Certifications Offices Global

Privacy Policy

Privacy Policy

Last updated: May 2026

RoyalCert Uganda ("RoyalCert", "we", "us", "our") is committed to protecting the privacy and security of your personal information. This Privacy Policy describes how we collect, use, store and share personal data when you interact with us through our website, services or other communications.

1. Information We Collect

We may collect the following categories of personal information:

  • Contact information — name, email address, telephone number, postal address
  • Professional information — job title, employer name, industry sector
  • Enquiry and correspondence data — the content of messages you send us
  • Certification records — information about certifications held, audit history and compliance records
  • Website usage data — IP address, browser type, pages visited, referral source (via analytics cookies)

2. How We Use Your Information

We use your personal information for the following purposes:

  • To provide certification, inspection and testing services you have requested
  • To respond to enquiries and provide quotes
  • To send service-related communications including audit schedules and certificate renewals
  • To send newsletters and marketing communications (where you have consented)
  • To comply with our legal and accreditation obligations
  • To improve our website and services
  • To manage our business relationship with you or your organisation

3. Legal Basis for Processing

We process your personal data on the following legal grounds:

  • Contract performance — to fulfil certification and service agreements
  • Legitimate interests — to manage our business and client relationships
  • Legal obligation — to comply with accreditation and regulatory requirements
  • Consent — for marketing communications (which you may withdraw at any time)

4. Data Sharing

We do not sell your personal information to third parties. We may share your data with:

  • Accreditation bodies, where required for accreditation compliance (e.g. UNAB, IAF)
  • Public certification registers, where required by accreditation rules
  • Trusted service providers acting as data processors on our behalf
  • Regulatory authorities, where required by law

5. Data Retention

We retain personal data for as long as necessary to fulfil the purposes described in this Policy and to comply with our legal and accreditation obligations. Certification records are typically retained for a minimum of 10 years in accordance with accreditation requirements.

6. Your Rights

Under the Uganda Data Protection and Privacy Act and applicable data protection laws, you have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data (subject to legal and accreditation obligations)
  • Object to processing based on legitimate interests
  • Withdraw consent for marketing at any time

7. Contact

To exercise your rights or raise a concern about our data practices, please contact us at tuhilre.herbert@royalcert.com or write to: Plot 19 Robert Mugabe Rd, Kampala, Uganda.

8. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated date. Continued use of our website after changes constitutes acceptance of the revised policy.