top of page

Privacy Policy

This Privacy Policy explains how the Centre for Indo-oceanic Territorial Development Studies Ltd (CEDTI) (“we”, “us”, “our”) collects, uses, shares, and protects your personal data when you visit our website www.cedti.net and use our sign-up or account-creation features. We are committed to processing your data in accordance with the General Data Protection Regulation (EU) 2016/679 (GDPR).

By creating an account or using our services, you acknowledge that you have read and understood this Policy.

 

1. Data Controller

Centre for Indo-oceanic Territorial Development Studies (CEDTI)
Website: www.cedti.net
Email: info@cedti.net
Address: The Hive, Nouvelle Usine, Floreal, Mauritius

Data Protection Officer (DPO): Farrah Jahangeer
Email: info@cedti.net

2. Personal Data We Collect

2.1 Data You Provide Directly

When you sign up or interact with our website, we may collect:

  • Full name

  • Email address

  • Password (securely hashed)

  • Contact details

  • Any information you voluntarily submit through forms or communication

2.2 Data Collected Automatically

When you browse our website, we may collect:

  • IP address

  • Browser type and version

  • Device information

  • Pages visited, time spent, and usage patterns

  • Cookies and tracking technologies

2.3 Special Categories of Data

We do not intentionally collect sensitive personal data (e.g., health, ethnicity, political opinions). If such data is ever collected, it will only be with your explicit consent and in compliance with the DPA 2017 and GDPR.

3. Legal Bases for Processing (Article 6 GDPR)

We process your personal data based on one or more of the following lawful bases:

  • Contractual necessity: to create and manage your account, provide services, and respond to your requests.

  • Legitimate interests: to improve our website, ensure security, and prevent fraud.

  • Consent: for optional features such as newsletters or marketing communications.

  • Legal obligation: to comply with applicable laws and regulatory requirements.

4. How We Use Your Personal Data

We use your data to:

  • Create and manage your user account

  • Provide, maintain, and improve our services

  • Communicate updates, notifications, or support messages

  • Personalise your experience

  • Monitor website performance and security

  • Support research, analysis, and institutional reporting (in anonymised or aggregated form where possible)

  • Comply with legal obligations

We do not use your data for automated decision-making or profiling that produces legal or significant effects.

5. Cookies and Tracking Technologies

We use cookies and similar technologies to:

  • Keep you logged in

  • Analyse website traffic and performance

  • Improve user experience

You can manage or disable cookies through your browser settings. For more details, see our Cookie Policy.

6. Data Sharing and Transfers

We do not sell your personal data.

We may share your data with:

  • Service providers (hosting, analytics, email delivery)

  • Professional advisers (legal, accounting)

  • Authorities when required by law

All third parties are bound by confidentiality and data‑processing agreements compliant with the DPA 2017 and GDPR. 

6.1 International Transfers

If your data is transferred outside the EU/EEA, we ensure appropriate safeguards such as:

  • European Commission adequacy decisions

  • Standard Contractual Clauses (SCCs)

  • Additional technical and organisational measures

Such transfers comply with Section 36 of the Mauritius Data Protection Act 2017 and Chapter V of the GDPR.

7. Data Retention

We retain your personal data only for as long as necessary to:

  • Provide our services

  • Fulfil contractual obligations

  • Support research and institutional reporting

  • Comply with legal requirements

When no longer needed, your data will be securely deleted or anonymised.

8. Your GDPR Rights

Under the Mauritius Data Protection Act 2017 and the GDPR, you have the right to:

  • Access your personal data

  • Rectify inaccurate or incomplete data

  • Erase your data (“right to be forgotten”)

  • Restrict processing

  • Object to processing based on legitimate interests

  • Data portability (receive your data in a structured, machine-readable format)

  • Withdraw consent at any time

  • Lodge a complaint with your local Data Protection Authority

9. Security Measures

We implement appropriate technical and organisational measures to protect your data, including:

  • Encryption

  • Secure password hashing

  • Access controls

  • Regular security monitoring

However, no online system is completely secure, and we cannot guarantee absolute protection.

10. Third-Party Links

Our website may contain links to external websites. We are not responsible for their privacy practices or content.

11. Children’s Privacy

Our services are not intended for individuals under 16 years of age, and we do not knowingly collect data from children.

12. Changes to This Privacy Policy

We may update this Policy from time to time. Any changes will be posted on this page with an updated “Last Updated” date. Continued use of the website after changes indicates acceptance.

13. Contact Us

For questions, concerns, or data-rights requests, contact:

Centre for Indo-oceanic Territorial Development Studies
Email: info@cedti.net
Data Protection Officer: Farrah Jahangeer

Last update 05.02.26

bottom of page