Akuapem Technology Summit 2026

Privacy Policy

Last updated: April 2026

1. Who we are

The Akuapem Technology Summit 2026 (“the Summit”, “we”, “us”) is organised by the Akuapem Tech Summit Secretariat, Akropong, Eastern Region, Ghana. We are the data controller for the personal information processed via this website.

2. The information we collect

When you register, sign in, or interact with the Summit website, we collect:

  • Registration details — full name, email, phone, organisation, role, location, interest area, special requests, registration category, and any category-specific fields you choose to share (e.g. institution, startup name, outlet, sponsorship interests, proposed talk).
  • Consent flag — whether you opted in to receive Summit updates by email.
  • Account data — your email address (used as your sign-in identifier), session tokens issued by NextAuth, and a profile record (display name, optional bio, directory opt-in status).
  • Programme activity — sessions you bookmark and intro requests you send or receive (sender, recipient, message, status).
  • Oracle chat transcripts — the text messages you exchange with the Akuapem Oracle chatbot. Anonymous (logged-out) chat sessions are linked to a hashed IP address rather than an account.
  • Push notification subscriptions — if you opt in, your browser's push endpoint and authentication keys.
  • Operational data — request rate-limit records (hashed IP + endpoint), service-worker event logs, and server logs needed to operate the site safely.

3. Why we use your information

  • To operate your Summit registration and let you sign in to your dashboard.
  • To send you the confirmation email, magic-link sign-in emails, and (with your consent) Summit updates.
  • To tailor your dashboard content to your registration category.
  • To enable optional features you turn on — agenda bookmarks, attendee directory listing, intro requests, push notifications.
  • To answer your questions through the Oracle chatbot.
  • To prevent abuse via rate limiting and basic operational logging.

We rely on (a) your consent for marketing communications and the directory listing, (b) the performance of a contract(your registration) for confirmations, sign-in, and dashboard functionality, and (c) our legitimate interests in keeping the service operational and abuse-free for everyone else.

4. Where your data is stored

Personal information is stored on a self-hosted PostgreSQL database running on the Summit's own server infrastructure (operated by the Secretariat). We do not use third-party analytics or tracking services on this site.

Two narrow exceptions transmit limited data outside Ghana:

  • Email delivery — confirmation, magic-link, and update emails are sent through our SMTP provider, which processes the recipient address and the message body.
  • Oracle chatbot — when you send a chat message to Oracle, the text of that message is sent to Anthropic (Anthropic, PBC, USA) for processing. We instruct Oracle not to store transcripts beyond the operational use described below, and we do not include your registration record in the prompt. Please do not paste sensitive identifiers (national ID, banking details) into the chat.

5. How long we keep your data

  • Registration records — kept for 12 months after the Summit, then archived to anonymised aggregates and deleted on request.
  • Oracle chat messages — kept for 90 days, then automatically deleted.
  • Rate-limit records — automatically deleted after 24 hours.
  • Sign-in tokens — expired tokens are deleted nightly; active sessions last until you sign out.
  • Push subscriptions — kept until you unsubscribe or your browser endpoint expires.
  • Declined intro requests — kept for 30 days as a tombstone so they don't reappear, then deleted.

6. Your rights

Under Ghana's Data Protection Act, 2012 (Act 843), you have the right to:

  • Access the personal information we hold about you.
  • Have inaccurate or incomplete information corrected.
  • Have your information deleted (you can self-serve this from your account settings, which cascades all related data — registration, profile, bookmarks, intros, push subscriptions, and chat transcripts).
  • Withdraw your consent for marketing emails or directory visibility at any time, also from your account settings.
  • Object to or restrict certain processing.
  • Lodge a complaint with the Data Protection Commission of Ghana (DPC) at dataprotection.org.gh.

For any request not covered by your account settings, email us at privacy@akuapemtech.org. We'll respond within 30 days.

7. Cookies and similar technologies

We set a small number of strictly necessary cookies — your sign-in session token (NextAuth), CSRF protection, and a service-worker registration if you opt in to push notifications. We do not use cookies for advertising, third-party analytics, or cross-site tracking.

8. Children

The Summit is not directed at children under 13. If you believe a child has registered without parental consent, contact us and we will delete the account.

9. Changes to this policy

We will update this page if our practices change. Material changes will be communicated by email to registrants who opted in to updates. The “Last updated” date at the top shows the most recent revision.

10. Contact

For privacy questions, data requests, or complaints:

Akuapem Tech Summit Secretariat
Email: privacy@akuapemtech.org
Address: Akropong, Akuapem North Municipal District, Eastern Region, Ghana