Your Privacy Matters

PRIVACY POLICY

Effective Date: 10 Jan 2025
At Omega Blooms Ltd. ("we," "our," or "us"), we value your privacy and are committed to protecting any information you provide through our website, www.omegablooms.com. This Privacy Policy explains how we collect, use, and protect your information, particularly when you use our contact form.

INFORMATION WE COLLECT
When you fill out the contact form on our website, we may collect the following details:
Name
Email Address
Phone Number (if applicable)
Message Details (such as inquiries about our products or services)

HOW WE USE YOUR INFORMATION
The information you provide is used solely for the following purposes:
Responding to your inquiries.
Communicating with you regarding your interest in our products (e.g., flowers for export).
Providing additional details about our services if requested.

HOW WE HANDLE YOUR INFORMATION
No Sharing: We do not share, sell, or distribute your information to any third party.
Email Notifications: The data submitted via the contact form is sent directly to our secure email address for prompt handling.

COOKIES & TRACKING
Our website does not use cookies or other tracking technologies to collect visitor data.

DATA SECURITY
We take appropriate technical and organizational measures to protect the data you share with us, ensuring it is stored and transmitted securely. However, no system is entirely secure, and we cannot guarantee complete data security.

DATA RETENTION
We retain your information only for as long as necessary to fulfill the purpose of your inquiry. After resolving your query or completing a transaction, your information may be archived securely or deleted.

THIRD-PARTY LINKS
Our website may include links to blogs, resources, or external websites. We are not responsible for the privacy practices or content of these third-party sites.

CHILDREN'S PRIVACY
Our services are intended for business use, and we do not knowingly collect personal information from individuals under 18 years of age.

UPDATES TO THE POLICY
We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. Any updates will be posted on this page with the effective date clearly stated.

Data Protection Act, 2019 (Kenya)
The Data Protection Act, 2019, enacted in Kenya, is designed to protect individuals' privacy rights and personal data in the digital age. It aligns with international data protection standards like the EU's GDPR and regulates how personal data is collected, processed, stored, and shared.

KEY FEATURES OF DATA PROTECTION ACT 2019
Personal Data: The Act defines personal data as any information that can identify an individual, including names, email addresses, phone numbers, and biometric data.

DATA SUBJECT RIGHTS
Right to Access: Individuals have the right to access their personal data held by organizations.
Right to Rectification: Individuals can request corrections to inaccurate or incomplete personal data.
Right to Erasure: Individuals can request the deletion of their personal data under certain circumstances.
Right to Object: Individuals can object to the processing of their personal data for specific purposes.


DATA PROCESSING PRINCIPLES 
The Act outlines principles to ensure fair, lawful, and transparent data processing, including:
Data must be processed for specified, legitimate purposes.
Data must be accurate and kept up-to-date.
Data must be kept secure and protected from loss or unauthorized access.
Data should not be kept longer than necessary.

Consent and Transparency: Organizations must obtain explicit consent from individuals before collecting their personal data and inform them about how their data will be used.

Data Security: Organizations must implement technical and organizational measures to ensure data security, including encryption and access controls.

Data Protection Officer (DPO): Organizations processing large volumes of personal data are required to appoint a
Data Protection Officer (DPO) responsible for ensuring compliance with the Act.

Data Transfers: The Act controls the transfer of personal data outside Kenya, ensuring that recipient countries have adequate data protection laws or providing adequate safeguards.

Data Breach Notification: In case of a data breach, organizations must notify the Data Commissioner and affected individuals promptly.

Enforcement and Penalties: The Act is enforced by the Office of the Data Protection Commissioner (ODPC), and violations may result in fines, penalties, or imprisonment.

PURPOSE OF THIS ACT
The primary purpose of the Data Protection Act, 2019, is to ensure the protection of individuals' personal data, promote data privacy rights, and facilitate secure data processing practices. It strengthens consumer trust, safeguards privacy, and establishes clear guidelines for organizations to follow in handling personal data.

WHY IT MATTERS
The Act applies to all businesses, organizations, or individuals that collect, process, or store personal data in Kenya, regardless of whether the data subject is in Kenya or abroad. Compliance with this law is essential for building trust with customers and avoiding penalties for non-compliance.


CONTACT US
If you have questions about this Privacy Policy or how your information is handled, please contact us:
Omega Blooms Ltd.
Email: info@omegablooms.com
Phone: +254 726 510257

Thank you for trusting Omega Blooms Ltd. to handle your inquiries professionally and securely.