PEERPESA™ PRIVACY POLICY
Last Updated May, 2024
Thank you for visiting the PeerPesa™ website/app (the “Site”). The Site is an Internet property of PeerPesa, Inc. (“PeerPesa™,” “we” or “us”). This PeerPesa™ Privacy Policy (“Privacy Policy”) sets out how we use, share and protect Personal Information (as hereinafter defined) and other information that we collect when you:
access or use the Site;
register to become a Member; and/or
use the PeerPesa™ Offerings including, without limitation, the Services and/or Promotions.
Capitalized terms not defined herein shall have the meaning set forth in the PeerPesa™ Website Terms and Conditions (“Terms and Conditions”).
Except where noted, statements in this Privacy Policy with respect to the Site and PeerPesa™ Offerings also apply to PeerPesa™ mobile device applications ("Apps") for iPhone, iPad and Android devices.
If you have been given access to the PeerPesa Offerings as a member, employee, client or customer (“PeerPesa Health Program Client”) of a healthcare provider, health plan sponsor, or insurer or related organization or company (each a “PeerPesa Health Program Company”), this Privacy Policy is not intended to modify any privacy policy provided by the PeerPesa Health Program Company applicable to your personal health record.
YOU MUST AFFIRMATIVELY CONSENT TO USE OUR OFFERINGS, AND BY DOING SO, YOU CONSENT TO THIS PRIVACY POLICY AND THE USE OF YOUR PERSONAL INFORMATION AS STATED HEREIN. IF YOU DO NOT AGREE TO THE TERMS OF THIS PRIVACY POLICY AND THE USE OF YOUR PERSONAL DATA AS STATED HEREIN IN THEIR ENTIRETY, YOU MAY NOT ACCESS OR OTHERWISE USE THE SITE AND/OR PeerPesa™ OFFERINGS.
We will only process your Personal Information in accordance with applicable data protection and privacy laws of Uganda (Data Protection and Privacy Act of 2019).
You also have the right to object, the right to data portability, and the right to withdraw consent at any time.
1. INFORMATION WE COLLECT
We collect three basic types of information and data: Personal Information, non-Personal Information, and aggregate data.
2. PERSONAL INFORMATION COLLECTED
For the purposes of this Privacy Policy, Personal Information shall mean individually identifiable information from or about an individual. We collect Personal Information from you primarily in three (3) ways:
when you register to become a Member on the Site or App;
when you access the Site, and provide information in connection with your use of the PeerPesa™ Offerings or PeerPesa™ Health program; or
when you register to become a Member, or otherwise utilize certain aspects of the PeerPesa™ Offerings, through and/or in connection with an account that you already have with certain third-party social media websites (“Social Media Websites”), such as Facebook® and Twitter®.
In addition, when you access and/or use the Site and/or PeerPesa™ Offerings, and based on our legitimate interest to improve the quality of the PeerPesa™ Offerings, we may collect certain usage data, such as:
the number of times that you visit the Site;
the specific PeerPesa™ Offerings accessed, as well as the frequency and duration of use associated with them; and
other analyses and data associated with your access to, and use of, the Site and/or PeerPesa™ Offerings (collectively, “Usage Data”).
We also may collect information and responses you provide when participating in activities on the Site, which may include activity postings, survey responses, assessment responses and any other data you generate in using the Site and/or PeerPesa™ Offerings (“User Responses”).
3. SITE REGISTRATION
The Personal Information that you must supply on the Site in order to obtain access to the PeerPesa™ Offerings may include, without limitation:
your full name;
your email address;
your telephone number;
your date of birth;
your home address;
your user name and password;
a unique I.D. you receive from your healthcare company or health plan, your employee I.D. or other employer issued I.D.; and/or
any and all other information requested on the applicable registration form (collectively, “Site Registration Data”).
