01010101010101
10110011001
Legal Architecture

Statum Website Privacy Data Policy

Statum Company Ltd - Protecting your digital footprints with technical integrity and absolute transparency.

Effective Revision: April 6, 2025

At Statum Company Ltd, we are committed to protecting your personal data in accordance with Kenya's Data Protection Act, 2019. This Privacy Policy explains how we collect, use, store, and protect your information within our digital ecosystem.

1. Information We Collect

  • Personal Information: Includes your full name, email address, phone number, company name, and service preferences.
  • Technical Information: IP address, browser type, device type, operating system.
  • Usage Information: Pages visited, time spent, interaction data.
  • Cookies: To enhance user experience.

2. Data Ingestion Protocols

  • Through secure forms on our website.
  • Automatically through specialized analytics orchestration.
  • Direct communication (E-mail, Technical Support).

3. Processing Objectives

  • To respond to inquiries and infrastructure requests.
  • To personalize your technical experience.
  • To iterate on our services and marketing strategies.
  • To comply with regulatory and legal obligations.

4. Legal Foundations

We process your data based on explicit consent, legitimate interests, performance of a contract, or legal compliance under Kenyan law.

5. Data Sharing & Disclosure

We do not sell your data. We may share it with trusted providers under strict confidentiality agreements or if required by legal mandates.

6. Security Architecture

We employ industry-standard security measures, including SSL encryption and isolated data buckets, to protect your information.

7. Data Sovereignty & Jurisdiction

We respect your digital boundaries. Upon client request, we orchestrate infrastructure that ensures data resides exclusively within specified geographical regions (e.g., Kenyan-based cloud regions or on-premise Kenyan servers), supporting national data residency requirements.

8. Enterprise Security Protocols

Our security architecture is built on the principle of Zero Trust. We implement:

  • Mutual TLS (mTLS): For all service-to-service communication.
  • Encryption at Rest: AES-256 for all persistent data storage.
  • VPC Isolation: Strict network segmentation to prevent lateral movement.
  • Regular Penetration Testing: Continuous auditing of our infrastructure.

9. Data Retention & Deletion

We retain personal data only for as long as necessary to fulfill the objectives defined in this policy. Upon contract termination or formal request, we execute secure data wiping procedures that render information unrecoverable, in line with NIST 800-88 standards.

10. Your Rights

You hold the right to access, correct, delete, or object to the processing of your data under the Data Protection Act, 2019. You may also request a portable copy of your data for transfer to other services.

8. Contact Us

For inquiries related to data architecture or privacy:

Statum Company Ltd • Nairobi, Kenya