This Privacy Policy outlines how Teak Pharma (“We,” “Us,” or “Our”) collects, uses, protects, and discloses information gathered through our website and in the provision of our regulatory, commercial, and scientific consulting services across Sub-Saharan Africa (SSA).
Given our focus on the highly regulated pharmaceutical sector and operations across multiple African jurisdictions, this policy aims for compliance with key global standards (like the GDPR) and major African data protection acts (such as South Africa’s POPIA, Nigeria’s NDPR, and Kenya’s DPA).
1. Information We Collect
We collect information that allows us to provide our specialized consulting services and manage our business relationship with you.
A. Personal Information (Provided by You)
This includes identifiable data collected when you contact us, sign up for a newsletter, or engage in a contract for services:
Identity & Contact Data: Name, job title, company name, professional email address, phone number, and mailing address.
Professional Data: Information relevant to our consulting work, such as your professional background, qualifications (if a Key Opinion Leader or HCP), and details necessary for project execution (e.g., regulatory submission documents, market analysis requirements).
Communication Data: Records of your correspondence with us via email, contact forms, or phone.
B. Sensitive Personal Data
Given our industry, we may occasionally process categories of sensitive data, such as health or medical data, but only strictly as necessary for:
Patient Services: Managing patient support programs (PSPs) or Real World Evidence (RWE) generation, where data is typically anonymized or pseudonymized and always processed with explicit, informed consent and in strict adherence to local laws.
Clinical/Scientific Projects: Handling data related to clinical trials, pharmacovigilance, or medical affairs, following the highest ethical and legal standards.
C. Automatically Collected Data
When you visit our website, we automatically collect data about your device and activity:
Technical Data: Internet Protocol (IP) address, browser type and version, operating system, and unique device identifiers.
Usage Data: Information about how you use our website, including pages viewed, time spent on pages, referral sources, and search terms.
Cookies: We use cookies and similar tracking technologies (like Google Analytics) to enhance your experience and analyze site traffic.
2. How We Use Your Information (Purpose and Legal Basis)
We use your Personal Information only when we have a legal basis to do so, primarily for the following purposes:
3. Sharing and Disclosure of Your Information
We do not sell your personal data. We only share it with third parties as necessary and under strict confidentiality agreements:
Affiliates and Subcontractors: Sharing data with our internal team or trusted, vetted third-party contractors (e.g., specialized analysts, local legal counsel, IT service providers) to fulfill the contract. They are obligated to comply with this Privacy Policy.
Regulatory Authorities: Disclosing information when legally required to do so, such as in the context of pharmacovigilance reporting or a government inquiry from bodies like the African Medicines Agency (AMA) or national regulators (e.g., NAFDAC, SAHPRA).
Business Transfers: In the event of a merger, acquisition, or asset sale, your Personal Information may be part of the transferred assets.
4. International Data Transfers (Cross-Border Compliance)
As a consultancy focused on SSA, data transfer is inherent to our operations.
Data is often transferred between SSA countries (e.g., from Kenya to South Africa) and internationally (e.g., to an EU- or US-based client).
We ensure all cross-border transfers are lawful by implementing Standard Contractual Clauses (SCCs), relying on the client’s or recipient’s adherence to an adequate data protection law (like GDPR), or obtaining your explicit consent.
5. Your Data Protection Rights
Depending on your location (e.g., EU, UK, South Africa, Nigeria), you may have the following rights regarding your Personal Information:
Right to Access: To receive a copy of the Personal Information we hold about you.
Right to Rectification: To request correction of incomplete or inaccurate data we hold about you.
Right to Erasure (‘Right to be Forgotten’): To request that we delete your data, subject to certain legal exceptions (e.g., data required for legal compliance in the pharma sector).
Right to Object/Restrict Processing: To object to the processing of your data in certain circumstances (e.g., for direct marketing).
Right to Data Portability: To request that your data be transferred to you or a third party in a structured, commonly used format.
Right to Withdraw Consent: Where we rely on consent to process your data, you can withdraw it at any time.
To exercise any of these rights, please contact us using the details in Section 7.
6. Security and Data Retention
Security: We employ robust technical and organizational measures (including encryption, access controls, and regular training) to protect your Personal Information from unauthorized access, loss, or disclosure.
Retention: We only retain your Personal Information for as long as necessary to fulfill the purposes we collected it for, including for satisfying any legal, regulatory (crucial in the pharmaceutical industry), accounting, or reporting requirements.
7. Contact Us
If you have any questions about this Privacy Policy or wish to exercise your data rights, please contact us:
Data Protection/Compliance Officer:
Email: privacy@teakpharma.com
Mailing Address: [Placeholder: Legal Address of Teak Pharma]
We reserve the right to update this policy periodically to reflect changes in our practices or legal obligations. We encourage you to review it regularly. Last updated: September 2025