4. SOCIAL MEDIA WEBSITE REGISTRATION/USE
The Personal Information that you make available to PeerPesa™ when you register via your Facebook® account, or utilize certain PeerPesa™ Offerings in connection with your Facebook® account, may include, without limitation, depending on the privacy settings associated with your Facebook® account:
all or some of the information that comprises Site Registration Data as set forth above;
your Facebook® ID;
your Facebook® profile name;
your Facebook® profile picture;
your education history (as included in your Facebook® account);
your interests (as included in your Facebook® account);
the Facebook® photographs included in your Facebook® account;
gender; and
any and all other information made available to PeerPesa™ by and through your Facebook® account (collectively, “Facebook® Registration Data”).
The Personal Information that you make available to PeerPesa™ when you register via your Twitter® account, or utilize certain PeerPesa™ Offerings in connection with your Twitter® account, may include, without limitation, depending on the privacy settings associated with your Twitter® account:
your Twitter® user ID;
your Twitter® profile name;
your Twitter® avatar; and
any and all other information made available to PeerPesa™ by and through your Twitter® account (collectively, “Twitter® Registration Data” and, together with the Site Registration Data and Facebook® Registration Data, the “Registration Data”).
For purposes of this Privacy Policy, "Facebook" shall mean Facebook Inc. and "Twitter" shall mean Twitter, Inc. Facebook® is a registered trademark of Facebook Inc. Twitter® is a registered trademark of Twitter, Inc. Please be advised that PeerPesa™ is not in any way affiliated with Facebook® or Twitter®, and the PeerPesa™ Offerings are neither endorsed, nor sponsored, by Facebook® or Twitter®.
5. USE OF PERSONAL INFORMATION
Based on our legitimate interest to improve the quality of the PeerPesa™ Offerings, we may use your Usage Data, and share it with third parties:
to assist us and such third parties in studying, evaluating and improving the Site and PeerPesa™ Offerings;
determine your preferences and tailor the Site and PeerPesa™ Offerings to your needs; and
so that we can promote the Site and PeerPesa™ Offerings to third parties (using Usage Data on an aggregate and anonymous basis in that instance).
If you are a PeerPesa Health Program Client, we may share your Usage Data and Personal Information with your PeerPesa Health Program Company to enable them to assess the efficacy of the PeerPesa Offerings and Services. If your employer uses a third-party vendor to administer its program, we may provide your Usage Data to the third-party vendor, but the third-party vendor will not receive your Personal Information unless the third party-vendor has signed an agreement limiting its use of Personal Information to analytics demonstrating the effectiveness of the program. We may provide limited Usage Data on an aggregate and anonymous basis to your employer for analytical purposes. If your employer administers its own incentive program, we may provide limited data to your employer in connection with the employer’s incentive program, consisting of total points earned for completion of activities or tracks during the incentive period. We do not provide individual results, outcomes or activities associated with your account. If you hire a personal care manager, coach or therapist (a “Health Care Professional'') or elect to use a Health Care Professional under a program or service offered by a PeerPesa Health Program Company, the Health Care Professional will be permitted to access your Usage Data and User Responses. By electing to use a Health Care Professional, you are consenting to the disclosure of this information to the Health Care Professional with whom you are working. The Health Care Professional is under a duty to maintain the confidentiality of this information and any other Personal Information you share with the Health Care Professional, and the Health Care Professional may not disclose this information to anyone else unless under a legal requirement to do so. PeerPesa also has entered into agreements with private health care practices to which it may disclose Usage Data on an aggregate and anonymous basis.
Other than in connection with the limited use of Usage Data and Personal Information as specified above, PeerPesa™ will never sell, rent, exchange or barter your Personal Information to or with any third party for financial gain or marketing purposes. When you register as a Member, we use the Personal Information that you make available to personalize your experience with the Site, facilitate the delivery of the applicable PeerPesa™ Offerings to you and for verification purposes. You also agree that, based on our legitimate interest referred to above, we may contact you at any time with updates and any other information that we may deem appropriate for you to receive in connection with your continued use of the Site and PeerPesa™ Offerings, and to keep you informed of our other products and services. In addition, if you identify yourself to us by sending us an email or some other communication with questions or comments, we may use such information (including Personal Information) to respond to your questions or comments, and we may file your questions or comments for future reference. If you elect to participate in our coaching program, the coach will be permitted to access your user data, including happiness statistics, character strength assessment results, user posts and comments (public and private). By participating in the coaching program, you are consenting to the processing of your personal data, including special categories such as data concerning health, and to the disclosure of this information to any coach with whom you are working. The coach is under a duty to maintain the confidentiality of this information and any other Personal Information you share with the coach, and the coach may not disclose this information to anyone else unless under a legal requirement to do so.
