Skip to main content



PRIVACY POLICY
Teslajoule Technologies

Effective Date: 10-02-2026


At Teslajoule Technologies ("we," "us," "our"), we are committed to safeguarding the privacy of our website visitors, clients, and partners. This policy explains how we collect, process, and protect your personal data in accordance with the Kenya Data Protection Act, 2019 (No. 24 of 2019), the Computer Misuse and Cybercrimes Act, 2018 , and where applicable, the EU General Data Protection Regulation (GDPR).



1. Overview and Application

1.1 Who We Are
-Teslajoule Technologies- is a solar energy company headquartered in Kakamega County, Western Kenya. We are a registered Data Controller under the meaning of Section 2 of the Kenya Data Protection Act .

Responsible Party:
Eng. Evans Bukachi (Managing Director)
Address:1025 - 50100 KAKAMEGA

Kakamega CBD, OPPOSITE FOREST GREEN HOTEL Kenya
Email: info@teslajouletechnologies.co.ke
Phone:+254 742 260 595

1.2 Legal Framework
This privacy policy is designed to meet the standards of:
-The Constitution of Kenya (2010), Article 31(c) and (d):The right to privacy .
-The Data Protection Act, 2019 (No. 24 of 2019): Kenya's principal data protection legislation .
The Computer Misuse and Cybercrimes Act, 2018: Governing cybersecurity and data breach offenses .
The EU General Data Protection Regulation (GDPR) For the protection of data subjects within the European Economic Area .



2. What Personal Data We Collect

We collect data that is necessary to provide you with our solar energy solutions and to fulfill our contractual obligations. "Personal data" means any information relating to an identified or identifiable natural person .

2.1 Information You Provide to Us
Contact Details: Full name, phone number, email address, and physical address (including location for site surveys in Kakamega & East Africa, etc.).
Financial Data: Payment information, KRA PIN (for invoicing), and bank details for processing transactions.
Contractual Data: Details regarding your property, energy consumption, and roof specifications necessary for solar installation.
Communications: Any information you provide when you fill out a contact form, request a quote, or email us directly.

2.2 Information Collected Automatically
When you visit our website, our IT systems automatically collect technical data stored in server log files. This includes:
- Browser type and version.
- Operating system used.
- Referrer URL (www.teslajouletechnologies.co.ke).
- Hostname of the accessing computer.
- Time of the server request.
- IP address.

2.3 Cookies
Our website uses cookies to enhance user experience. Cookies are small text files stored on your device. We use:
Session Cookies: Deleted automatically after you leave the website.
Persistent Cookies: Recognize your browser when you return.

You may configure your browser to reject cookies, but this may limit functionality. Under the Computer Misuse and Cybercrimes Act, unauthorized interference with computer systems (including malicious cookie use) is an offense .



3. Legal Basis for Processing (Your Consent)

We will only process your personal data where we have a legal basis to do so under Section 30 of the Data Protection Act, 2019 .

Purpose of Processing | Legal Basis (DPA/GDPR)|

| To respond to inquiries and provide quotes | Consent – You have provided clear, affirmative consent via our forms . |
| To perform a solar installation contract | Contractual Necessity – Processing is necessary to fulfill our agreement with you. |
| To comply with tax laws (KRA) | Legal Obligation – Required to comply with Kenyan statutory obligations. |
| To improve our website via analytics | Legitimate Interest – Ensuring our website functions correctly and is optimized for users. |

Revocation of Consent: You have the right to withdraw your consent at any time. Withdrawal does not affect the lawfulness of processing based on consent before its withdrawal .


4. How We Use Your Data

We use your data for the following purposes:
1.  Service Delivery: To schedule site visits, perform energy audits, and complete solar installations .
2.  Customer Support: To respond to your requests and provide after-sales maintenance (24/7 support).
3.  Billing: To process payments and issue receipts/invoices.
4.  Marketing: With your explicit consent, to send you newsletters, promotions, or updates about our services (e.g., "Lipa Mdogo Mdogo" offers). You can opt-out at any time via the "unsubscribe" link.
5.  Legal Compliance: To maintain records as required by Kenyan law and to prevent fraud or cybercrime as defined by the Computer Misuse and Cybercrimes Act .


5. Data Security and Protection

We take the security of your data seriously. We implement appropriate technical and organizational measures to prevent unauthorized access, unlawful processing, and data breaches, as mandated by Section 42 of the Data Protection Act .

Encryption: Payment transactions are encrypted using SSL/TLS protocols. You can verify this by the "https://" and lock icon in your browser .
 Access Control: Access to personal data is restricted to authorized personnel only (e.g., Eng. Evans Bukachi, Steve Lumuli, Paul Kidiavai) who have a need to know.
- **Cybersecurity:** We maintain safeguards against cyber threats such as unauthorized access, phishing, and malware, in compliance with the Computer Misuse and Cybercrimes Act .

