Last Updated: December 2024
1. Introduction
Terhoma Solutions ("we," "our," or "us") is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our services, including our Guestly event management platform and Aza financial services application.
By using our services, you consent to the data practices described in this policy. We comply with applicable data protection laws, including the Nigeria Data Protection Act (NDPA) 2023.
2. Information We Collect
2.1 Personal Information
We may collect the following types of personal information:
- Identity Information: Full name, date of birth, government-issued ID numbers
- Contact Information: Email address, phone number, postal address
- Account Information: Username, password, account preferences
- Profile Information: Profile photo, biographical information
2.2 Guestly-Specific Data
When using Guestly, we collect:
- Event details (name, date, location, description)
- Guest list information (names, contact details of invitees)
- Check-in records and attendance data
- QR code generation and scanning logs
2.3 Aza-Specific Data
When using Aza, we collect:
- Financial information (bank account details, transaction history)
- Know Your Customer (KYC) documentation
- Savings goals and lending preferences
- Group membership and contribution records
- Payment and transfer history
2.4 Technical Information
We automatically collect:
- Device information (type, operating system, unique identifiers)
- IP address and location data
- Browser type and version
- Usage patterns and interaction data
- Cookies and similar tracking technologies
3. How We Use Your Information
We use your information for the following purposes:
- Service Delivery: To provide, maintain, and improve our services
- Account Management: To create and manage your account
- Communication: To send service updates, security alerts, and support messages
- Security: To detect, prevent, and address fraud and security issues
- Compliance: To comply with legal obligations and regulatory requirements
- Analytics: To understand usage patterns and improve user experience
- Marketing: To send promotional communications (with your consent)
4. Legal Basis for Processing
We process your personal data based on:
- Consent: Where you have given explicit consent
- Contract: Where processing is necessary to fulfill our contractual obligations
- Legal Obligation: Where we must comply with legal requirements
- Legitimate Interest: Where we have a legitimate business interest that does not override your rights
5. Information Sharing and Disclosure
We may share your information with:
- Service Providers: Third-party vendors who assist in operating our services (payment processors, cloud providers, analytics services)
- Business Partners: With your consent, for integrated services
- Legal Authorities: When required by law or to protect our rights
- Other Users: Information you choose to share publicly or with other users (e.g., event hosts sharing guest lists with co-hosts)
We do not sell your personal information to third parties.
6. Data Security
We implement industry-standard security measures to protect your information, including:
- End-to-end encryption for sensitive data
- Secure Socket Layer (SSL) technology
- Regular security audits and penetration testing
- Access controls and authentication protocols
- Secure data storage with encryption at rest
While we strive to protect your information, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security.
7. Data Retention
We retain your personal information for as long as necessary to:
- Provide our services to you
- Comply with legal obligations
- Resolve disputes and enforce agreements
- Meet regulatory requirements (financial records may be retained for up to 7 years)
When data is no longer needed, we securely delete or anonymize it.
8. Your Rights
Under applicable data protection laws, you have the right to:
- Access: Request a copy of the personal data we hold about you
- Rectification: Request correction of inaccurate or incomplete data
- Erasure: Request deletion of your personal data (subject to legal obligations)
- Restriction: Request limitation of processing in certain circumstances
- Portability: Request transfer of your data to another service provider
- Objection: Object to processing based on legitimate interests
- Withdraw Consent: Withdraw previously given consent at any time
To exercise these rights, please contact us at privacy@terhoma.com.
9. Cookies and Tracking Technologies
We use cookies and similar technologies to:
- Remember your preferences and settings
- Authenticate users and prevent fraud
- Analyze usage patterns and improve our services
- Deliver relevant content and advertisements
You can manage cookie preferences through your browser settings. Note that disabling certain cookies may affect service functionality.
10. International Data Transfers
Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place to protect your data in accordance with applicable laws.
11. Children's Privacy
Our services are not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If you become aware that a child has provided us with personal information, please contact us immediately.
12. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of significant changes by posting the new policy on this page and updating the "Last Updated" date. Your continued use of our services after changes constitutes acceptance of the updated policy.
13. Contact Us
If you have questions, concerns, or complaints about this Privacy Policy or our data practices, please contact us:
We will respond to your inquiry within 30 days.