1.0 Introduction
Arve Limited (QuickCheck, “we”, “us”, or “our”) has created this Privacy Policy to better serve those who are concerned with how their Personal Data is being used through the use of our website or mobile application. Personal Data is any information that can be used on its own or with other information to identify, contact, or locate a single person, or to identify an individual in context.
We may change this Privacy Policy from time to time. If we make changes, we will notify you by revising the date at the top of this policy, and in some cases, we may provide you with additional notice (such as by adding a statement to the homepages of our website or mobile application or by sending you an email notification).
We encourage you to review the Privacy Policy whenever you interact with us to stay informed about our information practices and the ways you can help protect your privacy.
2.0 CONSENT
Please read our Privacy Policy (Policy) carefully to get a clear understanding of how we collect, use, save, process, protect or otherwise handle your Personal Data in compliance with this Privacy Policy, the Nigeria Data Protection Regulation (NDPR) and any other appropriate confidentiality and security measures.
By using or accessing our Services, you agree to the collection, use, and disclosure of your personal data as described in this Privacy Policy. Your use of our Services is also subject to QuickCheck’s Terms.
3.0 COLLECTION OF PERSONAL DATA
What personal data we collect and why we collect it
3.1 Your Information
You may give us Personal Data about you by completing forms on our site, app, by allowing us to access your information on social media sites or by corresponding with us by phone, e-mail or otherwise. This includes information on app login, applying for a loan and activity on social media. The information you give us may include your name, current and previous address, e-mail, BVN, phone number, social networks data, financial information, personal status information, employment information, educational status, contacts and family information, applications and messages. We will also collect and process personal data derivable from your BVN.
3.2 Comments
When visitors leave comments on the site, we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.
An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: automattic.com/privacy. After approval of your comment, your profile picture is visible to the public in the context of your comment.
3.3 Media
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
3.4 Cookies
If you leave a comment on our site, you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
We use cookies for tracking purposes only. You can choose to have your computer warn you each time a cookie is being sent, or you can choose to turn off all cookies. You do this through your browser settings. Since browser is a little different, look at your browser’s Help Menu to learn the correct way to modify your cookies.
If you turn cookies off, some features will be disabled. That makes your site experience less efficient and may not function properly.
3.5 Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.
4.0 USE OF PERSONAL DATA
How we use your Personal Data
We may use the information we collect from you in the following ways:
To personalize your experience and to allow us to deliver the type of content and product offerings in which you are most interested;
To provide products, services, and information regarding your request;
To create a credit score based on your information;
To notify about recent changes in the product or services provided;
To follow up with you after correspondence (live chat, email or phone inquiries).
To send messages (SMS) and enriched messages (RCS) to you for services and notification purposes.
5.0 HOW LONG WE RETAIN YOUR PERSONAL DATA
We will hold your Personal Data on QuickCheck’s systems for as long as it is necessary to fulfil the purpose for which it was collected or to comply with legal, regulatory or internal policy requirements.
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.
For users that register on our website (if any), we also store the Personal Data they provide in their user profile. All users can see, edit, or delete their Personal Data at any time (except they cannot change their username). Website administrators can also see and edit that information.
We limit a One-month period to respond to your access request to your Personal Data in our possession. However, if the one-month timeline cannot be met or where we determine that the request made by you is excessive in nature, we will take steps to inform you and suggest alternative courses of action such as extension of the time of which to provide the information requested or request for cost for requests of an excessive nature. QuickCheck subjects itself to copy the regulatory authority in all such correspondence
6.0 YOUR RIGHTS AS A DATA SUBJECT
The law gives you certain rights in respect to your Personal Data we hold about you. Below is a highlight of some of those rights. At any point while we are in possession of or processing your Personal Data, you, the Data Subject have the following rights:
RIGHT OF ACCESS – You have the right to request a copy of the information that we hold about you.
RIGHT TO RECTIFY – You have the right to correct the Personal Data we hold about you that is inaccurate.
RIGHT TO BE FORGOTTEN – In certain circumstances you may ask for the data we hold about you to be erased from our record.
RIGHT TO RESTRICT PROCESSING – Where certain conditions apply, you have a right to restrict processing of your Personal Data.
RIGHT TO PORTABILITY – You have the right to have your Personal Data transferred to another organisation.
LODGE COMPLAINT – You have a right to lodge a complaint about the handling of your Personal Data with the Nigeria Data Protection Bureau (NDPB) at info@ndpb.gov.ng
RIGHT TO OBJECT – You have the right to object to the Processing of Personal Data.