The Personal Information that you submit to PeerPesa™ remains your property, but by making the Personal Information available to PeerPesa™, you grant PeerPesa™ the right, subject to applicable law, to use that Personal Information to bring you certain promotional offers from PeerPesa™ and its third-party partners that PeerPesa™ believes may be of interest to you. If you wish to withdraw your consent, object to the use of Personal Information based on our legitimate interest or to stop receiving future communications from us, please see the section below entitled “Managing Your Settings.”
We may permit our third-party agents, service providers, vendors and subcontractors (such as vendors and suppliers that provide us with technology, services, advertising and marketing assistance or content in connection with our operation and maintenance of the Site and PeerPesa™ Offerings) to access Usage Data, but they are only permitted to do so in connection with performing services for us or to operate the Site and PeerPesa™ Offerings. Third parties are not authorized to use your Personal Information for their own benefit. In addition, we may use, or permit third-party research partners to use, User Responses for research or data analysis purposes.
We may also supplement the information that we collect with information from public, third-party private, or internal sources to assist us in evaluating and improving the Site and PeerPesa™ Offerings, and to determine your preferences so that we can tailor the Site and PeerPesa™ Offerings to your needs.
We may report aggregate or de-identified information, which is not able to be identified back to an individual user of the Site other than in a tokenized manner, to third party partners.
Information that we collect about you also may be combined by us with other information available to us through third parties for research and measurement purposes, including measuring the effectiveness of content, advertising or programs. This information from other sources may include age, gender, demographic, geographic, personal interests, product purchase activity or other information.
We reserve the right to release current or past Personal Information:
in the event that we believe that the Site and/or PeerPesa™ Offerings is/are being or has/have been used in violation of the Terms and Conditions or to commit unlawful acts;
if the information is subpoenaed; provided, however, that, where permitted by applicable law, we shall provide you with e-mail notice, and opportunity to challenge the subpoena, prior to disclosure of any Personal Information pursuant to a subpoena; or
if PeerPesa™ is sold, merged or acquired; provided, however, that if PeerPesa™ is involved in a merger, acquisition or sale of all or a portion of its assets, you will be notified via email and/or a prominent notice on the Site of any change in ownership or uses of your Personal Information, as well as any choices that you may have regarding your Personal Information.
6. INTERACTIVE SERVICES/SOCIAL MEDIA WEBSITES
If you post a Comment, Activity Post or otherwise provide Personal Information by and through the Interactive Services, the Site and/or any applicable Social Media Website, you should be aware that any Personal Information that you submit using such forums can be read, collected or used by other users of these forums (depending on your privacy settings, in the case of Social Media Websites), and could be used to send you unsolicited messages or otherwise contact you without your consent or desire. We are not responsible for the Personal Information that you choose to submit in these forums. If you mistakenly post Personal Information in our public forums and would like it removed, you can send us an email to peerpesa.io@gmail.com to request that we remove it. In some cases, we may not be able to remove such Personal Information.
The Social Media Websites operate independently from PeerPesa™, and we are not responsible for such Social Media Websites’ interfaces or privacy or security practices. We encourage you to review the privacy policies and settings on the Social Media Websites with which you interact to help you understand those Social Media Websites’ privacy practices. If you have questions about the security and privacy settings of any Social Media Websites that you use, please refer to their applicable privacy notices or policies.
Further, by submitting Comments, Activity Posts and/or other material via the Interactive Services, the Site, the Services and/or Social Media Websites, you:
represent and warrant that PeerPesa™’s use of your submission does not and will not breach any agreement, violate any law, violate any Social Media Website’s terms of service or infringe upon any third party’s rights;
agree that PeerPesa™ is free to use in any manner all or part of the Comments, Activity Posts and/or other material on an unrestricted basis without the obligation to notify, identify or compensate you or anyone else; and
grant PeerPesa™ all necessary rights, including a waiver of all copyright, trademark, privacy and moral rights, to use all Comments, Activity Posts and/or other material, in whole or in part, or as a derivative work, without any duty by PeerPesa™ to anyone whatsoever.
