Privacy Policy

  1. Home
  2. Privacy Policy

Privacy Policy

 

  1. Introduction

This Privacy Policy explains how E C G Head Office Credit Union (Ghana) Limited (“the Union”) collects, uses, and processes personal data in compliance with the Ghana Data Protection Act (DPA) and the EU General Data Protection Regulation (GDPR). It applies to customers, staff, vendors, visitors, and third parties interacting with the Union.

  1. Roles and Responsibilities

The Union is the data controller, with its Board of Directors responsible for implementation. The Office Manager ensures compliance with this policy and notifies data subjects before collecting and processing their personal data.

  1. Policy Statement

The Union is committed to protecting the privacy and security of personal data. We determine how personal information is used and notify data subjects of their rights under the regulation.

  1. Types of Personal Data Collected

We collect various types of personal data, including identity, contact, financial, transactional, technical, and job application data, as well as information about website usage and marketing communications preferences.

  1. Purpose of Data Collection

We collect and process personal data only when necessary for specific purposes, ensuring we do not collect more data than required.

  1. Legal Basis for Processing

We process personal data based on consent, performance of a contract, legal obligations, protection of vital interests, official authority, or public interest. Each processing purpose has a lawful basis.

  1. Consent and Withdrawal

We obtain explicit consent before processing personal data. Data subjects can withdraw consent at any time by making a request.

  1. Use of Cookies

We use cookies to improve website usability and analyze website usage. Users can disable cookies, but this may affect website functionality.

  1. Disclosure to Third Parties

We disclose personal data to third parties only when necessary and with consent, except in cases of legal obligation or security issues.

  1. Cross-Border Transfers

We may transfer personal data to third parties abroad, ensuring adequate data protection measures are in place.

  1. Retention of Records

We retain personal data for as long as necessary and in compliance with the DPA’s guidelines on record retention.

  1. Data Subject Rights

Data subjects have rights to access, correct, restrict processing, transfer data, object to processing, and complain to the supervisory authority.

  1. Complaints

Data subjects can complain to the supervisory authority or the Union’s Manager about how their personal data is handled.

  1. Changes to Privacy Notice

We may change this Privacy Policy and will notify data subjects of material changes.