Privacy Policy

At SwiftPay, we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your data when you use our mobile application and financial services.


SWIFTPAY PRIVACY POLICY



Operated by GREAT VALLEY TECHNOLOGIES INT LTD (RC 7838854), Registered in Nigeria

Last Updated: October 2025

Contact: support@swiftpaymfb.com





1. Introduction



Welcome to SwiftPay, a financial and digital asset technology platform operated by GREAT VALLEY TECHNOLOGIES INT LTD (RC 7838854), duly registered under the laws of the Federal Republic of Nigeria.


This Privacy Policy outlines how we collect, process, store, share, and protect your personal, financial, and transactional information when you use our services, applications, and website.


By using SwiftPay, you consent to this Privacy Policy and to the processing of your information as described herein. If you do not agree, please discontinue using our services.





2. Who We Are



SwiftPay is a digital financial platform offering:


  • Fiat and cryptocurrency exchange services,
  • Wallet management (custodial and non-custodial),
  • Bill payments, airtime, and merchant services,
  • International remittances and money transfers,
  • Business and personal account services.



SwiftPay operates under GREAT VALLEY TECHNOLOGIES INT LTD, which is committed to compliance with:


  • Central Bank of Nigeria (CBN) regulatory frameworks,
  • Nigeria Data Protection Regulation (NDPR),
  • General Data Protection Regulation (GDPR),
  • Anti-Money Laundering (AML) and Counter-Terrorism Financing (CTF) laws,
  • And relevant international privacy laws.






3. Scope of This Policy



This Privacy Policy applies to:


  • All SwiftPay products, applications, and websites;
  • All users — individuals and businesses;
  • All services involving financial transactions, crypto exchange, or data processing;
  • All geographic locations where SwiftPay operates or partners provide services.



This policy governs data collected directly from users or indirectly through our APIs, third-party partners, or financial institutions.





4. Information We Collect



SwiftPay may collect the following categories of information:



4.1 Personal Identification Information



  • Full name, gender, date of birth, and nationality;
  • Government-issued identification (BVN, NIN, passport, driver’s license, or voter’s card);
  • Photographs, selfies, or video verification (for KYC).




4.2 Contact Information



  • Email address, phone number, and physical address;
  • Alternative contact information provided during account setup.




4.3 Financial and Transactional Data



  • Bank details, virtual account numbers, and transaction records;
  • Fiat deposits and withdrawals;
  • Cryptocurrency transactions, wallet addresses, and blockchain metadata;
  • Currency exchange and conversion logs.




4.4 Device and Technical Data



  • IP address, device ID, browser type, OS, network information;
  • Geolocation data (when permission is granted);
  • Login history and authentication logs.




4.5 Business Information (for corporate users)



  • Company name, RC number, business type, and incorporation documents;
  • Authorized representatives’ information;
  • Merchant transaction history and settlement details.




4.6 App Permissions and Device Access



SwiftPay requests certain permissions for full functionality:


  • Camera: For KYC and QR code scans;
  • Location: For fraud detection and compliance;
  • Storage: For uploading IDs or documents;
  • Contacts: For referrals and P2P transactions (optional);
  • Notifications: For alerts and updates.



You may revoke any permission at any time via device settings, but certain features may become unavailable.





5. How We Collect Your Data



Data is obtained through:


  1. Direct input during registration and use of services;
  2. Automated systems (e.g., device identifiers, cookies, analytics);
  3. Third-party partners such as payment processors, banks, or exchanges;
  4. Publicly available sources and regulatory databases for verification.






6. Purpose of Data Collection



SwiftPay collects and processes personal data for the following purposes:


  • Account registration and identity verification;
  • Provision of wallet, exchange, and payment services;
  • Fraud monitoring, risk assessment, and transaction security;
  • Compliance with CBN, NDPR, and AML/CFT obligations;
  • Customer communication and support;
  • Product improvement, analytics, and service customization;
  • Legal record-keeping and audit trail maintenance.






7. Legal Basis for Processing



We process your data under these lawful bases:


  • Consent: You provide explicit consent when registering or using the app.
  • Contractual Necessity: Processing required to deliver SwiftPay’s services.
  • Legal Obligation: Compliance with CBN, NDPR, AML, tax, and consumer protection laws.
  • Legitimate Interest: Platform security, fraud prevention, and business analytics.






8. Use of Cookies and Similar Technologies



Cookies help SwiftPay:


  • Maintain secure sessions;
  • Recognize returning users;
  • Measure engagement and improve performance;
  • Detect unauthorized activity.



You can manage cookie preferences in your browser settings.