NDPB’s website (ndpb.gov.ng) has a wealth of useful information in respect of your rights over your Personal Data. If you wish to exercise your rights, you may contact our Data Protection Officer at data-protection@quickcheck.ng or you may write to us at questions@quickcheck.ng
7.0 YOUR RIGHTS AS A DATA SUBJECT
Personal Data must be processed lawfully, fairly and in a transparent manner in relation to the Data Subject.
We may only collect, process and share Personal Data fairly and lawfully and for specified purposes. The NDPR restricts our actions regarding Personal Data to specified lawful purposes. These restrictions are not intended to prevent processing, but ensure that we process Personal Data fairly and without adversely affecting the Data Subject.
We process data for specific purposes in accordance with the NDPR, some of which are set out below:
the Data Subject has given his or her Consent;
the Processing is necessary for the performance of a contract with the Data Subject;
to meet our legal compliance obligations;
to protect the Data Subject’s vital interests; and
to perform a task carried out in the public interest or in exercise of official public mandate.
8.0 WHERE WE SEND YOUR DATA
Visitor comments may be checked through an automated spam detection service. We do not sell, trade, or otherwise transfer to outside parties your Personal Data unless we provide users with advance notice.
9.0 WHERE WE STORE YOUR PERSONAL DATA
The Personal Data we collect from you may be transferred to and stored at a destination outside Nigeria. By submitting your Personal Data, you agree to this transfer, storing or processing. We will take all steps reasonably necessary to ensure that your Personal Data is treated securely with an appropriate level of protection and that the transfer is lawful under the NDPR and any applicable law on Data Protection.
10.0 SECURITY
10.1 How we protect our data
Your Personal Data is contained behind secured networks and is only accessible by a limited number of persons who have special access rights to such systems, and are required to keep the information confidential. In addition, all sensitive/credit information you supply is encrypted via Secure Socket Layer (SSL) technology. We implement a variety of security measures when a user asks for a loan, submits data, or accesses their information to maintain the safety of your personal information. All transactions are processed through a gateway provider and are not stored or processed on our servers.
10.2 CAN-Spam ACT
The CAN-SPAM Act is a law that sets the rules for commercial email, establishes requirements for commercial messages, gives recipients the right to have emails stopped from being sent to them, and spells out tough penalties for violations. We collect your email address in order to:
Process loans and to send information and updates pertaining to loans
Send you additional information related to your product and/or service.
To be in accordance with CAN-SPAM, we agree to the following:
Non-use false or misleading subjects or email addresses;
Identify the message as an advertisement in some reasonable way;
Include the physical address of our business or site headquarters;
Monitor third-party email marketing services for compliance, if one is used;
Honor opt-out/unsubscribe requests quickly;
Allow users to unsubscribe by using the link at the bottom of each email.
If at any time you would like to unsubscribe from receiving future emails, you can follow the instructions at the bottom of each email and we will promptly remove you from ALL correspondence.
10.3 What third parties we receive data from
Google’s advertising requirements can be summed up by Google’s Advertising Principles. They are put in place to provide a positive experience for users: support.google.com/adwordspolicy/answer/1316548?hl=en. We have not enabled Google AdSense on our site but we may do so in the future.
What automated decision-making and/or profiling we do with user data
10.4 Industry regulatory disclosure requirements
We do not sell, trade, or otherwise transfer to outside parties your Personal Data unless we provide users with advance notice. This does not include website hosting partners and other parties who assist us in operating our website, conducting our business, or serving our users, so long as those parties agree to keep this information confidential. We may also release information when it’s release is appropriate to comply with the law, enforce our site policies, or protect ours or others’ rights, property or safety. However, non-personally identifiable visitor information may be provided to other parties for marketing, advertising, or other uses.
11.0 BREACH / PRIVACY VIOLATION
In the event of a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to Personal Data, we shall within 72 (Seventy-Two) hours of having knowledge of such breach report the details of the breach to NDPB.
Furthermore, where we ascertain that such breach is detrimental to your rights and freedoms in relation to your Personal Data, we shall within 7 (Seven) days of having knowledge of the occurrence of such breach take steps to inform you of the breach incident, the risk to your rights and freedoms resulting from such breach and any course of action to remedy said breach.
12.0 Contact
If there are any questions regarding this Privacy Policy, you may contact questions@quickcheck.ng or use the information below:
QuickCheck
13 Town Planning Way,
Ilupeju
Lagos