At MySave ("we," "us," or "our"), your privacy is fundamental to our mission. This Privacy Policy explains how we collect, use, share, and protect your personal information when you use our website, mobile application, investment products, savings tools, or any related services (collectively, the "Platform"). By using MySave, you agree to the practices described in this policy.
1. Information We Collect
To provide you with seamless financial services, we may collect the following categories of personal data:
- Identity & Contact Data: Full name, email address, phone number, date of birth, government ID (NIN, BVN, passport number) for KYC/AML compliance.
- Financial Information: Bank account details, transaction history, investment preferences, wallet balances, and income verification (when required).
- Technical & Usage Data: IP address, device identifiers, browser type, app version, logs, and interaction data (e.g., features used, session duration).
- Communications: Records of your chats, support tickets, and feedback when you contact our team.
- Location Data: With your consent, approximate location for fraud prevention and regional compliance.
2. How We Use Your Information
We process your data strictly for legitimate business purposes, including:
- ✔️ Creating and managing your MySave account (onboarding, authentication, KYC verification).
- ✔️ Processing deposits, withdrawals, savings plans, and investment returns.
- ✔️ Personalizing your dashboard and offering tailored financial recommendations.
- ✔️ Detecting and preventing fraud, money laundering, or unauthorised transactions.
- ✔️ Sending service notifications, transaction alerts, and important policy updates.
- ✔️ Improving our platform’s security, performance, and user experience.
- ✔️ Complying with applicable financial regulations and legal obligations.
🔒 We never sell your personal data to third parties for marketing purposes. Your trust is our priority.
3. Data Sharing & Disclosure
We only share your information with trusted third parties when necessary to operate our services or by law. These may include:
- Financial Partners: Payment gateways, banks, and escrow agents to process transactions.
- Identity Verification Providers: KYC/AML services that help us validate your identity and prevent fraud.
- Regulatory Authorities: When required by law, court order, or lawful request from government agencies.
- Cloud & Security Infrastructure: Encrypted storage providers and cybersecurity tools (e.g., AWS, Google Cloud).
- Professional Advisors: Auditors, lawyers, and compliance consultants to ensure regulatory alignment.
Any third party we engage must adhere to strict data protection standards and use your information solely for the agreed purposes.
4. Data Security & Encryption
MySave implements bank-grade security measures:
- 🔐 Encryption in transit: All data exchanged between your device and our servers is protected with TLS 1.3 (AES-256).
- 🔐 Encryption at rest: Sensitive data (bank details, ID numbers) is encrypted using strong algorithms.
- 🛡️ Multi-factor authentication (MFA) is available and encouraged for all accounts.
- 🛡️ Regular penetration tests, vulnerability scans, and 24/7 monitoring for suspicious activities.
- 🚫 Access to personal data is restricted to authorised personnel on a need-to-know basis.
While we strive to protect your data, no system is 100% immune. Please safeguard your login credentials and notify us immediately of any suspected breach.
5. Cookies & Tracking Technologies
We use cookies, web beacons, and similar technologies to enhance your experience, analyse platform usage, and remember preferences. You can manage cookie preferences through your browser settings. Essential cookies (required for authentication, security, and transactions) cannot be disabled. For non-essential analytics and functional cookies, we request your consent upon first visit.
6. Your Privacy Rights
Depending on your jurisdiction, you may have the following rights regarding your personal data:
- Access: Request a copy of the personal information we hold about you.
- Rectification: Correct inaccurate or incomplete data.
- Deletion (Right to be forgotten): Request account closure and deletion of your data, subject to legal retention requirements (e.g., financial transaction records may be kept for 5–7 years).
- Restriction & Objection: Limit how we process your data in certain circumstances.
- Data Portability: Receive a machine-readable copy of your data.
- Withdraw Consent: Where processing is based on consent, you may withdraw anytime.
To exercise any of these rights, please contact our Data Protection Officer using the details in Section 9. We will respond within 30 days.
7. Data Retention
We retain personal data only as long as necessary to fulfil the purposes outlined in this policy, comply with legal obligations (anti-money laundering, tax, and financial regulations), resolve disputes, and enforce our agreements. Typically:
- Account data: Retained while your account is active + up to 5 years after closure for regulatory audit.
- Transaction history: Minimum 7 years (as required by financial laws).
- Marketing preferences: Until you opt-out or withdraw consent.
8. Children’s Privacy
MySave is not intended for individuals under the age of 18. We do not knowingly collect personal data from minors. If we discover that a person under 18 has provided us with personal information, we will delete it immediately. Parents or guardians who believe a minor has registered should contact us.
9. Changes to This Policy
We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or regulatory guidance. The "Last updated" date at the top of this page indicates when the latest version was released. In case of significant changes, we will notify you via email or in-app notification. Your continued use of MySave after the changes constitutes acceptance of the revised policy.
10. Contact Us
If you have any questions, concerns, or data subject requests, please reach out to our dedicated privacy team:
You also have the right to lodge a complaint with your local data protection authority (e.g., NITDA in Nigeria) if you believe your privacy rights have been violated.