Privacy Policy

We, The Centre for Epistemic Justice Foundation (CEJ), place at the centre of our mission that the safety of personal data is not only a legal requirement but is deeply embedded in the organisation’s culture. We stand for the value of privacy and a commitment to the most rigorous security standards and data protection. We take all necessary measures to make sure no sensitive information entrusted to us is ever compromised.

Policy Scope

It is intended for all CEJ employees, volunteers, trustees, research participants, partners and other interested parties. We are committed to the advancement of ethical research and sharing of knowledge with individual data privacy and the applicable laws or rules in mind.

Policy Statement

CEJ prioritizes data privacy as a core principle. The policy describes our clear-cut philosophy of protecting personal data and the use of data within all our operations. We hold the view that the safeguarding of an individual’s data privacy is the prerequisite to establishing faith, promoting ethical research and shaping knowledge justice.

Objectives

CEJ endeavors to:

  1. Develop safe data handling methods without unauthorized access, disclosure,

    modification or misuse of private information.

  2. Set clear rules and procedures for gathering, processing, storing and distributing

    personal information.

  3. Reinforce the requirement of immediate reporting of any data privacy issues or

    breaches.

  4. Encourage cooperation with relevant agencies, partners, and organizations in a bid to

    collaborate with top-notch data protection practices.

  5. Have comprehensive training of data privacy policies and procedures.

  6. Regularly audit and amend our policy to ensure it is current with changes in laws,

    standards, and African epistemic justice principles.

Policy Application

This policy applies to all CEJ activities involving collecting, processing, storing, sharing, and using personal data. All staff, volunteers, and stakeholders must understand and adhere to the principles and guidelines outlined herein.

Definition of Personal Data

Personal data refers to any information that can directly or indirectly identify an individual, such as names, contact details, demographic information, biometric data, financial

information, research data (e.g., survey responses, interview recordings), and any other sensitive personal information.

Responsibilities

CEJ:

  1. Designates a Data Protection Officer responsible for implementing and overseeing

    data privacy procedures and responding to concerns.

  2. Ensures all staff, volunteers, and stakeholders are aware of their responsibilities in

    safeguarding personal data.

  3. Provides comprehensive and regular training on data privacy policies and procedures.

Data Collection and Use

CEJ collects personal data strictly for legitimate research, operational, and administrative purposes, based on specific legal bases such as consent, legitimate interests, or contractual obligations. We adhere to principles of data minimization, collecting only the necessary information required for the intended purposes. Personal data is processed in a manner that upholds African epistemic justice principles and prioritizes the sovereignty and autonomy of individuals and communities.

Data Security

CEJ undertakes rigorous technical and procedural security mechanisms to protect the confidentiality of personal data against unauthorized access, alteration, disclosure and destruction. The security measures implemented are the industry-standard encrypted protocols, access controls, firewall protection, secure data centers, and systematic security audits and vulnerability assessment.

Third-Party Providers

In some cases, CEJ may use reliable third parties to help us carry out our prerequisite research and operational activities. The data is all protected through the mechanism which ensures that providers follow the appropriate data protection measures and work under confidentiality agreements. We vet and monitor our third-party providers to ensure their compliance with the data privacy policies and the laws.

Data Sharing and Disclosure

CEJ does not exchange data with other organizations for monetization, advertising, or target marketing purposes. We may share the personal data with our reliable partners or service providers under the strict confidentiality agreement and only to the extent necessary for fulfilling the intended purposes. Additionally, if we get a valid request from any authorized authority or are required to do so by the law, we may disclose personal data.

Individual Rights

People have the right to access, restore or erase the personal data maintained by CEJ, with a condition in accordance with applicable law and regulation. We have developed secure processes through which registered users can exercise their rights through the application of identity verification measures to protect (against) data abuse.

International Data Transfers

When CEJ is required to transfer personal data between different countries, we ensure that the behavior complies with applicable privacy and security laws by deploying appropriate safeguards and applying principles of data sovereignty and epistemic justice.

Cookies and Tracking Technologies

CEJ website and online platforms may collect cookies and similar tracking technologies to optimize user experience & gather analytics data like traffic, location and search behavior. Users can at any time manage their cookie preferences through their browser settings.

Data Protection Impact Assessments

CEJ undertakes full Data Protection Impact Assessments (DPIAs) for all new programs, systems or processes that would involve personal data processing. These evaluations enable us to uncover and guard against possible privacy threats, comply with data protection statutes and ordinances, and support the principles of African epistemic justice.

Training and Awareness

CEJ provides ongoing training to all the employees, volunteers and stakeholders on responsible data privacy policies, recognizing potential data breaches and appropriate response mechanisms. We grow a culture of data privacy awareness and vigilance, which in turn, guarantees a secure, compliant and ethically sound environment.

Review and Improvement

CEJ’s Data Privacy Policy is occasionally reviewed and updated to make it effective and relevant, considering changing laws, accepted norms of doing science, and best practices on African epistemic justice. We value devoting feedback from staff, volunteers, stakeholders, and community members who can strengthen us to build a robust privacy data practice and policy.

Compliance and Enforcement

The breach of this Data Privacy Policy will make the organization take disciplinary action which may be terminating the employee or a volunteer. The reports of any criminal activity or any breach of these regulations will be passed to authorities for further investigation or necessary legal action in accordance with the applicable laws and regulations.

This Data Privacy Policy is effective as of January 2023 and will be reviewed and updated periodically. For any inquiries or concerns regarding CEJ’s data privacy practices, please contact our Data Protection Officer at privacy@epistemic-justice.org.

By engaging with CEJ and providing your personal data, you acknowledge and consent to the practices described in this Data Privacy Policy.

Scroll to Top