Legal
Privacy Policy
Last updated: June 2026
At KigaliTech, we respect your privacy and are committed to protecting your personal data. This policy explains how we collect, use, and safeguard your information when you use our website and services.
1. Information We Collect
When you create an account or place an order, we collect your name, email address, phone number, and delivery address. We also collect payment method type (we do not store card numbers β those are handled by our payment processors). We automatically collect browsing data such as pages viewed, products searched, and device type to improve your experience.
2. How We Use Your Information
We use your information to process and deliver orders, send order confirmations and tracking updates, provide customer support, and personalise product recommendations. With your consent, we may send promotional emails about deals and new arrivals. We do not sell your personal data to any third party.
3. Data Sharing
We share necessary order information with delivery partners (name, address, phone) to complete delivery. We share payment data with payment processors (Stripe, MTN Mobile Money, Airtel) solely to process transactions. All third parties are bound by data processing agreements.
4. Cookies
We use essential cookies for authentication and cart functionality. We use analytics cookies (with your consent) to understand how visitors use our site. You can manage cookie preferences through your browser settings.
5. Data Retention
We retain account and order data for 7 years to comply with Rwandan tax and business laws. You may request deletion of your account at any time; order records may be retained for legal compliance.
6. Your Rights
You have the right to access your personal data, correct inaccurate information, request deletion of your account, and opt out of marketing emails at any time via the unsubscribe link in any email. To exercise these rights, contact us at privacy@kigalitechservices.com.
7. Security
We use industry-standard encryption (TLS/HTTPS) for all data transmission. Passwords are hashed using bcrypt and never stored in plain text. We conduct regular security reviews and promptly address any vulnerabilities.
8. Changes to This Policy
We may update this policy from time to time. When we do, we will notify registered users by email and update the "Last updated" date below. Continued use of our service after changes constitutes acceptance of the updated policy.