Privacy Policy
This policy explains what data we collect, why we collect it, how we use it, and the choices you have. We are committed to being transparent and protecting your privacy.
1. Who We Are
Nifty Fissions Technology ("Nifty Fissions", "we", "our", or "us") is a Full Digital Innovation Lab that builds enterprise software, AI systems, fintech solutions, and digital product experiences. We are the data controller for information collected through our website (niftyfissions.com) and any mobile or web applications we develop and distribute under our own brand.
Our registered contact address is: info@niftyfissions.com. You may direct all privacy-related enquiries to this address.
2. Data We Collect
We collect only the minimum data necessary to operate our services. The categories below apply to our website and any apps we publish.
2.1 Information You Provide Directly
- Contact form data: name, company name, email address (via your email client), and message content when you submit our enquiry form.
- Account registration: email address, display name, and password (where in-app accounts are offered).
- Communications: any information you include when you email or message us directly.
2.2 Usage & Technical Data (Collected Automatically)
- IP address and approximate geographic location (country/city level).
- Browser type, version, and operating system.
- Pages visited, time spent, referring URL, and navigation path.
- Device type (desktop, mobile, tablet) and screen resolution.
- Crash reports and error logs (in apps, collected anonymously unless you consent to fuller diagnostics).
2.3 Device & App Identifiers (Mobile Apps)
- Advertising Identifier (IDFA on iOS / GAID on Android) — only if you grant permission and only for analytics or fraud prevention, never sold to advertisers.
- Push notification token — to send you service notifications you opt in to.
- App version and build number for diagnostic purposes.
2.4 Location Data
Precise GPS location is not collected unless a specific feature you use requires it and you have explicitly granted location permission. If collected, it is used only for that feature and is not retained beyond the active session.
2.5 Financial Data
We do not store payment card details. Any payments processed through our platforms use PCI-DSS compliant third-party payment processors (e.g., Paystack, Flutterwave, or Stripe). We receive only a transaction reference and status from these providers.
2.6 Data We Do NOT Collect
- We do not collect sensitive categories of data (health, biometrics, race, religion, sexual orientation) unless you are using an application explicitly designed to handle such data, in which case separate, prominent disclosures are provided.
- We do not sell your personal data to any third party.
- We do not share data with data brokers.
3. How We Use Your Data
| Purpose | Data Used | Legal Basis |
|---|---|---|
| Respond to project enquiries | Name, email, message | Legitimate interest / Contract |
| Operate and improve our website & apps | Usage data, device data | Legitimate interest |
| Send service notifications | Email, push token | Consent |
| Analytics & product improvement | Aggregated usage data | Legitimate interest |
| Security & fraud prevention | IP, device identifiers | Legal obligation / Legitimate interest |
| Legal compliance & law enforcement | Any relevant data | Legal obligation |
We will not use your data for any purpose incompatible with the purpose for which it was originally collected without seeking fresh consent or having another lawful basis.
4. Data Sharing & Disclosure
We do not sell, rent, or trade your personal data. We may share data in the following limited circumstances:
Service Providers (Processors)
We engage trusted sub-processors — such as cloud hosting providers (AWS, GCP), analytics tools, and email delivery services — who process data solely on our instructions under data processing agreements.
Payment Processors
Transaction data is shared with PCI-DSS compliant payment providers only to complete a payment you initiate. These providers have their own privacy policies.
Legal Requirements
We may disclose data where required by law, court order, or governmental authority, or to protect the rights, property, or safety of Nifty Fissions, our users, or others.
Business Transfers
In the event of a merger, acquisition, or sale of assets, user data may be transferred as part of that transaction. We will notify you via email or prominent notice on our website before your data is transferred and becomes subject to a different privacy policy.
5. Data Retention
- Contact & enquiry data: retained for up to 3 years to manage the client relationship, then securely deleted.
- Account data: retained for the life of your account plus 90 days after deletion to allow recovery; thereafter deleted unless legally required to retain.
- Usage & analytics data: aggregated and anonymised after 12 months; individual records deleted after 24 months.
- Financial records: retained for 7 years as required by applicable tax and financial regulations.
6. Security
We implement industry-standard technical and organisational measures to protect your data against unauthorised access, disclosure, alteration, or destruction.
All data transmitted between your device and our servers is encrypted using TLS 1.2 or higher (HTTPS enforced).
Sensitive data is encrypted at rest using AES-256. Access is restricted to authorised personnel on a need-to-know basis.
Multi-factor authentication and role-based access controls are enforced for all internal systems holding personal data.
We have a documented incident response plan. In the event of a breach affecting your rights, we will notify you within 72 hours where required by law.
No method of transmission or storage is 100% secure. If you suspect a security issue, please contact us immediately at info@niftyfissions.com.
7. Your Rights & Choices
Depending on your jurisdiction, you may have the following rights regarding your personal data. We honour all of these:
Access
Request a copy of the personal data we hold about you.