9. Third-Party Integrations and SDKs



SwiftPay uses trusted third-party SDKs and APIs, including:


  • Google Firebase Analytics — usage, crash reports, and engagement;
  • Google Play Services — authentication and app optimization;
  • Meta Pixel and Appsflyer — marketing and campaign analytics;
  • Cloud Hosting Providers — secure data storage and redundancy;
  • KYC/AML Vendors — verification and compliance.



These processors operate under strict contractual and legal obligations to safeguard data.





10. Data Retention Policy



We retain user data for as long as necessary to:


  • Fulfill transactions and services;
  • Meet legal and regulatory requirements (typically five years);
  • Resolve disputes and prevent fraud;
  • Maintain accurate records.



Data beyond retention periods is securely erased or anonymized.





11. Data Storage and Security Measures



SwiftPay uses advanced technical and organizational safeguards:


  • End-to-end encryption (AES-256, TLS 1.3);
  • Multi-layered firewalls and DDoS protection;
  • Biometric and 2FA authentication;
  • Access control and regular audits;
  • Encrypted database storage on certified data centers in Nigeria and internationally.



Despite robust security, users are advised to maintain strong passwords and report suspicious activity.





12. Data Sharing and Disclosure



SwiftPay may disclose data:


  1. To regulators and law enforcement (CBN, EFCC, NFIU, NDPC, SEC) where legally required;
  2. To partner institutions (banks, payment processors, crypto exchanges);
  3. To vendors (hosting, analytics, customer service);
  4. During corporate transactions, such as mergers or acquisitions, with proper safeguards.



We never sell or trade user data for profit.





13. Cross-Border Data Transfers



Data may be stored or processed outside Nigeria.

SwiftPay ensures compliance via:


  • NDPR-approved transfer mechanisms;
  • GDPR-standard contractual clauses (SCCs);
  • Secure encrypted transmission.



All partners undergo due diligence for compliance and security integrity.





14. Marketing and Communication Preferences



We may send you notifications, updates, and marketing materials.

You can opt out at any time via app settings or by emailing support@swiftpaymfb.com.


We do not send unsolicited marketing or spam.





15. Your Rights



Under NDPR and GDPR, you have rights to:


  1. Access your personal data;
  2. Request correction or update;
  3. Withdraw consent at any time;
  4. Request deletion (“right to be forgotten”);
  5. Restrict or object to processing;
  6. Data portability to another provider.



All requests are processed within 30 days of verification.





16. Account Deletion and Data Removal



To delete your SwiftPay account or personal data:


  • Log into your account settings, or
  • Send a written request to support@swiftpaymfb.com.



We will delete or anonymize data unless retention is required by law (e.g., AML obligations).





17. Children’s Privacy



SwiftPay does not target individuals under 18 years of age.

We do not knowingly collect data from minors.

If such data is identified, it will be promptly deleted.





18. Automated Processing and Profiling



SwiftPay uses automated systems to:


  • Detect suspicious transactions;
  • Assess risk and compliance scoring;
  • Personalize user experience.



Automated decisions never occur without human oversight.





19. Data Breach Notification



In case of a breach:


  1. SwiftPay will notify affected users within 72 hours;
  2. Report the breach to NDPC and relevant regulators;
  3. Mitigate and prevent future incidents.






20. Third-Party Links



Our app or website may contain links to third-party services (e.g., partner exchanges or merchant platforms).

SwiftPay is not responsible for their content or privacy practices.

Users are encouraged to review their privacy policies independently.





21. International Users



If you access SwiftPay from outside Nigeria, your information may be transferred and processed under Nigerian and international laws.

We ensure that all transfers comply with global data protection principles.





22. Governing Law and Arbitration



This Privacy Policy is governed by the laws of the Federal Republic of Nigeria and applicable international privacy frameworks.

Disputes shall be resolved through binding arbitration in Lagos, Nigeria, under the Arbitration and Conciliation Act, conducted in English.





23. Changes to This Policy



SwiftPay may revise this Privacy Policy periodically.

Changes take effect once posted on our website or app.

Continued use of our services after updates indicates acceptance.





24. Contact Information



For questions, concerns, or complaints regarding privacy, contact:


SwiftPay (Operated by GREAT VALLEY TECHNOLOGIES INT LTD)

📧 Email: support@swiftpaymfb.com

🌐 Website: https://swiftpaymfb.com




✅ Compliance Note:

This Privacy Policy is compliant with:


  • Nigeria Data Protection Regulation (NDPR)
  • General Data Protection Regulation (GDPR)
  • CBN Consumer Protection & AML Frameworks
  • Google Play Developer Policy (2024)
  • Apple App Store Privacy Guidelines






