Logo
Rafiki Dudu Nets

Privacy Policy

We care about your privacy.

Effective date: August 28, 2025

Rafiki Dudu Net (operating as part of Rafiki Pest Control) is committed to protecting the privacy and security of personal information we collect from customers, prospective customers, suppliers and website visitors. This Privacy Policy explains what personal data we collect, why we collect it, how we use and protect it, your rights, and how to contact us.

1. Who we are

Rafiki Dudu Net provides magnetic mosquito nets, retractable nets and related measurement, fabrication, installation and maintenance services across Kenya.

Contact:

Phone: +254 717 819 204

Email: service@rafikipestcontrol.com


Address: Duruma Rd, Nairobi, Kenya

2. Legal framework (what law applies)

We process personal data in accordance with the Data Protection Act, 2019 (Kenya) and guidance issued by the Office of the Data Protection Commissioner (ODPC). This law sets out principles, data subject rights and obligations for data controllers and processors operating in Kenya. Kenya Law

odpc.go.ke

3. Scope — who and what this policy covers

This policy applies to personal data we collect about:

  • Customers and prospective customers (e.g., contact and address details, measurements, photos of premises);
  • Website visitors (via forms, cookies and analytics);
  • Suppliers, subcontractors and business contacts; and
  • Job applicants and contractors.

It covers data collected online, by phone, by SMS/WhatsApp, and in person during visits or site surveys.

4. Personal data we collect

Depending on the service and how you interact with us, we may collect:

Identity & contact data: name, company, postal address, installation site address, email, phone number.

Transactional data: order details, invoices, payment confirmations, payment method (card/MPESA/bank details when required for refunds).

Technical & device data: IP address, device/browser information, referral pages, cookies and analytics from our website.

Site / job-specific data: measurements, photos or videos of your property, access instructions, and notes from site surveys.

Communications: messages, emails, WhatsApp chats and call recordings where applicable for quality and training (with notice).

Supplier/partner data: business contact details, tax/identification where required for contracts.

We aim to collect only data necessary for the stated purpose (data minimisation).

5. How we collect personal data

We collect data when you: request a quote or site visit; place an order; communicate with us by phone, email or WhatsApp; visit our website; make a payment; or otherwise provide information to us in person. We may also collect limited public information about businesses and contacts from public registers or business directories.

6. Purposes and lawful bases for processing

We process personal data for legitimate business purposes including:

  • Contract performance: to quote, manufacture, install, deliver and maintain products and provide customer support (necessary for contract performance).
  • Consent: where you have given clear consent (for example, marketing emails or where required to record a conversation).
  • Compliance & legal obligations: to comply with tax, safety, warranty and record-keeping obligations.
  • Legitimate interests: to send service-related messages, improve our services, manage relationships, prevent fraud and run our business (balanced against your rights).

Where applicable, we will inform you which lawful basis applies when we collect your data.

7. Sharing personal data (who we disclose to)

We may share personal data with:

  • Service providers & subcontractors (fabrication partners, couriers, installers) to deliver and install products.
  • Payment processors and banks to process payments and refunds.
  • Professional advisors (lawyers, auditors) where necessary for legal or compliance reasons.
  • Insurance companies in connection with warranty or insurance claims.
  • Regulators or law enforcement where required by law.

We require third parties to protect personal data and only process it for permitted purposes. Where data is transferred outside Kenya, we will do so only with appropriate safeguards or with your consent as required by law. The Data Protection Act places restrictions on cross-border transfers and requires appropriate safeguards for transfers outside Kenya. Kenya Law

8. Security and protection of data

We implement reasonable organisational and technical measures to protect personal data from unauthorised access, alteration, disclosure or destruction — for example: access controls, encryption of sensitive payment information (where applicable), secure storage, and staff training. Data controllers and processors are required by the Act to implement appropriate technical and organisational measures to protect personal data. DLA Piper Data Protection

odpc.go.ke

Although we take precautions, no transmission over the internet or storage system can be guaranteed 100% secure. If a notifiable personal data breach occurs, we will follow the notification rules under the Data Protection Act, including notifying the ODPC and affected data subjects where required. Kenya Law

9. Retention — how long we keep your data

We retain personal data only for as long as necessary for the purposes described (for example: to complete installation and warranty periods, to meet tax and accounting obligations, and to respond to inquiries or claims). Typical retention periods include: orders and invoices (minimum statutory tax period), warranty records (for the warranty duration), and marketing data until consent is withdrawn. Specific retention schedules will be applied in line with legal requirements and industry practice.

10. Your rights as a data subject

Under the Data Protection Act you have rights including (subject to legal limits):

  • Right to access personal data we hold about you;
  • Right to rectify inaccurate or incomplete data;
  • Right to erasure (right to be forgotten) in some circumstances;
  • Right to restrict or object to processing in certain situations;
  • Right to data portability where applicable; and
  • Right to withdraw consent where processing is based on consent.

To exercise your rights, contact us at service@rafikipestcontrol.com

or +254 717 819 204. We may require identification to fulfil requests and will respond within the timelines required by law. If you remain dissatisfied you may lodge a complaint with the Office of the Data Protection Commissioner (ODPC). The ODPC oversees registration and enforcement of the Data Protection Act in Kenya. odpc.go.ke

11. Cookies, analytics and website tracking

Our website may use cookies and analytics to improve site performance and user experience. Cookies may record basic information about how you use the site (pages visited, session length) but do not contain your payment or sensitive personal data. Where required by law, we seek your consent for non-essential cookies and provide means to opt out.

12. Children

Our services are not directed at children under 18. We do not knowingly collect personal data from minors for commercial purposes. If you believe a child has provided us with personal data, contact us and we will take steps to delete that information where appropriate.

13. International transfers

If we transfer your personal data outside Kenya (for example to a service provider), we will ensure there are appropriate safeguards (such as contractual protections) or obtain your consent where required. The Data Protection Act restricts transfers out of Kenya unless adequate safeguards exist. Kenya Law

14. Changes to this policy

We may update this Privacy Policy from time to time. Material changes will be published with a new “Effective date.” Please check this page periodically for updates.

15. How to contact us & make complaints

Data protection contact: service@rafikipestcontrol.com

| +254 717 819 204 | Duruma Rd, Nairobi.

If you are not satisfied with our response, you may lodge a complaint with the Office of the Data Protection Commissioner (ODPC). odpc.go.ke

16. Additional notes for customers

  • Site photos & measurements: We use site photos and measurements to manufacture and install bespoke nets. By instructing us to survey and measure, you consent to capture and use those images for the stated purpose. If you want photos deleted after installation (subject to invoice/warranty requirements), contact us.
  • Call/WhatsApp recordings: We may record calls for quality and training; we will try to inform you where practicable. If you object, please notify us before the call.
  • Payments & refunds: Payment data is used only to process payments and refunds; we never store full card details on our systems (payment processors handle such information).