Privacy Policy

1. Introduction

Fidesagro ("we," "our," or "us") is committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and use our services.

By using our platform, you agree to the collection and use of information in accordance with this policy. If you do not agree with the terms of this policy, please do not access our website or use our services.

2. Information We Collect

2.1 Personal Information You Provide

We collect personal information that you voluntarily provide when you:

• Register for an account (name, email address, password)
• Submit a contact or expansion request form (name, phone number, role, email, community details, location)
• Apply to become a Fides Champion (personal details, community information, technical proficiency)
• Request an institutional partnership or NGO consultation (organization name, contact details, interests)
• Subscribe to our newsletter (email address)
• Use our Taxculator or business registration services (financial and business information)

2.2 Information Automatically Collected

When you visit our website, we may automatically collect certain information, including:

• Device information (browser type, operating system, device type)
• Usage data (pages viewed, time spent, navigation paths)
• IP address and approximate location
• Authentication session data via cookies

3. How We Use Your Information

We use the information we collect to:

• Provide, operate, and maintain our platform and services
• Process your applications, requests, and form submissions
• Authenticate and manage user accounts
• Communicate with you about our services, respond to inquiries, and provide customer support
• Send you newsletters and marketing communications (with your consent)
• Analyze usage patterns to improve our website and services
• Comply with legal obligations and protect against fraudulent activities
• Facilitate payments and business registration processes

4. Data Storage & Third-Party Services

We use the following third-party services to store and process your data:

• Supabase — for user authentication and database management. Supabase processes your email, password (hashed), and session data. See Supabase's Privacy Policy.
• Airtable — for managing form submissions and business records. See Airtable's Privacy Policy.
• Stripe & Paystack — for payment processing. We do not store your full card details; they are handled securely by these providers. See their respective privacy policies.
• Vercel — for website hosting and performance analytics. See Vercel's Privacy Policy.

5. Cookies

We use cookies and similar tracking technologies to manage user sessions and improve your experience. For detailed information about the cookies we use and your choices, please see our Cookie Policy.

6. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required or permitted by law. Form submission records are retained for a maximum of 3 years. Account data is retained until you request deletion.

7. Your Rights

In accordance with the Nigeria Data Protection Regulation (NDPR) and other applicable data protection laws, you have the right to:

• Access — request a copy of your personal data
• Rectification — request corrections to inaccurate data
• Deletion — request deletion of your personal data
• Restriction — request that we limit processing of your data
• Data Portability — request a machine-readable export of your data
• Withdraw Consent — withdraw consent for marketing communications at any time

To exercise any of these rights, please contact us at privacy@fidesagro.com.

8. Data Security

We implement appropriate technical and organizational security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These include encryption in transit (HTTPS/TLS), hashed passwords, and secure API integrations with our third-party providers. However, no method of electronic transmission or storage is 100% secure, and we cannot guarantee absolute security.

9. Children's Privacy

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected personal data from a child without parental consent, we will take steps to delete that information.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the "Last updated" date. You are advised to review this page periodically for any changes.