1. Scope of the Privacy Policy
This policy applies to all visitors of the DIL website, applicants using our online forms, individuals accessing tax services, and users of our digital platforms and communication tools. It covers all data we collect directly (via our forms or services) and indirectly (through analytics, cookies, or third-party tools integrated into our website).
2. What Personal Data We Collect
We collect and process the following types of personal data, depending on the nature of your interaction with us:
- Identification Data: Name, national ID/passport number, taxpayer number, date of birth.
- Contact Information: Email address, phone number, physical address.
- Employment and Financial Information: Employer details, salary, income sources, tax bracket.
- Service Usage Data: Pages visited, services accessed, transactions completed.
- Device and Technical Data: IP address, browser type, device type, operating system, language, cookies.
- Supporting Documents: Uploaded documents required for tax declarations, registration, or verification.
We do not collect sensitive data such as racial origin, religious beliefs, or political affiliations unless explicitly required by law.
3. How We Use Your Personal Data
Your data is used for lawful, specific, and legitimate purposes, including but not limited to:
- Processing and managing your tax declarations and payments.
- Providing you with personalized tax services and reminders.
- Facilitating your use of secure areas of the website.
- Sending legally required notices, receipts, and certificates.
- Conducting statistical analysis, audits, and public reporting in anonymized format.
- Responding to your inquiries, complaints, or requests.
- Conducting statistical analysis, audits, and public reporting in anonymized format.
- Preventing fraud, enforcing compliance, and ensuring system security.
We will never sell your data or use it for commercial advertising.
4. Legal Basis for Processing
We process your data based on one or more of the following legal grounds:
- Legal Obligation: Required for compliance with tax laws and regulations.
- Public Interest: Required for tasks carried out in the public interest or in the exercise of official authority.
- Consent: When you voluntarily provide data, such as newsletter signups or service feedback.
- Legitimate Interest: For internal administrative purposes and fraud prevention, where this interest is not overridden by your rights.
5. Who Has Access to Your Data
Access to your personal data is restricted to authorized personnel within the DIL and to third parties who provide support services (e.g. hosting providers, email platforms, payment processors) under strict confidentiality and security obligations. We may share your data:
- With tax offices and government agencies in accordance with the law.
- With service providers only to the extent necessary to perform services on our behalf.
- In response to legal requests from courts or competent authorities.
Your data will never be shared for commercial marketing or profiling purposes.
6. Data Retention Period
We retain your personal data only for as long as necessary for the purpose for which it was collected, including legal, accounting, and tax obligations. In general:
- Tax data is retained for at least 10 years.
- Contact details may be retained for up to 5 years.
- Cookies and analytics data are retained based on your consent preferences.
When data is no longer needed, it is securely deleted or anonymized.
7. Your Rights
You have the right to:
- Access your personal data and receive a copy.
- Correct inaccurate or incomplete information.
- Request deletion of your data in certain cases.
- Object to or restrict processing in specific situations.
- Withdraw your consent at any time where processing is based on consent.
- Complain to the relevant data protection authority if you believe your rights have been violated.
To exercise your rights, please contact us using the details in Section 10.
8. Data Security Measures
We implement robust technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These include:
- Secure servers and encrypted communications (SSL).
- Access controls and staff training.
- Regular audits and system updates.
- Secure backups and redundancy protocols.
Despite our best efforts, no system is 100% immune to breaches. We commit to promptly notifying users of any major data incident as required by law.
9. International Data Transfers
- You request a service that requires such transfer (e.g., international filing support).
- We use service providers based outside the country under strict contractual safeguards.
Your data is stored and processed within the Democratic Republic of Congo. We do not transfer your data outside the country unless:
10. Contact Us
If you have any questions, concerns, or requests about this Privacy Policy or your personal data, please contact us:
Direction des Impôts du Lualaba – DIL
-
331 Des Pins Avenue
Biashara Quarter
Commune of Dilala
Kolwezi, Lualaba
DR Congo - +243 992 536 483
- legal@dil-rdc.com
11. Updates to This Policy
We may update this Privacy Policy periodically to reflect legal changes or improvements in our services. When we do, we will revise the “Last Updated” date and, where appropriate, notify you of significant changes.