Privacy Policy
1. NanoSAIO Ltd (hereinafter ‘NanoSAIO’ or ‘we’) is an institution duly licensed by the Financial Services Commission to provide Credit Finance facilities.
2. We will have access to a potential client’s (You) personal information during the performance of our duties.
3. This document explains how we will process your data. NanoSAIO is required to abide by the Data Protection Act 2017 (“DPA”). The DPA is designed to strengthen the control and personal autonomy of individuals over their personal data, in line with the General Data Protection Regulation (’GDPR’).
4. NanoSAIO is registered with the Data Protection Office Mauritius as a Data Controller, which means it can determine the way it collects and processes data.
5. It will be necessary for You to provide us with certain information, in respect of your identity and other details relating to You, or, in case of a prospective client that is not a natural person, information relating to Your officers, directors, partners, members or employees (“Personal Information”).
6. The DPA prescribes the way in which NanoSAIO and/or its agents and service providers, may collect, retain and handle Personal Information. DPA make provision for certain legal safeguards regarding Personal Information.
7. We will be a ‘controller’; of Your personal information for the purposes of the DPA, and will process, or arrange the processing of, Your Personal Information by our service providers.
The following information is applicable to NanoSAIO’s client in all cases, and contacts/prospects in some cases, as noted below.
Personal Information Sharing
1. We may share Your Personal Information with the following third parties:-
• Advisers (such as auditors) to NanoSAIO relating to or in connection with Your dealings with us;
• Law enforcement agencies; regulatory or tax authorities and other governmental or public agencies or authorities, and;
• IT/software service providers who maintain NanoSAIO internal networks/systems.
2. They may in turn use the services of their affiliates or service providers to process your personal information where necessary or appropriate.
3. NanoSAIO will not be able to provide services to You without processing Your Personal Information for the purposes identified below.
4. NanoSAIO has reviewed the purposes and appropriateness of its activities, and those of the processors of Your Personal Information. NanoSAIO lawfully processes your data for the reasons set out below:
• To facilitate NanoSAIO’s ability to perform its obligations to You under the documents that together form the basis for Your contractual relationships with NanoSAIO, as well as its ability to comply
with applicable rules and regulations including the requirement to comply with any regulatory or tax reporting requirements
• to carry out money laundering/terrorist financing checks, conflict checks, for purposes of fraud prevention, to comply with any applicable auditing or financial reporting requirements
• to comply with information disclosure requests from regulatory, tax or other governmental or public authorities
• to communicate information we thinks may be of interest to You.
5. In addition to the above, your personal information will also be processed based on the legitimate interests of NanoSAIO including:
• To help detect, prevent, investigate, and prosecute fraud and/or other criminal activity
• To manage NanoSAIO’s information technology and to ensure the security of its systems
• To disclose information to a governmental, tax or regulatory body, or other intermediaries, counterparties, court, auditors or other third parties and to conduct compliance activities, when NanoSAIO think this is in any of their, or someone else’s interest
• To investigate and respond to any complaints about NanoSAIO and its business or any incidents relating to NanoSAIO or its business and to help maintain quality and to deal with complaints and disputes
• To manage and administer NanoSAIO’s business and to improve relationship with You and our other investors, and assist with investor relationship management, and for marketing and business development activities and analysis;
Personal information to be collected and used
The Client acknowledges that for the services, the Client must provide mandatory personal data input and upload key ‘KYC’ due diligence documents. The minimum information to be filled in shall be your name, NIC number, address, email address, mobile number and any other requested details. The minimum documents required for upload, includes:
Proof of Identity
The identification document must be pre-signed and must be in an original form and should bear a photograph of the principal. It must be clear and include your full name, date of birth, nationality, validity period, ID number and signature. A true copy of your identity card must be uploaded on the App.
Proof of Address
The proof of address must be a true copy of a full-page original utility bill, dated within the last dated (3) months, from an official service provider or an original bank statement or original valid tenancy contract. The proof of address should include your current residential address. PO Box addresses are not acceptable.
Proof of Income
Usage of personal information /data
1. You acknowledge and accept that, in submitting any personal information to NANOSAIO via the app, you agree to the transfer of this information beyond international frontiers, if it is deemed necessary for processing, in accordance with the laws of Mauritius and policies and procedures of NANOSAIO.
NanoSAIO Ltd shall collect, process and/or transfer your personal data internally. NanoSAIO Ltd shall store your personal data on a cloud based solution system whose servers are located in South Africa. NanoSAIO Ltd shall ensure that the solution provider has similar security measures in place for the safekeeping of personal data. NanoSAIO Ltd will not share your personal data with third parties who do not need it, or where NanoSAIO Ltd is not legally permitted to do so. NanoSAIO Ltd shall ensure that the cloud based solution provider has data privacy policies equivalent to NanoSAIO Ltd’s, or subject to appropriate contractual obligations, or to those who are subject to laws relating to the processing of personal information that are similar to those that apply to NanoSAIO Ltd. NanoSAIO Ltd shall ensure that your personal data is no longer held on the cloud based solution system of the service provider whose contractual terms have come to an end. However, NanoSAIO Ltd will retain Your Personal data for seven 7 years after you terminate all relationships with NanoSAIO Ltd.
Personal information /data may be retained for longer period if it is required by law, or by a tax or regulatory authority, a law enforcement agency or other governmental or public body or considered necessary to allow NanoSAIO to act in accordance with its specific set of circumstances, for example, considering an actual or a potential legal action or regulatory investigations.
2. Your rights in relation to the Personal Information NanoSAIO process about you. You have various rights under DPA in relation to the Personal Information that NanoSAIO process, relating to You. For more information about your rights under the new Data Protection legislation, please consult the Data Protection Office website: dataprotection.govmu.org/.
You can seek to exercise any of your right by contacting our Data Protection Officer.