Legal Directory
Compliance Statement

Botswana Data Protection

kgomoID is designed to be fully compliant with the Botswana Data Protection Act (DP Act). Below is our current compliance status across the core data protection principles.

Implemented

Lawfulness, Fairness & Transparency

Explicit consent collection at signup and transparent privacy notices.

Implemented

Purpose Limitation

Data is strictly used for livestock identity and security as per the mission.

Implemented

Data Minimization

Only essential identity and biometric fields are collected.

Implemented

Accuracy

User-managed profiles and AI-assisted verification ensure high data fidelity.

Implemented

Storage Limitation

Automated retention policies clear expired invitations (30d) and legacy audit logs (2y) periodically.

Implemented

Integrity & Confidentiality

Strict Row Level Security (RLS) and encryption protect all platform data.

Data Protection Officer (DPO)

kgomoID has appointed a dedicated Data Protection Officer to oversee compliance and handle user requests. In accordance with the DP Act, our DPO ensures that all biometric and personal data processing adheres to the highest standards of fairness and lawfulness.

Cross-Border Transfers

While our primary operations are in Botswana, we utilize secure cloud infrastructure (Supabase) which may process data in regional data centers. All transfers are protected by standard contractual clauses and encryption to ensure that Botswana DPA standards are maintained regardless of physical storage location.

Security Breach Protocol

In the event of a suspected data breach, kgomoID is committed to notifying the Information Regulator of Botswana and affected users within the timelines mandated by the DP Act.