Application of the Policy
Security of information
A public body shall, in accordance with information security standards issued by the Division e-Government Act No. 4—
(a) develop and enforce security measures to safeguard information collected or used in connection with egovernment services from unauthorised disclosure; and
(b) take reasonable steps to ensure that every officer of the public body concerned with delivering services or collecting, placing, positing or disseminating information or services is aware of and complies with the security measures regarding the management and protection of information.
We generally store and use the following information on SZI website or digital platforms linked to our website: your first name(s), surname, address, phone numbers, email address, and any other information which we reasonably need to perform our obligations in terms of the agreement with you when you use our services.
Receipt of information by public body
A public body may, where it consents to receive any information in electronic form, specify e-Government Act No.4 2021 —
(a) the manner and format in which the information shall be communicated to it;
(b) the type or method of electronic signature required, if any;
(c) control processes and procedures to ensure integrity, security and confidentiality of the information; and
(d) any other attributes for the information that is currently specified for corresponding information on paper.
We use your information to provide our website and services to you and generally for purposes of our relationship. We may process the information we collect from you when you register, make any enquiries, respond to a survey, surf the website, or use certain other site features. We may use your information for other purposes if the law allows for it, or if you consent to it, or if it is in the public interest.
Purposes for processing information.
We will only process adequate and relevant information to:
Sharing of Personal Information.
In general, we may share your information with our affiliates, third party service providers, payment gateways, regulatory and tax authorities (if we are requested by them to do so), and any other third party if the law requires from us to share it. We will keep your personal information confidential and only share it with others in terms of this policy, or if you consent to it, or if the law requires from us to share it. We have trusted relationships with carefully selected third parties who perform services for us. All these service providers have a contract with us in terms of which they have a legal obligation to secure your personal information and to use it only in a way that we permit.
ZAMBIA INFORMATION AND COMMUNICATION TECHNOLOGY AUTHORITY
Access to and retention of information
The Data retention notice in the Cyber Security and Cyber Crimes Act number 2 of 2021 is as follow:
(1) Where a data retention notice is issued requiring an electronic communications service provider to retain internet connection records the specific data that the electronic communications service provider may be required to retain shall be specified in the retention notice.
(2) An electronic communication service provider shall not be required to retain data as part of an internet connection record.
Power to access, search and seize
A cyber inspector may, in the performance of the cyber inspector’s functions, with a warrant, at any reasonable time and without prior notice, enter any premises or access an information system and— (a) search the premises or that information system;
(b) search any person on the premises if there are reasonable grounds to believe that the person has possession of an article, document or record that has a bearing on an investigation;
(c) take extracts from, or make copies of any book, document or record that is on or in the premises or in the information system and that has a bearing on an investigation;
(d) demand the production of, and inspect, relevant licences and registration certificates;
(e) inspect any facilities on the premises which are linked or associated with the information system; (f) access and inspect the operation of any computer or equipment forming part of an information system and any associated apparatus or material which the cyber inspector has reasonable cause to believe is, or has been used in, connection with any offence;
Unsubscribing from Receiving Communication
You can unsubscribe from receiving communications from us at any time. Simply click on the “unsubscribe” link at the bottom of any email received from us.
Third-party disclosure and links
Changes to this policy.
Unless notice is required in terms of the law, we may change the terms of this policy from time to time in line with any changes that the law or our internal business operations require, without prior notice. The current version of this policy that applies at the time you visit and/or use our website will regulate our relationship. It is your responsibility to consider the policy each time you use our website. If you do not agree with any terms of this policy, you must stop using our website.
SMART Zambia Institute,
Office of the President,
Government Complex, Lusaka