Skip to main content
CipherFort Security Logo

Privacy Policy

Last updated: February 22, 2026

This Privacy Policy explains how CipherFort Security collects, uses, and protects your personal information.

1. INTRODUCTION

CipherFort Security ("CipherFort Security", "we", "us", "our" "Company"), recognizes your privacy rights as guaranteed under the 1999 Constitution of the Federal Republic of Nigeria; the Nigerian Data Protection Regulation 2019 issued by the National Information Technology Development Agency (NITDA), and the privacy provisions in other relevant laws applicable to our business in Nigeria. Thus, it is important to us as a law-abiding and transparency driven organization that your Personal Data is managed, processed and protected in accordance with the provisions of the applicable laws.

During our business and your engagement with us and third parties through our Platforms (this includes but are not limited to our websites, digital platforms (including CipherFort Security Platform), mobile applications, physical operations/offices, amongst others), we may process your Personal Data, subject however to the terms of this Policy. This Privacy Policy ("Policy") therefore explains our privacy practices with respect to how we process your Personal Data and describes your rights as a user of any of our services and Platforms.

This Policy applies to all our platforms, and all related sites, applications, services and tools regardless of how they are accessed or used.

2. DEFINITIONS

For this Policy:

a) Data/Information means any information relating to you, including your name, identification number, location data, online identifier address, photo, email address, pins, passwords, licenses, bank details, posts on our Platforms, religion, date of birth, health, race/tribe, nationality, ethnicity, political views, trades union membership, criminal records, medical information, and other unique identifiers such as but not limited to Media Access Control (MAC) address, Internet Protocol (IP) address, International Mobile Equipment Identity (IMEI) number, Bank Verification Number (BVN), International Mobile Subscriber Identity (IMSI) number, Subscriber Identification Module (SIM) and others. It also includes factors specific to your physical, physiological, genetic, mental, economic, cultural or social identity.

b) Process/Processing means any operation or set of operations which is performed on your Personal Data or sets of Personal Data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

3. CONSENT

We kindly request that you carefully read through this Policy and click on the 'Agree' icon below, if you consent to the terms of this Policy, particularly with respect to the processing of your Personal Data. That notwithstanding, if you proceed to use any of our platforms and services, it will be deemed that you have provided your express consent to the terms of this Policy.

4. AGE

You must be at least 18 years old to use our services or any of our platforms. Individuals under the age of 18, or applicable age of maturity, may utilize our platforms services only with involvement of a parent or legal guardian, under such person's account. Regardless, all Data which we may process shall be in accordance with this Policy and other applicable laws.

5. COLLECTION OF PERSONAL DATA

During your engagement with us or with third parties through our Platforms, we may collect your Personal Data in the following ways:

a) Automatic Information collection: We may automatically collect Information upon your engagement with us or our Platforms through your computer, mobile phones, forms, documents made available to us, other access devices. We also collect anonymous information through our use of cookies and web beacons to customize your experience of our Platform and to improve account security.

b) Information from downloads: When you download or use our digital platforms, or access any of our sites, we may receive information about your location and your mobile device, including a unique identifier for your device. We may use this information to provide you with location-based services, such as advertisements, search results, and other personalized content. You may disable your location in the settings menu of the device.

c) Physically or Digitally Provided Information: We may collect and process your information when you create and update your account on our Platform; complete forms, questionnaires, surveys etc. We may also collect Information from the data you provide to us through documents, letters, e-mail, agreements, correspondence, Identity cards, passports, or through any other means by which you willfully provide information to us.

d) Third Parties: We may also receive your information from third parties such as relatives, guardians, financial institutions, vendors, and service providers etc.

e) Social media: We also receive Information through your engagements with us on social media platforms (e.g., Facebook, Instagram, LinkedIn, Twitter, etc.). This includes but are not limited to your replies to our posts, your comments, enquiries, messages to us, etc.

