Privacy Policy

Welcome to HEBO Consult (“we,” “our,” or “us”). We are committed to protecting your personal data and ensuring that your information is handled in accordance with the Personal Data Protection Act, 2022 of Tanzania and applicable regulations.

This Privacy Notice explains how we collect, use, disclose, and safeguard your personal information when you visit www.hebogroup.com.

Data Protection Principles

We adhere to the following principles of data protection:

  • Lawfulness, fairness, and transparency in processing personal data.
  • Collecting personal data only for specific, explicit, and legitimate purposes.
  • Ensuring personal data is accurate and kept up to date.
  • Storing personal data only as long as necessary.
  • Implementing appropriate security measures to protect personal data.

Information We Collect

We may collect the following types of information when you interact with our website or services:

  • Personal Data: Name, email address, phone number, postal address, organization details, and any information you provide when contacting us or registering for our programs.
  • Special Categories of Data (if applicable): We generally do not collect sensitive personal data. If required for specific training or regulatory compliance, we will seek explicit consent.

Why and How We Collect Personal Information

We collect your personal information to:

  • Comply with legal and regulatory requirements.
  • Provide training, consulting, and advisory services.
  • Process registrations and payments.
  • Communicate with you about programs, events, and offers.
  • Improve our website and services.

Legal Basis for Processing

We process personal data based on:

  • Consent – when you voluntarily provide your information (e.g., signing up for training).
  • Contract – when processing is necessary to deliver services you have requested.
  • Legal obligations – when required by Tanzanian laws and regulations.
  • Legitimate interests – to improve our services, maintain website functionality, and conduct business operations.

How We Use the Collected Personal Data

Your data may be used to:

  • Deliver our training and consulting programs.
  • Manage customer relationships and respond to inquiries.
  • Send newsletters, updates, and promotional materials (with your consent).
  • Monitor website usage for performance and security purposes.

How We May Share Personal Data

We may share your data with:

  • Service providers (e.g., IT support, payment processors, cloud hosting).
  • Regulatory bodies (e.g., Engineers Registration Board, AQRB) when required for certification.
  • Partners (e.g., PMI, CertiProf, Icapacity, Westford Online) for accreditation and certification purposes.

We do not sell your personal data to third parties.

Cross-Border Data Transfers

If personal data is transferred outside Tanzania (e.g., to PMI or other global partners), we ensure compliance with the Personal Data Protection Act, 2022, and obtain the necessary permits and safeguards.

Children’s Privacy

Our website and services are not directed to children under 18. We do not knowingly collect personal data from children. If we discover that we have collected data from a minor, we will take immediate steps to delete it.

Data Storage

Personal data may be stored on secure servers and cloud systems. Access is restricted to authorized personnel only.

Data Retention

We retain personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Notice, comply with legal requirements, resolve disputes, and enforce agreements.

Your Rights as a Data Subject

Under the Personal Data Protection Act, 2022, you have the right to:

  • Access your personal data.
  • Request correction of inaccurate data.
  • Request deletion of your data (subject to legal requirements).
  • Restrict or object to processing.
  • Withdraw consent at any time.

Security of Personal Data

We implement appropriate technical and organizational measures, including encryption, access controls, and regular security reviews, to protect your personal data from unauthorized access, loss, or misuse.

Automated Decision-Making and Profiling

We do not use automated decision-making or profiling that produces legal or significant effects on you.

Third-Party Links

Our website may contain links to external sites. We are not responsible for the privacy practices of those websites.

Cookies and Tracking Technologies

Our website uses cookies to improve your browsing experience. Please refer to our Cookies Policy for more information.

How to Complain

If you have concerns about how we handle your personal data, you may contact us at the details below. If unresolved, you have the right to lodge a complaint with the Personal Data Protection Commission (PDPC), Tanzania.

Changes to This Privacy Notice

We may update this Privacy Notice from time to time. Any updates will be posted on this page with a new effective date.

Contact Us

If you have any questions, concerns, or requests related to your personal data, our privacy practices, or this privacy policy, please feel free to contact us. You can reach our Data Protection Officer (DPO) or our designated privacy contact using the following contact information:

  • Name of Organization: HEBO GROUP COMPANY LIMITED
  • Data Protection Officer (DPO): Jastine Martine
  • Email: [email protected]
  • Mailing Address: 1571, Nova Road, Kawe Beach Dar Es Salaam TZ
  • Phone: +255 679 123 303

We are committed to addressing your inquiries and concerns promptly and in accordance with applicable data protection laws.

Additional information

How we protect your data

We take the security of your personal data seriously. We employ industry-standard measures to safeguard your information from unauthorized access, disclosure, alteration, or destruction. These measures include encryption, secure socket layer (SSL) technology, regular security audits, and access controls to protect your data.

What data breach procedures do we have in place

In the event of a data breach, we have established a rigorous procedure to promptly identify and mitigate the breach’s impact. Our team will conduct an investigation, notify affected individuals as required by applicable laws, and take immediate steps to rectify the breach and enhance our security measures to prevent future incidents.

Book A Free Consultation

FREE CONSULTATION