Privacy Policy

Last updated: January 13, 2026

AMP Direct β€’ Accra, Ghana β€’ Compliant with Ghana DPA, GDPR & CCPA

Introduction

Welcome to AMP Direct. We are committed to protecting your privacy and handling your personal data responsibly and transparently. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our website, contact us for services, or engage with our web development and digital agency services.

AMP Direct is a web development agency based in Accra, Ghana, serving clients locally and internationally. We comply with the Ghana Data Protection Act, 2012 (Act 843), the European Union's General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable international data protection laws.

Key Principle: We only collect data necessary to provide our services and respond to your inquiries. We never sell your personal information to third parties.

Data Controller Information

For the purposes of applicable data protection laws, AMP Direct is the data controller responsible for your personal information.

Company Details:

Information We Collect

We collect different types of information depending on how you interact with our website and services:

1. Information You Provide Directly

Contact Form Submissions:

  • Full name (required)
  • Email address (required)
  • Phone number (optional)
  • Company name (optional)
  • Country/location (optional)
  • Your message or inquiry details

Quote Request Forms:

  • All contact form information (above)
  • Project description and requirements
  • Budget range and timeline expectations
  • Preferred communication method
  • Specific service needs (website, app, e-commerce, etc.)

Newsletter Subscriptions:

  • Email address (required)
  • Name (optional)
  • Subscription timestamp

2. Information Collected Automatically

Technical Data:

  • IP address (anonymized for analytics)
  • Browser type and version
  • Device type and operating system
  • Screen resolution
  • Pages visited and navigation paths
  • Time and date of visits
  • Time spent on pages
  • Referring website or source
  • Approximate geographic location (country/city level)

Cookies and Similar Technologies:

  • Essential cookies for website functionality
  • Analytics cookies (Google Analytics) for performance tracking
  • Session cookies for user experience

Important: We do NOT collect sensitive personal data such as racial or ethnic origin, political opinions, religious beliefs, health data, or biometric data unless explicitly necessary for a specific service and with your express consent.

How We Use Your Data

We use your personal information only for legitimate business purposes:

πŸ“§ Service Delivery & Communication

  • Respond to your inquiries and questions
  • Provide quotes and proposals for requested services
  • Deliver contracted web development services
  • Send project updates and communications
  • Provide customer support

πŸ“Š Analytics & Improvement

  • Analyze website performance and user behavior
  • Improve our website design and functionality
  • Optimize user experience
  • Identify technical issues
  • Test new features and services

πŸ“¨ Marketing (With Your Consent)

  • Send newsletters you explicitly subscribed to
  • Share company updates and blog posts
  • Inform you about new services (if opted in)
  • You can unsubscribe anytime via the link in emails

βš–οΈ Legal & Security

  • Comply with legal obligations and regulations
  • Prevent fraud and security threats
  • Protect our rights and property
  • Enforce our terms and conditions
  • Respond to legal requests from authorities

What We DO NOT Do: We never sell, rent, or trade your personal information to third parties for their marketing purposes. We do not use your data for automated decision-making or profiling that produces legal or significant effects.

Data Sharing & Third Parties

We may share your personal information with trusted third-party service providers who help us operate our business. All third parties are carefully selected and contractually obligated to protect your data:

Email Service Provider

Provider: Brevo (EU-based, GDPR compliant)

Purpose: Sending newsletters, transactional emails, and service communications

Website Hosting

Providers: Vercel (frontend), Render/Railway (backend)

Purpose: Hosting our website and storing application data securely

Analytics Platform

Provider: Google Analytics (with IP anonymization)

Purpose: Website performance tracking, user behavior analysis, traffic statistics

Payment Processors

Providers: Stripe, PayPal (when applicable)

Purpose: Secure payment processing for services. We do NOT store credit card information.

When We May Disclose Data

  • Legal Requirements: When required by law, court order, or government regulation
  • Rights Protection: To protect our rights, property, safety, or that of our users
  • Business Transfers: In connection with a merger, acquisition, or sale of assets (with notice to you)
  • With Your Consent: Any other disclosure will only occur with your explicit permission

Cookies & Tracking Technologies

Cookies are small text files stored on your device that help us provide and improve our services. We use the following types of cookies:

βœ… Essential Cookies (Always Active)

These cookies are necessary for the website to function properly and cannot be disabled.

Purpose: Session management, security, user authentication, form submissions

πŸ“Š Analytics Cookies (Can Be Disabled)

Help us understand how visitors use our website so we can improve user experience.

Provider: Google Analytics β€’ Data: Anonymized IP addresses, page views, session duration

πŸͺ What We DON'T Use

We do NOT use advertising cookies, social media tracking pixels, or third-party marketing cookies.

