FundGuard Africa (“FundGuard”, “we”, “us”) is committed to protecting your personal data and acting in line with applicable privacy laws, including NDPR and GDPR where applicable.
1) What We Collect
- Account & Identity: name, email, phone, organization, KYC/ID (where provided).
- Case & Evidence: incident details, files you upload, metadata (timestamps, hashes).
- Device & Usage: IP, browser, device identifiers, pages/events for security and analytics.
2) How We Use Data
- Identity verification and secure authentication.
- Fraud detection, case handling, evidence packaging.
- Alerts and notifications (email/SMS/in-app).
- Compliance reporting (as required by law).
- Product analytics and service improvement.
3) Legal Bases
We process data on the basis of consent, contract performance, legal obligations, and legitimate interests in preventing fraud and securing users’ assets.
4) Sharing
- With your direction or as required, we may share with banks, payment providers, exchanges, regulators, or law enforcement to aid recovery and compliance.
- With vetted processors (e.g., hosting, storage, analytics) under data protection agreements.
5) Security
We use encryption, access controls, audit logs, and Row Level Security. Sensitive operations are role-restricted.
6) Retention
We retain data only as long as necessary for fraud investigation, legal/regulatory needs, and product improvement, then delete or anonymize it.
7) Your Rights
You may request access, correction, deletion, or restriction of your data, and object to certain processing. Contact us to exercise these rights.
8) International Transfers
Where data moves across borders, we use appropriate safeguards (e.g., SCCs) and trusted infrastructure.
9) Updates
We may update this Policy. Material changes will be posted here with a new “Last updated” date.