5.1 Data Breach Notification
In the unlikely event of a personal data breach, we will notify the Office of the Data Protection Commissioner (ODPC) without undue delay and, where feasible, within 72 hours of becoming aware of it, as per standard practice . Affected data subjects will also be informed if the breach poses a high risk to their rights and freedoms.

6. Sharing and Disclosure of Data

We do not sell, trade, or rent your personal data to third parties.

We may share your data only in the following circumstances:

1.  Service Providers: With trusted third-party companies (e.g., banks for payment processing, financing partners for Lipa Mdogo Mdogo plans) who assist us in operating our business, provided they agree to keep your data confidential and process it in accordance with the DPA .
2.  Legal Requirements: If required to do so by Kenyan law or a valid order from a court or government authority (e.g., KRA, ODPC, or law enforcement under the Cybercrimes Act) .
3.  Business Transfers: In the event of a merger, acquisition, or sale of assets, your data may be transferred to the new entity.


7. International Data Transfers (Cross-Border)

As a company based in Kenya serving East Africa, we primarily store data locally. However, we may use third-party tools (e.g., cloud-based CRM or analytics) that process data outside Kenya.

Compliance: Where we transfer personal data to countries outside Kenya, we ensure that the recipient country has adequate data protection safeguards, or we have obtained your explicit consent, in compliance with Part VI of the Data Protection Act (Sections 48-50) .
GDPR Compliance:  For data subjects in Europe, any transfer of data outside the EEA is done in compliance with Chapter V of the GDPR, ensuring equivalent protection .


8. Your Rights as a Data Subject

Under the Kenya Data Protection Act (Section 26) and the GDPR, you have the following rights regarding your personal data :

Right to be Informed: You have the right to be informed about the collection and use of your personal data (this policy serves that purpose).
Right of Access: You can request a copy of the personal data we hold about you (free of charge).
Right to Rectification: You can ask us to correct inaccurate or incomplete data.
Right to Erasure (Right to be Forgotten): You can request the deletion of your personal data where there is no compelling reason for its continued processing.
Right to Restrict Processing: You can ask us to suspend the processing of your data.
Right to Data Portability: You can request a copy of your data in a structured, machine-readable format (e.g., CSV) to transfer to another service provider .
Right to Object: You can object to the processing of your data for direct marketing purposes.
Rights in relation to Automated Decision Making: You have the right not to be subject to a decision based solely on automated processing.

To exercise any of these rights, please contact us at info@teslajouletechologies.co.ke. We will respond within 30 days as stipulated by the ODPC guidelines .

9. Data Retention

We will only retain your personal data for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements (e.g., KRA tax laws mandate a 5-year retention period for financial records) .

When we no longer need your data, we will securely delete or anonymize it.


10. Copyright and Intellectual Property Notice

All content on this website—including text, graphics, logos, images, and software—is the property of **Teslajoule Technologies** or its content suppliers and is protected by Kenyan and international copyright laws.

- **No Unauthorized Use:** You may not reproduce, distribute, modify, or republish any content from this website without our prior written consent.
- **Cybercrime Warning:** Unauthorized copying, scraping, or hacking of this website to obtain proprietary information (such as client lists or installation designs) constitutes an offense under the **Computer Misuse and Cybercrimes Act, 2018 (Section 14 - Unauthorised Access, Section 26 - Computer Fraud)** and may lead to criminal prosecution and fines of up to KES 20 million or imprisonment .


11. Complaints and Regulatory Authority

If you believe that we have not complied with this privacy policy or the Data Protection Act, you have the right to lodge a complaint with the supervisory authority:

Office of the Data Protection Commissioner (ODPC)
- Website: www.odpc.go.ke
- Physical Address: 9th Floor, Anniversary Towers, University Way, Nairobi.
- Email: complaints@odpc.go.ke

You also have the right to seek compensation for damages through the High Court of Kenya as provided for in Section 65 of the DPA .



12. Updates to This Policy

We may update this privacy policy from time to time to reflect changes in our practices, technologies, or legal requirements. We will notify you of any material changes by posting the new policy on this page with an updated effective date.


13. Contact Us

If you have any questions about this Privacy Policy, your data, or you wish to file a data subject request, please contact our Data Protection Officer (DPO):

Teslajoule Technologies
Attn: Data Protection Officer
Location: Kakamega CBD, OPPOSITE FOREST GREEN HOTEL
Email:dpo@teslajouletechnologies.co.ke (or info@teslajouletechnologies.co.ke)
Phone: +254 742 260 595

By using our website and services, you acknowledge that you have read and understood this privacy policy.