How PrivacyPro Handles Your Data
At PrivacyPro, we believe that privacy is not just a legal requirement but a fundamental right . As a Nigerian Citizen, you have the following rights under the Nigerian Data Protection Act 2023 (NDPA 2023
1. Introduction
PrivacyPro is a full-service privacy consulting firm committed to helping organisations navigate the evolving privacy regulatory landscape in Nigeria. At PrivacyPro we are committed to protecting the privacy of our clients, website visitors, and partners.
This privacy policy explains how we collect, use and disclose your personal information when you use our website or engage our services as a Data Protection Compliance Organisation (DPCO). This Privacy Policy also describes your rights as data subjects. More information about your rights, and how to exercise them, are contained in Your Privacy Rights section of this privacy policy.
PrivacyPro is responsible and accountable for personal information which it processes through the use of its services or websites. Our commitment to protection of your personal information extends to information we collect directly from you, as well as to personal information obtained from publicly available platforms. As a privacy consulting organisation, we understand the importance of protecting your privacy and personal information from misuse and all forms of unauthorised access.
2. Underlining Purpose
The following represents the legitimate basis for processing of your personal information when you visit our website or engage our services.
a. To enable the provisions of privacy consulting services.
b. To respond to your inquiries and requests.
c. To schedule consultations, requests, workshops and trainings.
d. To enable the sending of professional communications and newsletters.
e. To improve our services and website.
f. To ensure compliance with legal and regulatory requirements.
3. Information We Collect
When you visit our website or engage our services as an individual or on behalf of your organisation, we may collect your personal information such as your name, email address, phone number, work title, mailing address and other necessary information that enables the use of our services. Additionally, we may collect your billing and mailing address to facilitate the delivery of our services to you.
We may also collect information about your web traffic data such as your IP address as a means of ensuring the integrity and safety of our website. Except where other lawful basis for collection of your personal information is permissible under regulation, all your personal information we collect are subject to obtaining your prior consent.
In addition, we may collect your personal information through automated means such as when we collect information about your browsing equipment, browsing history, traffic data, logs and data. The use of technology to collect this kind of information is to enable us improve our services and enhance the quality of your experience when you use our website or engage our services.
We do not under any circumstances sell your information for marketing purposes or enable third parties to collect your information through the use of technologies such as cookies on our website beyond what is indicated above, or without obtaining your informed consent.
4. Use of your personal information
Use of your personal information by PrivacyPro is limited to providing any of the range of services we provide as a Data Protection Compliance organisation (DPCO). In particular your personal information may be used:
a. To provide you with information about our services and products as well as to respond to your enquiries.
b. To notify you about changes to our services or any product that we offer including all information about changes in the regulatory landscape.
c. In any other way we may describe when you provide the information subject to obtaining your informed consent.
d. When you visit our website to help improve the safety and reliability of our website, prevent or respond to security risks, technical issues, as well as ensure the integrity and safety of our systems.
e. When you visit our website to help improve the safety and reliability of our website, prevent or respond to security risks, technical issues, as well as ensure the integrity and safety of our systems.
5. Disclosure of your personal information
The following represents the grounds under which we may disclose your personal information to third parties:
a. To our trusted third-party service providers such as payment service providers, professional advisors or cloud storage entities that provide IT and cybersecurity support to PrivacyPro.
b. To comply with a court order, or orders of other legal and regulatory authorities when required under the law.
c. To a buyer or successor in title to our business in the event of a merger, divestiture, restructuring, reorganisation, dissolution, sale or transfer of PrivacyPro as a going concern or in the event of a dissolution, bankruptcy, or similar proceedings.
d. To enforce our agreements in relation to billing and collection purposes.
e. To enforce the legitimate claims of PrivacyPro, its employees and representatives.
The sharing of your personal information with third party service providers is done under conditions that guarantee the integrity, confidentiality and security of your privacy. We do not sell your personal information to third parties or disclose your personal information for marketing purposes without obtaining your prior written consent.
6. Security of your personal information
As a privacy consulting organisation, PrivacyPro prioritises the protection of your personal information against unauthorised access, alteration, disclosure, theft or misuse. Some of the measures that are implemented to protect your personal information when you use our services or visit our website include:
a. Security vetting of vendors, employees and service providers coming into contact with your personal information. Additionally, all persons coming in contact with your personal information are subject to strict rules of contractual confidentiality and non-disclosure.
b. Maintaining access control and authentication for people accessing your personal information and ensuring that access whenever granted is strictly on need-to-know basis.
c. Ensuring that employees undergo privacy and digital security training.
d. Use of contractual provisions that guarantee the confidentiality, integrity, accessibility and security of your personal information.
e. Use of encryption to secure your data within our systems and while in transit.
f. Constant review of our information handling practices to prevent all forms of intrusions into our systems. The measures adopted include physical safety measures such as securing all files cabinet and restricting access to authorised personnel only.
7. Data Retention
We retain your personal information only for as long as necessary. All information that is not required for business purposes is retained for a maximum period of 6 months. In any event, you have the right to request the deletion of your personal information at any time. This request is subject to any legitimate claim we may have to retain the information for the maximum period.
In respect of personal information that we acquire for business purposes, the information is kept in accordance with the contractual arrangement in place for the duration of the business relationship, and typically for 7 years after the end of our engagement. We may also keep your personal information in order to comply with legal, accounting, and reporting requirements
8. Security of your personal information
In accordance with the Nigerian Data Protection Act you have the following rights as a data subject when you use our services or visit our website.
a. The right to request a correction of your personal information
b. The right to access your personal information subject to payment of reasonable fees.
c. Right to withdraw consent or object to continued processing of your personal information.
d. Right to request deletion of your personal information subject to a legitimate right of retention recognised by law.
e. Right to lodge a complaint to the Nigerian Data Protection Commission in respect of our data processing activities.
9. International Data Transfers
We may transfer your personal information internationally under circumstances that ensure compliance with the Nigerian Data Protection Act 2023, and the provisions of the EU General Data Protection Regulations (GDPR). International data transfers are done through the adoption of appropriate data protection safeguards, use of standard contractual clauses as well as data minimization and protection.
10. Children's Privacy
Our services including our website are not designed for or directed at children under the age of 18. We do not knowingly collect personal information from children.
11. Changes to This Privacy Policy
We may change or make update to this privacy policy periodically. Any changes to this privacy policy will be notified on our website and to you via email. We will not reduce any of your rights under this privacy policy without obtaining your express and informed consent.
12. Contact Information
For privacy-related questions, requests or enquiries, contact us:
Email: [privacy@yourcompany.com]
Phone: [Your Business Phone Number]
Address: PrivacyPro Nigeria Limited. 62/64 Campbell Street Lagos Island Lagos Nigeria
13. Acknowledgement
By using our services, you acknowledge that you have read and understood this Privacy Policy.