Privacy Policy

Last Updated: July 2026

1. Introduction

At Tholca Digital, operating as NanoNGO, we recognize the critical nature of the data managed by non-profits and social enterprises. This Privacy Policy outlines our secure cloud-based approach to data management and our strict adherence to the Zambian Data Protection Act (ZDPA).

2. Cloud Architecture & Data Security

NanoNGO operates on a secure, centralized cloud infrastructure. This means:

  • Your organizational data, including beneficiary details and financial records, is hosted securely in our enterprise-grade cloud environments, ensuring it is backed up and accessible from anywhere.
  • We utilize robust, industry-standard encryption protocols for data both in transit and at rest to protect your information from unauthorized access.
  • Our platform provides granular, role-based access control, ensuring that sensitive organizational data is only visible to your specifically authorized team members.

3. Roles Under the ZDPA

In the context of the Zambian Data Protection Act:

  • You (The Organization): Act as the Data Controller. You determine the purpose and means of processing personal data within the NanoNGO platform.
  • NanoNGO: Acts strictly as a Data Processor. We provide the secure software infrastructure but do not access, sell, mine, or analyze your encrypted operational data.

4. Account and Billing Data

To provide our services, we do collect limited information regarding your account (organization name, administrative contact emails) and billing details. Payment processing is managed securely, and we do not store full credit card numbers on our servers.

5. Contact Information

For inquiries regarding data privacy, your rights as a data subject, or compliance matters, please contact our Data Protection Officer at support@nanongo.com.