7. OTHER INFORMATION COLLECTION AND USE
We use the information that we collect to improve the design and content of the Site and to enable us to personalize your Internet experience. We also may use this information in the aggregate to analyze Site usage, as well as to offer you products and services.
8. HOW WE MAY USE COOKIES AND OTHER TRACKING TECHNOLOGIES
When providing our Services, we may use the following types of cookies and tracking technologies for the purposes set out below.
Cookies and local storage may be set and accessed on your computer. Upon your first visit to the Services, a cookie or local storage may be sent to your computer that uniquely identifies your browser. “Cookies” and local storage are small files containing a string of characters that is sent to your computer's browser and stored on your device when you visit a website. Many major Web services use cookies to provide useful features for their users. Each Web site can send its own cookie to your browser. Most browsers are initially set up to accept cookies. You can reset your browser to refuse all cookies or to indicate when a cookie is being sent; however, if you reject cookies, you will not be able to sign into the Services or take full advantage of our Services. Additionally, if you clear all cookies on your browser at any point after setting your browser to refuse all cookies or indicate when a cookie is being sent, you will have to again reset your browser to refuse all cookies or indicate when a cookie is being sent.
To support our Services, we may use one or more of the following cookies for the purposes set forth below:
You can find more information about cookies and how they work, what cookies have been set on your computer or mobile device and how to manage and delete them at http://www.allaboutcookies.org/ and www.youronlinechoices.com/uk.
We may also use “pixel tags,” which are small graphic files that allow us and third parties to monitor the use of the Services and collect Usage Data. A pixel tag can collect information such as the IP address of the computer that downloaded the page on which the tag appears; the URL of the page on which the pixel tag appears; the time (and length of time) the page containing the pixel tag was viewed; the type of browser that retrieved the pixel tag; and the identification number of any cookie previously placed by that server on your computer.
We may use pixel tags, either provided by us or by our third-party advertisers, service providers and ad networks, to collect information about your visit, including the pages you view, the links you click and other actions taken in connection with our sites and Services and use them in combination with our cookies to provide offers and information of interest to you. Pixel tags may also enable ad networks to serve targeted advertisements to you when you visit the Services or other websites.
In addition, we may use a variety of other technologies that collect similar information for security and fraud detection purposes.
9. LOCATION INFORMATION
When you use the Site, PeerPesa™ Offerings, the Services, or Promotions, and based on our legitimate interest to improve them, we may collect location information either provided by a mobile device interacting with our Site or one of our applications, or associated with your IP address, where we are permitted by law to process this information.
10. AGGREGATE DATA
PeerPesa™ reserves the right to transfer and/or sell aggregate or group data about PeerPesa™ users (including Usage Data not linked to Personal Information) for lawful purposes. Aggregate or group data is data that describes the demographics, usage or other characteristics of PeerPesa™ users as a group, without disclosing personally identifiable information.
11. MOBILE DEVICES
One or more of our Apps may require that you be registered and signed in in order to use them. The information that we collect through your use of our Apps and tools will be treated as Personal Information under this Privacy Policy. When you download, and install one of our mobile Apps onto your mobile device, we assign a random number to your App installation. This number cannot be used to identify you personally, and we cannot identify you personally unless you choose to become a registered user of the App. We use this random number in a manner similar to our use of Cookies as described in this Privacy Policy. Unlike Cookies, the random number is assigned to your installation of the App itself and not a browser, because the App does not work through your browser. Therefore, the random number cannot be removed through settings. If you do not want us to use the random number for the purposes for which we use Cookies, please do not use our mobile device Apps. Because some of the content on our mobile device Apps directs your mobile device to our website you will be exposed to the Cookies that we use and to third party Cookies that may be contained in advertisements that we do not control and will be unable to delete any of these Cookies with your mobile device. Therefore, if you do not want to be exposed to Cookies when you use your mobile device you should not use our mobile device Apps and you should set your mobile device to reject Cookies when you use our mobile optimized sites. Our use of Cookies and Web Beacons on our mobile optimized sites are similar to our use on our desktop sites. Your choices to reject Cookies are available on our mobile optimized site. If you have questions about how to reject Cookies on your specific device please check with the device manufacturer.