6. USING YOUR PERSONAL INFORMATION

During your engagements with us or through our Platforms, we collect personal information for various legal reasons, largely to enable us to personalize your experience and to provide a more efficient service to you. Some of the reasons we collect Information are to:

  • provide services and customer support;
  • enable seamless, real-time Identity verifications;
  • enable informed hiring decisions;
  • promote transparency and make workers and customers accountable;
  • create an account with us for the provision or use of our services;
  • verify customers' identity, including during account creation and password reset processes;
  • manage your account and provide you with efficient customer service
  • manage risks, detect, prevent or remediate fraud, violation of policies and applicable user agreements or other potentially prohibited or illegal activities;
  • execute our contractual obligations to you;
  • improve our services and functionality by customizing user experience;
  • measure the performance of our services and improve their content and layout;
  • manage and protect our information technology infrastructure;
  • enable on-demand services by digitizing and standardizing the reporting of Know Your Customers data;
  • reduce human capital risk by making identity verification more secure;
  • support the credit and lending industry by providing strong data points for lending decisions; ensure and incorporate transparency and excellent work history reporting within the workforce using technology as a driving force;
  • digitize Africa's identity data for secure online delivery;
  • enable the growth of personal and business relationships through trust;
  • obtain a means by which we may contact you; either by telephone, text (SMS), email messaging, social media, etc.;
  • conduct background checks, compare information for accuracy and verify same with third parties;
  • identify or address a violation and administer our policies and terms of use;
  • comply with legal, contractual and regulatory obligations;
  • execute your specific requests or use same for a specific purpose as you may instruct; investigate and respond to your complaints or enquiries;
  • process your access to our services, platforms, or functions from time to time;

If we intend to use any personal Information in any manner that is inconsistent with this Privacy Policy, you will be informed of such anticipated use prior to or at the time at which the personal information is required and obtain your consent.

7. STORAGE AND PROTECTION OF YOUR DATA

We protect your personal Information using physical, technical, and administrative security measures to reduce the risks of loss, misuse, unauthorized access, disclosure and alteration. Some of our safeguards include (Encryption of PII, classification of PII in terms of sensitivity, adhering strictly to the acceptable use policy). Access to our various platforms is restricted to authorized users only. Your Information is also stored on our secure servers as well as secure physical locations and cloud infrastructure (where applicable).

We will take all necessary measures to ensure that your personal Data is safe, however, you are also required to ensure that access codes, PINs, passwords, usernames, and all other information or hints that may enable third party access to your accounts on our Platforms are secure. We therefore strongly advise you to keep such information secure and confidential. If you use a third party's device (laptops, phones, public internet, etc.) to access your account, kindly ensure that you always log out. Kindly note however that certain devices are programmed to save passwords or usernames, as such, we therefore advise that you use third party devices with extreme caution. If you believe that an unauthorized person has accessed your information, please contact us immediately.

8. PROCESSING YOUR INFORMATION

To execute our obligations to you or process your transactions, we may be required to process your Information, such as your name, account number, account identity, contact details, office address, bank details, or other information needed to complete the transaction. We also work with third parties, including financial institutions, partners, service providers, who at one point or the other facilitate transactions executed on our Platforms. For completeness, during your engagement with us or use of our services and Platforms, we may share your information with different stakeholders, including but not limited to financial institutions; service providers; Regulatory or judicial authorities; or other third parties pursuant to a subpoena, court order, or other legal process or requirement applicable to CipherFort Security. Please note that the parties mentioned above may be within or outside Nigeria (where necessary).

We may also process your Information when we believe, in our sole discretion, that the disclosure of your Information is necessary to comply with applicable laws and judicial/regulatory orders; conduct investigations; manage existing or imminent risks, prevent fraud, crime or financial loss, or for public safety or to report suspected illegal activity or to investigate violations of our Terms and Conditions.

In all cases, we will ensure that your Information is safe and notify the receiving party of the confidential nature of your Information, particularly the need to maintain the confidentiality of same and prevent unlawful or unauthorized usage.

