Client support

Onix Data Regulations

Cybersecurity

Data
protection

Legal
Responsibilities

Regulation of Investigatory Powers

Privacy Policy

Learn more about how Onix Data Centre collects and uses data and your rights.

1. Introduction

Onix Data Centres Ghana Limited (“Onix”, “we”, “us”) is committed to protecting the privacy and personal data of individuals in accordance with the Ghana Data Protection Act, 2012 (Act 843). This Privacy Policy outlines how we collect, use, share, and safeguard personal information through our services, operations, and facilities.
This Policy applies to clients, partners, website users, vendors, visitors, employees, and any individual whose personal data we collect or process.

2. Personal Data We Collect

We may collect and process the following categories of personal data:

  • Identification Data: Name, national ID, passport, company name, job title.
  • Contact Details: Phone number, email, postal address.
  • Biometric Data: Fingerprints or facial data for access control (with consent).
  • CCTV Footage: Captured within and around our facilities.
  • Digital Identifiers: IP address, browser/user agent information (for website use).
  • Employee & Vendor Data: Bank details, SSNIT number, education/employment history.
  • Cookies and Device Data: Information gathered through our website (see Section 12).

3. How We Use Your Data

We process your personal data for the following lawful purposes:

  • To provide data centre services and facility access.
  • To fulfil contractual and legal obligations.
  • For internal operations including HR and vendor management.
  • To enhance safety and security through biometric and video surveillance.
  • To manage client communications and service improvement.
  • To comply with requests from regulatory authorities.

4. Legal Basis for Processing

Our processing is based on one or more of the following:

  • Your consent, where required.
  • Contractual necessity, such as service delivery.
  • Legal obligations, including statutory reporting.
  • Legitimate interests pursued by Onix or a third party, provided your rights are not overridden.

5. How We Obtain Your Data

Personal data may be obtained:

  • Directly from you via forms, access systems, or communication.
  • From third parties, with your consent.
  • Through our IT systems, including CCTV, biometric readers, and website logs.

6. Sharing of Personal Data

We may share your data with:

  • Authorized service providers (e.g., IT, access control, and security contractors).
  • Legal or regulatory authorities, when required by law.
  • Auditors, legal advisors, or insurers under confidentiality agreements.

We do not sell personal data.

7. International Transfers

We may transfer personal data outside Ghana only if:

  • The destination country offers adequate data protection safeguards; or
  • You have given explicit consent; or
  • It is necessary for contractual performance; or
  • There are appropriate safeguards (e.g., Standard Contractual Clauses) in place.

All international transfers comply with Section 40 of the Ghana Data Protection Act.

8. Your Rights

You have the following rights under the Ghana Data Protection Act:

  • Right to access your personal data.
  • Right to rectify inaccuracies.
  • Right to erasure of data (under certain conditions).
  • Right to object to processing.
  • Right to prevent direct marketing.
  • Right to restrict processing.
  • Right to lodge a complaint with the Data Protection Commission.

To exercise your rights, contact our Data Protection Officer (see Section 14).

9. Data Retention

We retain personal data only as long as necessary for:

  • The purpose for which it was collected.
  • Regulatory or legal requirements.
  • Contractual obligations.

Once no longer required, data is securely deleted, anonymized, or destroyed.

10. Data Security

We use physical, organizational, and technical safeguards to protect personal data, including:

  • 24/7 CCTV surveillance
  • Biometric access control
  • Encrypted systems and password protection
  • Role-based access and internal audits
  • Secure disposal of physical documents

11. Cookies and Tracking Technologies

This website uses only essential and performance-related cookies to ensure smooth operation and understand general usage patterns through anonymous data, such as visit counts and time spent on pages.

We do not use advertising, tracking, or third-party cookies, nor do we collect any personal data. Since our cookies are limited to core functionality and analytics, no active user consent is required. You can always delete cookies from your browser settings, and if you have more questions, visit www.allaboutcookies.org for more information.

12. Data Breach Notification

In the event of a data breach:

  • We will notify the Data Protection Commission promptly where applicable.
  • Affected individuals will be informed if there is a risk to their rights and freedoms.
  • Investigations will be conducted and remedial action taken.

13. Policy Updates

We may update this policy to reflect changes in law or operations. Updated versions will be posted on our website and available upon request.

14. Contact Us

Data Protection Officer

Kevin Opata

Facilities Manager

kevin@onixdatacentres.com

+233 59 874 6584

Connecting Africa to the Globe

Twitter Linkedin

Navigate

Get in touch