Privacy Policy Introduction
Last Updated: June 25, 2025
ALAFINDATA is a leading Virtual Top-Up (VTU) application providing seamless airtime, data, and bill payment services across Nigeria. We are committed to safeguarding your privacy and ensuring your personal information remains protected at all times.
This Privacy Policy explains in detail how we collect, use, store, and protect your data when you create an account and use our services. By using ALAFINDATA, you acknowledge that you have read, understood, and agree to the practices described in this policy.
Our Commitment
We adhere to the Nigeria Data Protection Regulation (NDPR) and other applicable data protection laws to ensure your personal information is handled responsibly, transparently, and securely.
Age Restriction
Minimum age requirement for using our services
ALAFINDATA services are exclusively designed for users aged 18 years and older. We do not knowingly collect personal information from individuals under the age of 18.
Underage Account Policy
If we discover that a user under 18 has created an account, we will immediately terminate the account and delete all associated personal data. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately at info@alafindata.com
Account Creation Requirements
What you need to create and maintain an ALAFINDATA account
To access ALAFINDATA services, you must create an account as our platform requires authentication for all transactions including airtime top-ups, data purchases, and bill payments.
Required Information
During account registration, we collect essential information including:
- Full legal name
- Active Nigerian phone number
- Valid email address
- Secure password
Account Security
You are responsible for maintaining the confidentiality of your account credentials. We recommend using a strong, unique password and enabling additional security features when available.
Notification Responsibility
You must notify us immediately of any unauthorized access to or use of your account. We are not liable for any losses or damages arising from your failure to protect your account credentials.
Information We Collect
Types of data we gather to provide our services
We collect various types of information to deliver, improve, and secure our services. All data collection is performed with transparency and in accordance with applicable data protection laws.
Account Information
Personal details provided during registration including name, phone number, and email address.
Transaction Data
Details of airtime top-ups, data purchases, bill payments, amounts, timestamps, and network providers.
Device Information
Device type, operating system, IP address, and unique identifiers for security and analytics.
Usage Analytics
Information about how you interact with our app, features used, and service preferences.
Data Minimization Principle
We adhere to the data minimization principle, collecting only the information necessary to provide our services effectively. We do not collect excessive or irrelevant personal data.
How We Use Your Information
Purposes for processing your personal data
We use your personal data for specific, legitimate purposes to deliver and improve our services while ensuring your privacy is protected.
Account Management
Facilitate account creation, authentication, and login processes to provide secure access to our services.
Transaction Processing
Process and complete airtime, data, and bill payment transactions efficiently and accurately.
Customer Support
Provide timely responses to inquiries, troubleshoot issues, and offer personalized assistance.
Service Improvement
Analyze usage patterns to enhance app functionality, user interface, and overall experience.
Transaction Notifications
Send important updates including payment confirmations, service alerts, and security notices.
Fraud Prevention
Detect, prevent, and investigate fraudulent activities, unauthorized access, or security breaches.
Legal Compliance
Fulfill obligations under the Nigeria Data Protection Regulation (NDPR) and other applicable laws.
Data Sharing and Disclosure
When and with whom we share your information
We take your privacy seriously and maintain strict controls over how and when your personal information is shared.
No Sale or Unauthorized Sharing
We do not sell, trade, rent, or otherwise disclose your personal information to third parties for marketing or commercial purposes. Your data remains confidential and protected within our secure systems.
Legal Requirements
We may disclose your data when required by law, such as in response to a court order, subpoena, or other legal process. We may also share information to protect our rights, safety, or property, or that of our users or the public.
Secure Payment Processing
All financial transactions are processed through secure, encrypted payment gateways. We do not store or have access to your complete payment card details. Payment processors operate under their own privacy policies when handling your payment information.
Data Security Measures
How we protect your personal information
We implement robust security measures to protect your personal data from unauthorized access, alteration, disclosure, or destruction.
Industry-Standard Encryption
We use advanced encryption technologies (SSL/TLS) to protect data transmission between your device and our servers, ensuring your information remains confidential during transfer.
Secure Server Infrastructure
Our servers are hosted in secure data centers with multiple layers of physical and digital security, including firewalls, intrusion detection systems, and regular security audits.
Access Controls
We implement strict access controls, ensuring that only authorized personnel with legitimate business needs can access your personal data. All access is logged and monitored.
Regular Security Updates
We continuously update our security protocols, software, and systems to address emerging threats and vulnerabilities, maintaining the highest standards of data protection.
Your Security Role
While we implement robust security measures, you also play a crucial role in protecting your account. We recommend using a strong, unique password, enabling two-factor authentication when available, and avoiding sharing your login credentials with others.
Your Data Protection Rights
Rights you have under Nigerian data protection laws
Under the Nigeria Data Protection Regulation (NDPR) and other applicable laws, you have specific rights regarding your personal data. We are committed to helping you exercise these rights.
Right to Access
Request a copy of the personal data we hold about you, including information about how it's being processed.
Right to Correction
Request updates to inaccurate or incomplete personal data we have about you to ensure its accuracy.
Right to Deletion
Request deletion of your personal data, subject to legal retention requirements for specific purposes.
Right to Object
Object to certain data processing activities, particularly those based on legitimate interests or for direct marketing.
Right to Restriction
Request temporary restriction of processing your data in specific circumstances while disputes are resolved.
Right to Portability
Receive your personal data in a structured, commonly used format for transfer to another service provider.
Right to Complain
Lodge a complaint with the National Information Technology Development Agency (NITDA), Nigeria's data protection authority.
To exercise any of these rights, please contact us at info@alafindata.com We will respond to your request within the timeframe required by law and may ask for additional information to verify your identity.
Policy Updates and Changes
How we communicate changes to this policy
We may update this Privacy Policy periodically to reflect changes in our data practices, legal requirements, or service enhancements.
Notification of Changes
When we make significant changes to this policy, we will notify you through email or in-app notifications at least 30 days before the changes take effect.
Reviewing Updates
We encourage you to periodically review this Privacy Policy to stay informed about how we protect your personal information. The "Last Updated" date at the top of this page indicates when the policy was last revised.
Continued Use
Your continued use of ALAFINDATA services after any changes to this Privacy Policy constitutes your acceptance of the revised policy. If you do not agree with the changes, you may discontinue using our services and request account deletion.
Contact Information
How to reach us for privacy-related inquiries
If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact our Data Protection Team.
Have Privacy Questions?
Our dedicated data protection team is ready to assist you with any privacy-related inquiries, requests to exercise your data rights, or concerns about how we handle your personal information.
info@alafindata.comWe typically respond to privacy inquiries within 24-48 hours on business days.
Additional Contact Methods:
Phone Support
Available Monday-Friday, 9:00 AM - 5:00 PM West Africa Time (WAT)
In-App Support
Access our Help Center directly within the ALAFINDATA application
Office Address
Our registered office location in Lagos, Nigeria (available upon request)