Ng’ara Data Ltd

Privacy Policy — Ng’ara Data Ltd

Effective Date: November 2025
Version: 1.0

1. Introduction

Welcome to Ng’ara Data Ltd.
We are a data annotation and AI solutions company committed to excellence, precision, and the ethical handling of data.

At Ng’ara Data, your privacy and trust are central to everything we do.
This Privacy Policy explains how we collect, use, store, and protect your personal information in compliance with:

  • The Kenya Data Protection Act (2019)
  • The General Data Protection Regulation (GDPR)
  • Other applicable international data protection laws and standards

By engaging with our services, you agree to this Privacy Policy.

2. Who We Are

Ng’ara Data Ltd
A registered private company in Kenya.
Our core mission is to power AI innovation through human intelligence — providing world-class data annotation and labeling services for AI companies worldwide.

Contact Information:
privacy@ngaradata.com
www.ngaradata.com
Thika, Kiambu County, Kenya

3. Information We Collect

We collect only the data necessary to deliver, improve, and secure our services. This may include:

A. Business Information
  • Company name, contact details, and billing information
  • Project requirements, dataset specifications, and support correspondence
B. Personal Information (for Clients or Annotators)
  • Name, email address, and communication preferences
  • User account details (for accessing Ng’ara Data systems)
  • Employment or training data for annotation workforce management

C. Technical Information

  • Device type, IP address, browser, and system logs
  • Metadata necessary for system optimization and security

We do not intentionally collect sensitive personal data unless explicitly provided and authorized for project purposes.

4. How We Use the Information

We use collected information strictly to:

  • Provide and manage data annotation and labeling services
  • Communicate with clients, vendors, and workforce teams
  • Maintain quality assurance and audit logs
  • Enhance service reliability, cybersecurity, and compliance
  • Meet contractual, legal, or regulatory obligations

We do not sell, rent, or trade your information with any third parties.

5. Data Storage and Security

Ng’ara Data uses Google Cloud Platform (GCP) for all data storage and infrastructure, which is certified under ISO 27001, SOC 2, and GDPR-compliant standards.

Our core data protection measures include:

  • Encryption in transit and at rest (AES-256 / TLS 1.3)
  • Multi-factor authentication (MFA) for all authorized users
  • Role-based access controls (RBAC) ensuring only the right personnel access specific datasets
  • Regular audits and penetration testing for security integrity
  • Data anonymization and pseudonymization when applicable

6. Data Retention

We retain personal or client data only for as long as necessary to fulfill contractual or legal obligations.
Upon project completion or account termination:

  • All personal data and annotated content are securely deleted or returned to the Client.
  • Backup data is permanently erased within 30 days.

7. Data Sharing and Transfers

We only share data with trusted partners and subprocessors necessary to deliver our services, such as:

  • Google Cloud Platform (GCS) — secure storage and infrastructure
  • Trello / Notion / Slack — for internal collaboration (no raw data stored)

Data may be transferred internationally but always under strict data protection agreements and GDPR Standard Contractual Clauses (SCCs).

8. Your Rights

As a data subject or client, you have the right to:

  • Access your personal data
  • Correct inaccuracies
  • Request deletion (“right to be forgotten”)
  • Restrict or object to certain data uses
  • Request data portability in a structured, machine-readable format

To exercise these rights, contact:
privacy@ngaradata.com

Ng’ara Data will respond to verified requests within 30 days.

9. Cookies and Tracking

cookies and similar tracking technologies to ensure the secure operation of our website, enhance your browsing experience, and help us understand how visitors interact with our pages.

Cookies are small text files stored on your device. They help us provide essential functions, improve performance, remember preferences, and deliver relevant content.

We use the following categories of cookies:

1. Necessary Cookies

These cookies are required for core website functions such as security, session management, and accessibility. They cannot be disabled through our cookie preferences tool.

2. Functional Cookies

These cookies support enhanced features such as remembering user preferences and enabling certain third-party integrations. These are optional and only activate with your consent.

3. Analytical Cookies

Analytical cookies help us understand visitor activity, measure performance, and improve our website. These operate only when you consent.

4. Advertising & Marketing Cookies

These cookies may be used to deliver relevant content, improve marketing effectiveness, or help us understand engagement with our campaigns. They are disabled by default unless you opt in.

Your Choices

When you visit our website, you are presented with a cookie consent banner allowing you to:

  • Accept all cookies
  • Reject non-essential cookies
  • Customize your preferences
  • Change your choices at any time using the cookie icon on the website

More Information

For full details on each cookie category, how we use them, and how to manage your preferences, please review our full Cookie Policy here: https://ngaradata.com/cookie-policy/

10. Third-Party Links

Our website may contain links to external platforms.
Ng’ara Data is not responsible for the privacy practices or content of third-party sites.
We encourage reviewing their policies before sharing personal data.

11. Children’s Privacy

Our services are not directed toward individuals under 18 years of age.
We do not knowingly collect data from minors.

12. Changes to This Policy

Ng’ara Data may update this Privacy Policy from time to time to reflect changes in law, technology, or business operations.
The latest version will always be available on our website, with the date of the last update clearly indicated.

13. Contact Us

For questions or requests related to this Privacy Policy or our data protection practices, please reach out to:

Ng’ara Data Ltd – Privacy Office
privacy@ngaradata.com
Thika, Kiambu County

Necessary cookies enable essential site features like secure log-ins and consent preference adjustments. They do not store personal data.
None
Functional cookies support features like content sharing on social media, collecting feedback, and enabling third-party tools.
None
Analytical cookies track visitor interactions, providing insights on metrics like visitor count, bounce rate, and traffic sources.
None
Advertisement cookies deliver personalized ads based on your previous visits and analyze the effectiveness of ad campaigns.
None