SWIFTPAY 隱私權政策


由 GREAT VALLEY TECHNOLOGIES INT LTD(註冊號:RC 7838854)經營,該公司在尼日利亞註冊


上次更新:2025 年 10 月


聯絡方式:support@swiftpaymfb.com


1. 簡介


歡迎使用 SwiftPay,這是一個由 GREAT VALLEY TECHNOLOGIES INT LTD(註冊號:RC 7838854)營運的金融和數位資產技術平台,該公司已根據尼日利亞聯邦共和國法律正式註冊。


本隱私權政策概述了當您使用我們的服務、應用程式和網站時,我們如何收集、處理、儲存、分享和保護您的個人資訊、財務資訊和交易資訊。


使用 SwiftPay 即表示您同意本隱私權政策以及我們依照本政策所述處理您的資訊。如果您不同意,請停止使用我們的服務。


2. 關於我們


SwiftPay 是數位金融平台,提供以下服務:


法幣和加密貨幣兌換服務;


錢包管理(託管和非託管);


帳單支付、話費儲值和商家服務;


國際匯款及轉帳;


企業和個人帳戶服務。


SwiftPay 由 GREAT VALLEY TECHNOLOGIES INT LTD 經營,該公司致力於遵守:


尼日利亞中央銀行 (CBN) 的監管框架;


尼日利亞資料保護條例 (NDPR);


一般資料保護規範 (GDPR);


反洗錢 (AML) 和反恐怖主義融資 (CTF) 法律;


以及相關的國際隱私權法律。


3. 本政策的適用範圍


本隱私權政策適用於:


所有 SwiftPay 產品、應用程式和網站;


所有用戶-包括個人和企業;


所有涉及金融交易、加密貨幣兌換或資料處理的服務;


SwiftPay 營運或合作夥伴提供服務的所有地理位置。


本政策適用於直接從使用者收集或透過我們的 API、第三方合作夥伴或金融機構間接收集的資料。


4. 我們收集的資訊


SwiftPay 可能會收集以下幾類資訊:


4.1 個人識別資訊


姓名、性別、出生日期和國籍;


政府簽發的身份證明文件(銀行驗證號碼 (BVN)、國家識別號碼 (NIN)、護照、駕駛執照或選民證);


照片、自拍或影片驗證(用於 KYC)。


4.2 聯絡資訊


電子郵件地址、電話號碼和實際地址;


帳戶設定期間提供的其他聯絡資訊。


4.3 財務與交易數據


銀行詳細資料、虛擬帳戶號碼和交易記錄;


法幣存款和提款;


加密貨幣交易、錢包位址和區塊鏈元資料;


貨幣兌換和轉換日誌。


4.4 設備和技術數據


IP 位址、裝置 ID、瀏覽器類型、作業系統、網路資訊;


地理位置資料(獲得授權後);


登入歷史記錄和身份驗證日誌。


4.5 企業資訊(適用於企業用戶)


公司名稱、註冊登記號碼、業務類型及公司註冊文件;


授權代表資訊;


商家交易歷史記錄和結算詳情。


4.6 應用權限和設備訪問


SwiftPay 請求某些權限以提供完整功能:


相機:用於 KYC 和二維碼掃描;


位置:用於詐欺偵測和合規性;


儲存:用於上傳身分證件或文件;


聯絡人:用於推薦和 P2P 交易(可選);


通知:用於提醒和更新。


您可以隨時透過裝置設定撤銷任何權限,但某些功能可能會因此而無法使用。


5. 我們如何收集您的數據


數據透過以下方式取得:


註冊和使用服務期間的直接輸入;


自動化系統(例如,設備識別碼、Cookie、分析);


第三方合作夥伴,例如支付處理商、銀行或交易所;


用於驗證的公開來源和監管資料庫。


6. 資料收集目的


SwiftPay 出於以下目的收集和處理個人資料:


帳戶註冊和身份驗證;


提供錢包、交易和支付服務;


詐欺監控、風險評估和交易安全;


遵守 CBN、NDPR 和 AML/CFT 義務;


客戶溝通與支援;


產品改進、分析和服務客製化;


法律記錄保存和審計追蹤維護。


7. 處理的法律依據


我們基於以下合法依據處理您的資料:


同意:您在註冊或使用應用程式時明確表示同意。


合約必要性:為提供 SwiftPay 服務所需的處理。


法律義務:遵守 CBN、NDPR、AML、稅法和消費者保護法。


合法權益:平台安全、詐欺預防和業務分析。


8. Cookie 及類似技術的使用


Cookie 可協助 SwiftPay:


維護安全會話;


辨識回訪用戶;


衡量用戶參與度並提升服務效能;


偵測未經授權的活動。


您可以在瀏覽器中管理 Cookie 設定。


9. 第三方整合和 SDK


SwiftPay 使用受信任的第三方 SDK 和 API,包括:


