X
X
GHS

Personal Data and General Confidentiality Agreement

HomepagePersonal Data and General Confidentiality Agreement
1. Introduction and Scope
 
This Agreement outlines how CoLi Link Ghana Limited (“CoLi Link”) collects, handles, and protects your personal and business data. By utilizing our VPS/VDS, web hosting, or domain services, you consent to the data practices described herein.
 
2. Personal Data Collection
We collect only the information necessary to provide and secure our services, including:
  • Identity Information: Full name, business registration details, and official identification.
  • Contact Details: Email address, physical address in Ghana/Nigeria/SA, and phone numbers.
  • Payment Data: Transaction records for Mobile Money (MoMo), bank transfers, and card payments.
  • Technical Logs: IP addresses, login timestamps, and server resource usage for security auditing.
3. Data Protection and Sovereignty
In compliance with the Ghana Data Protection Act and the South African POPI Act:
  • Local Storage: Your primary data is stored at our flagship hub in Accra, Ghana.
  • Encryption: All sensitive data is encrypted at rest and during transit across our regional peering backbone to Lagos and Johannesburg.
  • Confidentiality: CoLi Link employees are bound by strict non-disclosure agreements (NDAs) regarding client data and server contents.
4. Non-Disclosure of Confidential Information
CoLi Link treats all data stored on your VPS/VDS or hosting accounts as strictly confidential. We will not access, review, or distribute your private server data except:
  • To resolve a technical support request initiated by the client.
  • To mitigate a network-wide security threat (e.g., a DDoS attack originating from your node).
  • In response to a valid legal warrant from authorized law enforcement in Ghana, Nigeria, or South Africa.
5. Third-Party Sharing
We do not sell or lease your personal data to third parties. Data is only shared with:
  • Domain Registries: Necessary details required to secure your .gh, .ng, or .com domains.
  • Payment Gateways: To facilitate MoMo and bank transactions.
  • Law Enforcement: Only when legally mandated as per our Service Agreement
6. Client Responsibilities
The client remains the "Data Controller" for any information they host on CoLi Link's infrastructure. It is the client's responsibility to:
  • Maintain strong passwords and secure their VDS/VPS access.
  • Comply with regional privacy laws regarding the data of their own end-users.
7. Data Retention and Deletion
Upon cancellation of service, CoLi Link will retain personal account records as required by the Ghana Companies Act for tax and audit purposes. However, all hosted data (backups and server files) will be permanently purged within 7 days of account termination.
 
8. Data Security and Breach Notification
CoLi Link employs industry-standard technical and organizational measures to safeguard your information.
  • Intrusion Detection: We monitor our Accra-Lagos-Joburg network for unauthorized access attempts 24/7.
  • Breach Protocol: In the event of a confirmed data breach that affects your personal information, CoLi Link will notify you within 72 hours of discovery.
  • Notification Method: Notifications will be sent via the primary email address on file, providing details on the nature of the breach and recommended mitigation steps.
9. Employee and Sub-contractor Access
  • Least Privilege: Access to our core physical infrastructure is restricted to a limited number of vetted engineers based on the "Principle of Least Privilege."
  • Background Checks: All CoLi Link personnel with access to sensitive systems undergo rigorous background checks and continuous security training.
  • Third-Party Vetting: Any third-party partners (such as fiber providers or subsea cable operators) are strictly limited to network transport and do not have access to the data packets within your encrypted tunnels.
10. Audit and Compliance Rights
CoLi Link understands that enterprise and government clients may have regulatory audit requirements.
  • Self-Certification: We provide regular self-assessment reports regarding our data center’s physical and digital security.
  • On-Site Audits: Large-scale VDS or Enterprise clients may request a scheduled physical audit of our Accra flagship hub, subject to security clearance and non-disclosure protocols.
11. Proprietary Information and Intellectual Property
  • Client Ownership: All intellectual property, software, and data uploaded to your server remain the exclusive property of the client. CoLi Link claims no rights to your hosted content.
  • CoLi Link Property: All infrastructure designs, custom control panels (WISECP configurations), and network maps provided by CoLi Link remain our intellectual property.
12. Cross-Border Data Transfers (Africa & Global)
As a regional hub provider, data may transit through our peering points in Nigeria and South Africa.
  • Transit Security: Data in transit is protected by hardware-level encryption between our regional nodes.
  • Global Compliance: For clients outside of Africa, we ensure that any cross-border data handling meets the requirements of the jurisdiction of the "Data Subject" (e.g., GDPR for European users).
13. Changes to this Agreement
CoLi Link reserves the right to update this agreement to reflect changes in local laws (like the Ghana Cybersecurity Act) or new technology.
  • Notice of Change: Major changes will be announced via our News and Announcements section.
  • Continued Use: Continued use of the service after such changes constitutes acceptance of the updated agreement.
14. Contact Information for Data Privacy
For any questions regarding your data, or to request a copy of the information we hold about you, please contact our Data Protection Officer:
  • Email: privacy@coli.com.gh
  • Address: 49 GEN ANKRAH HIGH ST ACCRA GA-561-1984, Accra Ghana.

🌍
100% African Infrastructure
● Flagship Hub: Accra, Ghana
Directly Peered to Nigeria & South Africa
Top