9. YOUR RIGHTS

You have the following rights regarding your personal information collected by us:

a) Right to access your personal information being held by us. Request for such information may be sent to (please insert the medium through which information can be sent);

b) Right to request that your personal data be made available to you in an electronic format or that it should be sent to a third party (Kindly note that we have the right to decline such request if it is too frequent, unreasonable, and likely to cause substantial cost to us. In any event, we will communicate the reason for our refusal);

c) Right to rectify any inaccurate, incomplete information. As such, if you discover any inaccuracy in your personal information, kindly notify us promptly and provide us with documentary evidence to enable us to update the requisite changes;

d) Right to withdraw consent for the processing of your information, provided that such withdrawal shall not invalidate any processing already done based on the consent previously given by you; Restrict or object to the processing of your personal data if we may be compelled to process your data where required under law, regulatory authorities, or court of law;

e) Right to request that your personal data be deleted. We may however continue to retain the information where required under law, contract, regulatory authorities, or court of law.

10. CROSS BORDER TRANSFERS OF PERSONAL INFORMATION

CipherFort Security is an indigenous Information Technology company whose clients include domestic employers, businesses, contractors and governmental agencies. However, while providing our services or in a bid to serve you better, we may be required to transfer your information (electronically or otherwise) across the borders of Nigeria. Notwithstanding that, CipherFort Security is committed to adequately protecting your personal information regardless of where the data is transferred or hosted. Kindly be assured that your information will be treated with the same level of strict confidentiality.

11. USE OF COOKIES AND SIMILAR TECHNOLOGIES

When you access our Platforms, we may place small data files on your computer or other device. These data files may be cookies, pixel tags, flash cookies, or other local storage provided by your browser or associated applications (collectively referred to as "Cookies"). These technologies are used to recognize users as customers; customize services, content, and advertising; measure promotional effectiveness; help ensure that account security is not compromised; mitigate risk and prevent fraud; and to promote trust and safety on our Platform.

You can freely decline our Cookies if the web browser or browser add-on permits, unless our cookies are required to prevent fraud or ensure the security of Platforms we control. However, declining our Cookies may affect your ability to fully utilize any of our Platform and services.

This Policy applies to our websites and Platforms alone. We do not exercise control over the sites displayed or linked from within our various services. These other sites may place their own cookies or other files on your computer, collect data or solicit personal information from you.

12. SOFTWARE

If you download or use our software, such as a stand-alone software product, an app, or a browser plugin, you agree that from time to time, the software may download and install upgrades, updates and additional features from us to improve, enhance, and further develop the software.

13. PERIOD OF STORAGE

We retain your information for as long as necessary for the purpose(s) for which it was collected. The period of data storage is also subject to legal, regulatory, administrative and operational requirements. In the minimum, Personal Information obtained through this Platform may be stored for as long as 365 days or as requested.

14. EXCEPTIONS

Please note that this Policy does not apply to Information that is already in the public domain through no fault of ours.

15. VIOLATION

If you violate the letter or spirit of this Policy, or otherwise create risk or possible legal exposure for us or attempt to violate the privacy rights of CipherFort Security and its other users, we reserve to restrict your access to our Platforms. We will notify you if we are constrained to take such decision.

16. DISPUTE RESOLUTION

We are dedicated to ensuring that you are satisfied with our management of your Information. However, in the unlikely event that you have a complaint, please contact us via the details below, stating your name and details of your complaint. Upon receipt of your complaint, we will endeavor to contact you within 7 days with a view to amicably resolving such dispute within the shortest possible time. The foregoing notwithstanding, all disputes arising from this policy shall first be resolved by negotiation. However, if parties fail to resolve the disputes amicably by such mutual consultations, parties shall further attempt to resolve the dispute by mediation. And when these methods fail, parties have the right to seek out other means of dispute resolution.

17. CONTACT US

If you have questions regarding your data privacy rights or would like to submit a related data privacy right request, kindly contact us via the information below:

CIPHERFORT SECURITY

1st Floor, CashCraft Building

270, Murtala Muhammed Way

Alagomeji Yaba, Lagos State, Nigeria

Website: www.cipherfortsecurity.com

Email: info@CipherFortSecurity.com

Phone: +234018880159

Please allow up to 7 days for requests to be processed. The Company reserves the right to charge a reasonable fee to process excessive or repeated requests.

18. AMENDMENT

We may amend or revise this Policy at any time by posting a revised version on our website. Notice of the amendment shall be posted on our website and the revised version will be effective from the date of publication. Kindly, note that your continued use of our Platform after the publication of the revised version constitutes your acceptance of our amended terms of the Policy.