights, please submit a written notice to us via dpo@odumagroup.com.


Our Responsibilities


We are responsible for protecting your privacy and ensuring that any personal data we collect is
accurate, complete, and up to date. We will inform you about the purpose of collecting your
data and specify which information is mandatory.

Security Measures


We implement appropriate technical and organizational measures to protect your personal
data against unauthorized access or loss. In case of a security breach, we will notify you
promptly as required by law.


Complaints


If for any reason a vendor or contractor, customer, or staff member wishes to make a complaint
about how Zenith Bank (or any of the Bank’s third parties) handles or has handled their
personal data, or how their complaint has been handled, they have the right to complain
directly with:


Supervisory Authority


Data Projection Commission


Address


East Legon, Pawpaw Street,
(GA-414-1469), Accra
P.O. Box CT 7195, Accra
Phone: +233256301533
Email: info@dataprotection.org.gh

Our Commitment


At Oduma Group, we are committed to managing and safeguarding your personal information
in accordance with Act 843 and international best practices in data protection.
Contact Information
For any queries regarding this Privacy Policy or data protection matters, please contact our
Data Protection Officer at:
Email: dpo@odumagroup.com
Phone: +233 (0)256301360 | +233 (0)506177975


Changes to Privacy Notice


We are constantly trying to improve our website and services, so we may need to change this
privacy notice from time to time as well. We will alert you to material changes by, for example,
placing a notice on our websites and/or by sending you an email (if you have registered your e-
mail details with us) when we are required to do so by applicable law.