Data Protection Policy

About this project

Creating a robust data protection policy for our business, 1Techlink, is crucial to ensure the security and privacy of customer data, vendor information, and driver/riders' details. Here's an updated data protection policy tailored to cover the different stakeholders using our platform: 1. Data Collection and Usage

Customer App Users:

Personal Information: Collect only necessary information (name, contact details) for account creation and transactions. Usage Data: Track app usage patterns to improve services but ensure anonymity and aggregate data for analysis. Consent: Obtain explicit consent for data collection and usage during account setup. Purpose: Use data solely for improving service quality, personalizing experiences, and processing transactions. Sharing: Do not share customer data with third parties without explicit consent, except as required by law.

Vendors (Using Vendor App):

Information Collection: Gather business details necessary for partnership (e.g., business name, contact information). Transaction Data: Store vendor transaction records securely. Consent: Obtain consent for storing and using vendor data for operational purposes. Purpose: Use vendor data to facilitate transactions, provide support, and maintain partnerships. Sharing: Share vendor data only with authorized partners or service providers necessary for operations.

Drivers/Riders (Using Driver App):

Personal Information: Collect driver/rider details (e.g., license, vehicle information) for verification. Location Data: Track real-time location for delivery coordination. Consent: Obtain clear consent for data collection and location tracking. Purpose: Use driver/rider data for assigning deliveries, optimizing routes, and providing customer support. Sharing: Share location data with customers and internally for operational purposes only.

2. Data Security Measures

Implement robust security protocols to protect all data collected (e.g., encryption, access controls, regular audits). Regularly update software and systems to mitigate security vulnerabilities. Train employees on data protection best practices and confidentiality.

3. Data Retention and Deletion

Define clear data retention periods for different types of data (e.g., customer accounts, transaction history). Securely delete data that is no longer necessary for business operations or legal compliance.

4. Compliance and Accountability

Adhere to relevant data protection laws and regulations in Nigeria and globally (e.g., NDPR - Nigeria Data Protection Regulation). Appoint a Data Protection Officer (DPO) responsible for overseeing data protection practices. Conduct periodic audits and assessments to ensure compliance and identify areas for improvement.

5. Customer Rights and Support

Provide customers, vendors, and drivers/riders with mechanisms to access, update, or delete their data. Offer customer support channels for addressing data privacy concerns or inquiries.

6. Incident Response and Notification

Establish a protocol for responding to data breaches or security incidents promptly. Notify affected parties and regulatory authorities as required by law.

7. Continuous Improvement

Regularly review and update the data protection policy in response to changes in regulations or business practices. Seek feedback from stakeholders to enhance data protection measures and user experience.

By implementing this data protection policy, 1Techlink can uphold its commitment to customer-centricity, safeguard user trust, and ensure compliance with data protection standards while fostering seamless operations for users, vendors, and drivers/riders.  For more information, enquiries or complains, please contact us at dataprotection@1techlink.com