Privacy Notice

Africa Automotive is committed to protecting your privacy. This Privacy Notice (“Notice”), (collectively “Africa Automotive”“us”“we”“our”) explains our privacy practices and provides information on how and why we collect, use and share your personal information through our interaction with you and through our products and services and when you visit our website (“Website”), or use our communications platforms (“Services”). The policy also describes your choices regarding use, access, deletion and correction of your personal information. This privacy and GDPR policy will explain how Africa Automotive uses the personal data we collect from you when you use our website.

What data do we collect?

Africa Automotive collects the following data: Personal Identification information which are (Name, email address, company, title and country)

How do we collect your data?

You directly provide Africa Automotive with most of the data we collect. We collect data and precess data when you:

  • Subscribe on our website subscription pop-up form
  • Voluntarily complete a customer survey or provide feedback on any of our message boards or via email.
  • Use or view our website via your browser’s cookies
  • Africa Automotive may also receive your data indirectly from the following sources: Phone calls and Social media (Linkedin and Twitter)
How will we use your data

Africa Automotive collects your data so that we can:

  • Process your order, manage your account
  • Email you with special offers on other products and services we think you might like.
How do we store your data?

Keeping your information secure is important to us. We maintain a variety of appropriate technical and organizational safeguards to protect your personal information both during transmission and once it is received. Africa Automotive has no control over or responsibility for the security or privacy policies or practices of other sites on the Internet you might visit, interact with, or from which you might buy products or Services, even if you visit them using links from our Website.

Databases are continuously backed up to enable restore to any point in time within a retention period of 35 days. Backups are stored on file storage at the same geographical location as the database.


Africa Automotive would like to send you information about our products and services that we think you might like, as well as those of our partner companies. If you have agreed to receive marketing, you may always opt out at a later date.

You have the right at anytime to stop Africa Automotive from contacting you for marketing purposes or giving your data to other members of Africa Automotive team.

Unsubscribe from our mailing list

You may at any time ask us to remove you from our mailing list by clicking “Unsubscribe” in any e-mail communications or push notification we send you, or by going to our unsubscribe web page to submit a request. We will remove you from our mailing list in accordance with applicable laws.

Children’s privacy

Children are not eligible to use our Websites or Services, and we ask that minors (children under the age of 18) not submit any personal information to us. If you are a minor, you can use the Site only in conjunction with your parents or guardians.

General Data Protection Regulation (GDPR)

The General Data Protection Regulation (GDPR) is the toughest privacy and security law in the world. Though it was drafted and passed by the European Union (EU), it imposes obligations onto organizations anywhere, so long as they target or collect data related to natural people.

Data protection has become a truly global phenomenon as people around the world increasingly cherish and value the protection and security of their data. Many countries have adopted or are in the process of adopting comprehensive data protection rules based on principles similar to those of the Regulation, resulting in a global convergence of data
protection rules. This offers new opportunities to facilitate data flows, between commercial operators or public authorities, while improving the level of protection for the personal data in the EU and across the globe.

Appendix – Definitions of certain terms referred to above:

Personal Data:
(Article 4 of the GDPR): ‘personal data’ means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

(Article 4 of the GDPR): means any operation or set of operations which is performed upon personal data or sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, erasure or destruction.

Legal Basis for Processing:
(Article 6 of the GDPR): At least one of these must apply whenever personal data is processed:

  1. Consent: the individual has given clear consent for the processing of their personal data for a specific purpose.
  2. Contract: the processing is necessary for compliance with a contract.
  3. Legal obligation: the processing is necessary to comply with the law (not including contractual obligations).
  4. Vital interests: the processing is necessary to protect someone’s life.
  5. Public task: the processing is necessary to perform a task in the public interest, and the task or function has a clear basis in law.
  6. Legitimate interests: the processing is necessary for the legitimate interests of the Data Controller unless there is a good reason to protect the individual’s personal data which overrides those legitimate interests.

Data Controller:
(Article 4 of the GDPR): this means the person or company that determines the purposes and the means of processing personal data.

Data Processor:
(Article 4 of the GDPR): means a natural or legal person, public authority, agency or any other body which processes personal data on behalf of the controller.

What are your data protection rights?

Africa Automotive would like to make sure you are fully aware of all your data protection rights. Every user is entitled to the following:

  1. The right to access – You have the right to request that Africa Automotive for copies of your personal data. We may charge you a small fee for this service.

2. The right to rectification – You have the right to request that Africa Automotive correct any information you believe is inaccurate. You also have the right to request Africa Surveyors to complete information you believe is incomplete.

3. The right to erasure – You have the right to request that Africa Automotive erase your personal data, under certain conditions.

4. The right to restrict processing – You have the right to request that Africa Automotive restrict the processing of your personal data, under certain conditions.

5. The right to object to processing – You have the right to object to Africa Automotive’s processing of your personal data, under certain conditions.

6. The right to data portability – You have the right to request that Africa Automotive transfer the data that we have collected to another organization, or directly to you, under certain conditions.

7. The right to be informed –You have the right to know how Africa Automotive processes your personal data why, and who else the data may be passed to.

8. The Right in relation to automated decision making and profiling – You have the right not to be subject to a decision based solely on automated processing.

If you make a request, we have one month to respond to you. If you would like to exercise any of these rights, please contact our Data Protection Officer at: Or call us at: +254 774 288 100

Privacy policies of other websites

Africa Automotive website contains links to other websites. Our privacy policy applies only to our website, so if you click on a link to another website, you should read their privacy policy.

Changes to our privacy policy

Africa Automotive keeps its privacy policy under regular review and places any updates on this webpage. This privacy and GDPR policy was last updated on 3 January 2020.

How to contact us

If you have any questions about Africa Automotive Privacy and GDPR policy, the data we hold on you, or you would like to exercise one of your data protection rights, please do not hesitate to contact our Data Protection Officer at: Or Call us on: +254 774 288 100