12. THIRD-PARTY WEBSITES
This Site may contain links to third-party owned and/or operated websites. PeerPesa™ is not responsible for the privacy practices or the content of such websites. In some cases, you may be able to make a purchase through one of these third-party websites. In these instances, you may be required to provide certain information, such as a credit card number, to register or complete a transaction at such a website. These third-party websites have separate privacy and data collection practices and PeerPesa™ has no responsibility or liability relating to them.
13. SECURITY
We endeavor to safeguard and protect our Members’ Personal Information. When Members make Personal Information available to us, their Personal Information is protected both online and offline (to the extent that we maintain any Personal Information offline). The privacy of your Personal Information is very important to us. When our registration process asks users to submit Personal Information (if any), and when we transmit such Personal Information, that information is encrypted and is protected with the appropriate current industry standard software that employs state-of-the-art, best-practice encryption methods and algorithms.
Access to your Personal Information is strictly limited, and we take reasonable measures to ensure that your Personal Information is not accessible to the public. The servers that we store Personal Information in are kept in a secure physical environment. We also have security measures in place to protect the loss, misuse and alteration of Personal Information under our control. Please be advised, however, that while we take every reasonable precaution available to protect your data, no storage facility, technology, software, security protocols or data transmission over the Internet can be guaranteed to be 100% secure. Computer hackers that circumvent our security measures may gain access to certain portions of your Personal Information, and technological bugs, errors and glitches may cause inadvertent disclosures of your Personal Information; provided, however, that any attempt to breach the security of the network, our servers, databases or other hardware or software constitutes a crime punishable by law. For the reasons mentioned above, we cannot warrant that your Personal Information will be absolutely secure. Any transmission of data at or through the Site is at your own risk.
All of our Members’ Personal Information, not just the sensitive information mentioned above, is restricted in our offices. Only employees or third-party agents who need the Personal Information to perform a specific job are granted access to Personal Information. Our employees are dedicated to ensuring the security and privacy of all user Personal Information. Employees not adhering to our firm policies are subject to disciplinary action. In compliance with applicable federal and state laws or other laws applicable to persons using our Offerings in foreign countries, we shall notify you and any applicable regulatory agencies in the event that we learn of an information security breach with respect to your Personal Information. You will be notified via email in the event of such a breach. Please be advised that notice may be delayed in order to address the needs of law enforcement, determine the scope of network damage, and to engage in remedial measures.
14. EXERCISING YOUR RIGHT TO OPT-OUT OF RECEIVING COMMUNICATIONS
Even after consenting to the Privacy Policy and Terms and Conditions, you may opt out of receiving email advertising from us by following the instructions at the end of the applicable e-mail message or by sending us an e-mail at peerpesa.io@gmail.com and asking us not to send you email advertising.
Notwithstanding the foregoing, we may continue to contact you for the purpose of communicating information relating to your request for PeerPesa™ Offerings, as well as to respond to any inquiry or request made by you. To opt-out of receiving PeerPesa™ Offerings-related and inquiry response-related messages from PeerPesa™, you must cease requesting and/or utilizing the PeerPesa™ Offerings and cease submitting inquiries to PeerPesa™, as applicable.
15. IDENTIFYING, DELETING AND UPDATING YOUR INFORMATION
At your request, we will inform you of what Personal Information we have on file for you. In addition, at your request, we will update, correct, modify or delete Personal Information that you have provided to us, or that we have collected. You may do so by contacting us via email at peerpesa.io@gmail.com; provided, however, that we ask individual Members to identify themselves and the information requested to be accessed or updated before processing such requests. We will comply with your request as soon as reasonably practicable. However, we may maintain Personal Information whenever we are required to do so by law or regulations or as we believe is reasonably necessary to comply with applicable law or regulations, government requests, to detect or prevent fraud, to resolve disputes, to address problems with the Services, to assist with investigations, or to enforce our terms and conditions or other applicable agreements or policies. We may also need to retain certain information for recordkeeping purposes. We will retain your Personal Information for the period necessary to fulfill the purposes outlined in this Policy unless a longer retention period is required or permitted by law.