Google Firebase Analytics — 使用情況、崩潰報告和使用者互動分析;


Google Play 服務 — 驗證與應用程式最佳化;


Meta Pixel 和 Appsflyer — 行銷和活動分析;


雲端託管服務提供者 — 安全的資料儲存和冗餘;


KYC/AML 服務商 — 驗證和合規性。


這些資料處理方均嚴格遵守合約和法律義務,以保障資料安全。


10. 資料保留政策


我們會在以下情況保留用戶資料:


完成交易和服務;


滿足法律法規要求(通常為五年);


解決爭議和防止詐欺;


維護準確的記錄。


超過保留期限的資料將被安全刪除或匿名化。


11. 資料儲存和安全措施


SwiftPay 採用先進的技術和組織安全措施:


端對端加密(AES-256、TLS 1.3);


多層防火牆及 DDoS 防護;


生物辨識和雙重認證;


存取控制和定期審計;


加密資料庫儲存在奈及利亞和國際認證資料中心。


儘管我們採取了強大的安全措施,但仍建議用戶設定強密碼並舉報可疑活動。


12. 資料共享和揭露


SwiftPay 可能在以下情況下揭露數據:


向監管機構和執法部門(尼日利亞中央銀行、經濟和金融犯罪委員會、尼日利亞金融情報機構、尼日利亞開發銀行、證券交易委員會)披露(如法律要求);


向合作夥伴機構(銀行、支付處理機構、加密貨幣交易所)揭露;


向供應商(託管、分析、客戶服務)揭露;


在公司交易(例如合併或收購)期間,在採取適當安全措施的情況下揭露。


我們絕不出售或交易用戶資料以牟利。


13. 跨境資料傳輸


資料可能儲存於奈及利亞境外或進行處理。


SwiftPay 透過以下方式確保合規性:


符合尼日利亞資料保護條例 (NDPR) 的傳輸機制;


符合 GDPR 標準的合約條款 (SCC);


安全加密傳輸。


所有合作夥伴均需接受合規性和安全性的盡職調查。


14. 行銷和溝通偏好


我們可能會向您發送通知、更新和行銷資料。


您可以隨時透過應用程式設定或發送電子郵件至 support@swiftpaymfb.com 選擇退出。


我們不會發送未經請求的行銷訊息或垃圾郵件。


15. 您的權利


根據 NDPR 和 GDPR,您擁有以下權利:


存取您的個人資料;


請求更正或更新;


隨時撤回您的同意;


請求刪除(「被遺忘權」);


限製或反對處理;


將資料遷移至其他服務提供者。


所有請求將在驗證後 30 天內處理完畢。


16. 帳號刪除和資料移除


如需刪除您的 SwiftPay 帳戶或個人資料:


登入您的帳戶設置,或


發送書面請求至 support@swiftpaymfb.com。


我們將刪除或匿名化數據,除非法律要求保留(例如,反洗錢義務)。


17. 兒童隱私


SwiftPay 不針對 18 歲以下的個人。


我們不會故意收集未成年人的資料。


如果發現此類數據,我們將立即刪除。


18. 自動化處理與分析


SwiftPay 使用自動化系統來:


檢測可疑交易;


評估風險和合規性評分;


個人化使用者體驗。


所有自動化決策均在人工監督下進行。


19. 資料外洩通知


如發生資料外洩:


SwiftPay 將在 72 小時內通知受影響的用戶;


向國家資料保護委員會 (NDPC) 和相關監管機構報告此外洩事件;


減輕並預防未來事件的發生。


20. 第三方鏈接


我們的應用程式或網站可能包含第三方服務(例如,合作夥伴交易所或商家平台)的連結。


SwiftPay 對其內容或隱私做法概不負責。


我們鼓勵用戶自行查看其隱私權政策。


21. 國際用戶


如果您從尼日利亞境外訪問 SwiftPay,您的資訊可能會根據尼日利亞和國際法律進行傳輸和處理。


我們確保所有傳輸均符合全球資料保護原則。


22. 管轄法律和仲裁


本隱私權政策受尼日利亞聯邦共和國法律和適用的國際隱私權框架管轄。


爭議應根據《仲裁與調解法》在奈及利亞拉各斯進行具有約束力的仲裁,仲裁語言為英語。


23. 本政策的變更


SwiftPay 可能會定期修訂本隱私權政策。


變更一經發佈在我們的網站或應用程式上即生效。


更新後繼續使用我們的服務即表示您接受這些更新。


24. 聯絡方式


如有任何關於隱私的問題、疑慮或投訴,請聯絡:


SwiftPay(由 GREAT VALLEY TECHNOLOGIES INT LTD 營運)


📧 信箱:support@swiftpaymfb.com


🌐 網址:https://swiftpaymfb.com