Legal Documentation Suite

Privacy Policy

Last Modified: May 26, 2026 • Effective Date: Immediate

1. Overview & Scope

Welcome to Allo Gadgets Kenya ("we," "us," or "our"). We operate high-performance digital retail systems, e-commerce storefronts, and software solutions, including allogadgets.com, allogadgets.co.ke, allo.co.ke, and our integrated platform services. We are fully committed to protecting your personal data and ensuring strict compliance with applicable regulatory frameworks.

This Privacy Policy outlines how we collect, process, secure, and share personal information when you navigate our platforms, purchase consumer hardware, register devices, or leverage our interactive services.

Regulatory Compliance Framework: This policy is executed in strict adherence to the Kenya Data Protection Act, 2019. Where cross-border interactions or enterprise operations occur, we balance our protocols to support global standards of data autonomy.

2. Personal Data We Collect

We only collect the minimum amount of personal data necessary to provide you with secure, high-performance electronics retail services and smooth platform interfaces.

Identity & Contact Data

Includes your full name, billing addresses, shipping destination protocols, phone numbers (including mobile lines registered for messaging), and valid email addresses.

Hardware Diagnostics & Tracking

When purchasing, financing, or trading in electronics, we record system identities including IMEI numbers, serial numbers, hardware models, configuration parameters, and device condition metrics.

Financial Transaction Records

Includes transaction references, payment parameters, and structural histories from mobile money platforms (such as Safaricom M-PESA STK metadata) and financial bank networks. We do not directly capture or store raw credit card credentials on our servers.

Technical & Telemetry Traces

Includes login Internet Protocol (IP) addresses, device fingerprint data, browser configurations (e.g., Chrome or Safari multi-tab signatures), cookies, and real-time interaction session trajectories.

3. Purposes of Data Processing

We process your personal information under explicit legal bases, including contractual obligations, legitimate business execution, and statutory compliance. Specifically, your data serves to:

  • Fulfill Orders & Logistics: Processing payments, tracking consignments, validating inventory delivery, and provisioning warranty structures.
  • Manage Financing Systems: Operating item reservation configurations and structured weekly/monthly payment calculations for hardware options.
  • Maintain Account & Platform Integrity: Powering automated threat analysis engines, monitoring unusual connection environments, and issuing immediate IP warning flags for unrecognized login behaviors.
  • Facilitate Instant Communication: Routing purchase requests, tracking custom device queues, and managing automated inquiry handshakes via WhatsApp and encrypted email gateways.

4. Third-Party Sharing Protocols

We do not lease, sell, or trade your personal information to third-party data aggregators. Data transfers are strictly limited to specialized infrastructure platforms essential to complete core operational workflows:

Service Category Operational Purpose Data Shared
Payment Gateways Processing Safaricom Daraja M-PESA APIs and banking clearings. Phone number, transaction amount, invoice ID.
Logistics Providers Fulfilling on-the-ground package delivery across Kenya. Name, phone number, shipping address.
Communication APIs Routing instant inquiries via WhatsApp Link engines. Name, contact numbers, structured device specifications.
Analytics & Search Eng. Optimizing platform layouts, visibility parameters, and technical performance. Anonymized browser telemetry, IP patterns, cookie states.

5. Infrastructure & Data Security

Our platform incorporates enterprise-grade security protocols to prevent accidental deletion, loss, unauthorized alteration, or malicious access to your personal files:

  • Encryption Matrix: All transactional and profile payloads are protected in transit using industry-standard Secure Sockets Layer (SSL) and Transport Layer Security (TLS) mechanisms.
  • Access Restrictions: Employee access to your database records is strictly restricted using multi-factor authentication (MFA) on a need-to-know basis.
  • Honeypots & Anti-Bot Infrastructure: Interactive layers run automated client verification tracking alongside time-based validation metrics to catch and neutralize automated scraping scripts or malicious bot networks silently.

6. Your Statutory Rights

Under the Kenya Data Protection Act (2019), you retain full ownership and sovereign control over your digital footprint. Your statutory legal privileges include:

The Right to Access: You can request detailed summaries of all personal records we maintain on your profile.
The Right to Rectification: You can update inaccurate records or complete missing information profiles at any time.
The Right to Erasure ("Right to be Forgotten"): You can request the complete deletion of your files, provided they are no longer required for active legal, financial tax compliance, or warranty obligations.
The Right to Object/Restrict: You have the absolute authority to stop processing paths used for direct marketing or automated profiling.

7. Compliance Contact

If you have any questions about this Privacy Policy, wish to exercise your data rights, or need to log a formal request regarding your profile details, please reach out to our dedicated data compliance team:

Allo Gadgets Corporate Office

Entity: Bitlife Technologies Limited

Physical Address: Kimathi Street, Kimathi House, 2nd Floor, Room 207, Office 4, Nairobi, Kenya

Official Email: [Enable JavaScript to view secure email contact]

Support Channels: +254 740 859 177 | +254 707 244 845