Managing Cookies

You can control cookies through your browser settings. Most browsers allow you to:

  • View and delete cookies
  • Block third-party cookies
  • Block all cookies (may affect website functionality)
  • Delete cookies when closing the browser

Learn more: www.allaboutcookies.org

Data Security

We take the security of your personal data seriously and implement appropriate technical and organizational measures to protect it:

πŸ”’ Technical Measures

  • β€’ SSL/TLS encryption for all data transmission
  • β€’ Encrypted data storage
  • β€’ Secure server infrastructure
  • β€’ Regular security updates and patches
  • β€’ Firewall protection
  • β€’ Intrusion detection systems

πŸ‘₯ Organizational Measures

  • β€’ Access controls and authentication
  • β€’ Staff training on data protection
  • β€’ Confidentiality agreements
  • β€’ Regular security audits
  • β€’ Incident response procedures
  • β€’ Secure backup systems

Important Notice: While we implement strong security measures, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security but continuously work to protect your data using industry best practices.

Data Breach Notification: In the unlikely event of a data breach that affects your personal information, we will notify you and relevant authorities within 72 hours as required by applicable laws.

Data Retention

We retain your personal data only as long as necessary for the purposes outlined in this policy or as required by law:

Data TypeRetention PeriodReason
Contact inquiries2 yearsFollow-up opportunities, service records
Newsletter subscribersUntil unsubscribe + 30 daysMarketing consent management
Client project data7 yearsTax, accounting, legal requirements
Analytics data26 monthsGoogle Analytics default, performance tracking
Website cookiesSession to 2 yearsVaries by cookie type and purpose
Backup data90 daysDisaster recovery, data integrity

After the retention period expires, we securely delete or anonymize your personal data. You can request earlier deletion by contacting us (subject to legal obligations).

Your Privacy Rights

Under GDPR, CCPA, and Ghana Data Protection Act, you have the following rights regarding your personal data:

πŸ” Right to Access

Request a copy of all personal data we hold about you, including how we use it and who we share it with.

✏️ Right to Rectification

Request correction of inaccurate or incomplete personal data.

πŸ—‘οΈ Right to Erasure ("Right to be Forgotten")

Request deletion of your personal data when it's no longer necessary or if you withdraw consent (subject to legal obligations).

🚫 Right to Object

Object to processing based on legitimate interests or for direct marketing purposes.

⏸️ Right to Restriction

Request limitation of processing while we verify accuracy or address your concerns.

πŸ“¦ Right to Data Portability

Receive your personal data in a structured, commonly used format (e.g., CSV, JSON) to transfer to another service.

❌ Right to Withdraw Consent

Withdraw consent for newsletter subscriptions or marketing communications at any time.

βš–οΈ Right to Lodge a Complaint

File a complaint with your local data protection authority if you believe your rights have been violated.

How to Exercise Your Rights

To exercise any of these rights, please contact us:

  • Email: privacy@ampdirect.com
  • Subject Line: "Data Privacy Request - [Your Right]"
  • Include: Your full name, email address, and specific request details
  • Response Time: Within 30 days (may extend to 60 days for complex requests)
  • Verification: We may request identification to confirm your identity before processing
  • Free of Charge: No fee for requests unless excessive or repetitive

International Data Transfers

As an international agency serving clients worldwide, your personal data may be transferred to and processed in countries outside Ghana, including the European Union and the United States.

How We Protect International Transfers

  • GDPR Compliance: We use Standard Contractual Clauses (SCCs) approved by the European Commission for EU data transfers
  • Adequate Safeguards: All third-party providers meet international data protection standards
  • Brevo (Email): EU-based service provider with GDPR compliance
  • Google Analytics: Data Processing Amendment signed, IP anonymization enabled
  • Hosting Providers: Use data centers with certifications (ISO 27001, SOC 2)

Your Rights: Regardless of where your data is processed, you retain all privacy rights outlined in this policy, including GDPR rights if you're in the EU.

Children's Privacy

Our services are not directed to individuals under the age of 16. We do not knowingly collect personal information from children under 16 years old.

If you are a parent or guardian and believe your child has provided us with personal information without your consent, please contact us immediately at privacy@ampdirect.com. We will take prompt steps to delete such information from our systems.

Age Verification: By using our website and services, you confirm that you are at least 16 years old or have parental/guardian consent.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, services, legal requirements, or for other operational reasons.

When we make changes:

  • The "Last Updated" date at the top of this page will be revised
  • Material changes will be highlighted prominently on our website
  • For significant changes affecting your rights, we may notify you via email
  • Continued use of our services after changes constitutes acceptance

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

AMP Direct - Data Protection Contact

General Inquiries:

contact@ampdirect.com

Privacy Requests:

privacy@ampdirect.com

Location:

Accra, Ghana

Supervisory Authorities

If you believe we have not addressed your privacy concerns adequately, you have the right to lodge a complaint with:

Legal Disclaimer

This Privacy Policy is provided for general information and compliance purposes. While we strive for accuracy and completeness, it does not constitute legal advice. Privacy laws vary by jurisdiction and are subject to change.

AMP Direct is committed to protecting your privacy and handling your data responsibly in accordance with applicable laws. For specific legal questions regarding your rights or our practices, please consult a qualified attorney or contact us at privacy@ampdirect.com.

Questions About Our Privacy Practices?

We're committed to transparency and protecting your data. Contact us anytime with privacy questions or concerns.

Email Privacy TeamGeneral Contact