16. DATA RETENTION
User information provided to PeerPesa™ will be retained in accordance with the strictest application of the laws of the governing authorities for the user’s primary place of residence. In the absence of applicable laws governing data retention, PeerPesa™ will not retain data for more than 7 years beyond the date the user last logged in to PeerPesa™.
17. CHILDREN
PeerPesa™ is committed to children's privacy. PeerPesa™ does not knowingly permit any person less than 16 years of age to register directly for the PeerPesa™ Offerings.
If PeerPesa™ learns that Personal Information of persons under 16 years of age has been collected on the Site or through the Services without parental consent, then PeerPesa™ will take appropriate steps to remove the information or maintain and use such information (in accordance with the other provisions of this Privacy Policy) in order to notify and obtain consent from the parent/guardian and/or for other purposes permitted under applicable law. If you are a parent or guardian and discover that your child under the age of 16 has a registered account with the Site without your consent, please alert PeerPesa™ at peerpesa.io@gmail.com to either provide consent, request that we change your child’s account settings, or request that PeerPesa™ remove the child’s Personal Information. Please provide the child’s name, address, and e-mail address.
18. PARENTAL CONTROLS
CHILDREN BETWEEN THE AGES OF 13 AND 17 (“CHILD”) MAY BE PERMITTED TO USE THE SITE AND/OR PeerPesa™ OFFERINGS UNDER THE TERMS OF A PLAN ESTABLISHED BY THE EMPLOYER OR PeerPesa™ HEALTH PROGRAM COMPANY COVERING THEIR PARENT OR GUARDIAN. BY PERMITTING YOUR CHILD OR WARD TO USE THE SITE AND/OR PeerPesa™ OFFERINGS YOU ARE CONSENTING TO THIS PRIVACY POLICY ON THEIR BEHALF. IN ADDITION, THE CHILD MUST AFFIRMATIVELY CONSENT TO USE OUR OFFERINGS.
IF YOU ARE THE EMPLOYER OR THE PeerPesa™ HEALTH PROGRAM COMPANY, AND YOU REGISTER AN ACCOUNT FOR A CHILD, YOU REPRESENT AND WARRANT TO PeerPesa™ THAT YOU HAVE RECEIVED EXPRESS CONSENT FROM SUCH CHILD’S PARENT OR LEGAL GUARDIAN TO REGISTER THE CHILD FOR THE PeerPesa™ OFFERINGS AND TO PROVIDE TO PEERPESA THE INFORMATION YOU DISCLOSE IN CONNECTION WITH THE REGISTRATION OF SUCH CHILD. WITHOUT LIMITING THE FOREGOING, YOU FURTHER AGREE TO BE BOUND BY THESE TERMS ON BEHALF OF SUCH CHILD. You hereby agree to indemnify, defend and hold harmless PeerPesa™ against any and all claims, losses, liabilities and expenses (including reasonable attorneys’ fees) arising out of or related to
your violation of any provision, representation or warranty in this Section;
the use of the PeerPesa™ Offerings by the Child;
your failure to obtain proper parental or legal guardian consent;
your registration of the Child; or
any other action related to the Child.
19. CHANGES TO THIS PRIVACY POLICY
PeerPesa™ reserves the right to change or update this Privacy Policy at any time by posting a notice on the Site that we are changing our Privacy Policy. If the manner in which we use Personal Information changes, PeerPesa™ will notify Members by:
sending the modified policy to our Members via email; and/or
by any other reasonable means acceptable under applicable state and federal law.
You will have a choice as to whether or not we use your information in this different manner and we will only use your information in this different manner where you opt-in to such use.
20. CONTACT US
If you have any questions or comments about this Privacy Policy, please email our Data Protection Officer at peerpesa.io@gmail.com, or send a letter to: PeerPesa Innovations Ltd.