Rectification
Correct inaccurate or incomplete data.
Erasure ("Right to be Forgotten")
Request deletion of your data where no overriding legal basis exists.
Restriction
Limit how we process your data in certain circumstances.
Portability
Receive your data in a structured, machine-readable format.
Objection
Object to processing based on legitimate interests or for direct marketing.
Withdraw Consent
Where processing is based on consent, you may withdraw at any time without penalty.
Automated Decisions
Not be subject to solely automated decisions with significant legal effects without human review.
To exercise any of these rights, contact us at info@niftyfissions.com. We will respond within 30 days. We may ask you to verify your identity before fulfilling a request.
9. Children's Privacy
Our website and applications are not directed to children under the age of 13 (or 16 in certain jurisdictions). We do not knowingly collect personal data from children. If you believe a child has provided us with personal data without parental consent, please contact us at info@niftyfissions.com and we will delete it promptly.
If any of our applications are specifically designed for users under 13, they will comply with the Children's Online Privacy Protection Act (COPPA), the UK Age Appropriate Design Code, and applicable App Store policies, with explicit parental consent obtained before data collection.
10. Third-Party Links & Services
Our website may contain links to third-party websites or embed services (such as YouTube videos or maps). These third parties have their own privacy policies over which we have no control. We encourage you to review their policies before providing any personal information. Our inclusion of a link does not imply endorsement of their privacy practices.
11. International Data Transfers
Nifty Fissions Technology operates primarily in Africa and serves international clients. Your data may be transferred to, and processed in, countries outside your country of residence. Where such transfers occur, we ensure appropriate safeguards are in place, including Standard Contractual Clauses (SCCs), adequacy decisions, or other lawful transfer mechanisms as required by applicable law.
12. California Residents (CCPA / CPRA)
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA):
- Right to Know: Request disclosure of personal information collected, used, shared, or sold.
- Right to Delete: Request deletion of personal information subject to certain exceptions.
- Right to Opt-Out of Sale: We do not sell personal information. No opt-out is required, but you may contact us to confirm.
- Right to Non-Discrimination: We will not discriminate against you for exercising your CCPA rights.
- Right to Correct: Request correction of inaccurate personal information.
To submit a CCPA request, contact us at info@niftyfissions.com or using the contact details in Section 16.
13. EEA & UK Users (GDPR / UK GDPR)
If you are located in the European Economic Area (EEA) or the United Kingdom, the General Data Protection Regulation (GDPR) or UK GDPR applies to our processing of your personal data.
- Legal bases: We rely on consent, contract, legitimate interests, or legal obligation as described in Section 3.
- Data Protection Officer: We currently do not have a statutory DPO obligation, but privacy enquiries are handled by our privacy team at info@niftyfissions.com.
- Supervisory authority: You have the right to lodge a complaint with your local data protection authority if you believe your rights have been violated.
14. App Store Privacy Notice
This section provides the disclosures required by Apple App Store and Google Play Store for any mobile applications published by Nifty Fissions Technology.
Apple App Store — Privacy Nutrition Labels
Apple requires us to declare how data is used. The table below reflects our standard practices for Nifty Fissions-branded apps:
| Data Category | Collected? | Linked to You? | Used for Tracking? |
|---|---|---|---|
| Contact info (name, email) | Yes | Yes | No |
| Usage data | Yes | Anonymised | No |
| Device identifiers | Yes | No | No |
| Crash / diagnostics | Yes | No | No |
| Location (precise) | Only if feature requires + permission granted | No | No |
| Financial info | No (processed by 3rd-party) | — | — |
| Health & fitness | No | — | — |
| Browsing history | No | — | — |
| Sensitive info | No | — | — |
Each app published on the App Store will have its own App Privacy page on its App Store listing with data specific to that application.
Google Play Store — Data Safety Section
The following reflects our standard data safety declarations for Nifty Fissions apps on Google Play:
Data encrypted in transit: Yes — all network requests use HTTPS/TLS.
Data deletion request: Users can request data deletion through the in-app settings or by contacting info@niftyfissions.com. Requests are fulfilled within 30 days.
Data collection required / optional: Core account and functional data is required to use the app. Analytics data collection is optional and can be disabled in settings.
Data sold to third parties: No — we never sell user data.
Data shared for tracking / advertising: No cross-app or cross-site tracking; no advertising data sharing.
15. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will update the "Last updated" date at the top of this page. For material changes, we will provide a prominent notice on our website or send you an email notification at least 30 days before the change takes effect, where we hold your email address. Your continued use of our services after the effective date constitutes acceptance of the updated policy.
16. Contact Us
If you have any questions, concerns, or requests relating to this Privacy Policy or our data practices, please contact us:
info@niftyfissions.com
Response within 30 days
info@niftyfissions.com
Please report vulnerabilities responsibly
Postal address:
Nifty Fissions Technology
Attn: Privacy Team
Nigeria
Prefer a quick message? Use our contact form on the main site and include "Privacy Request" in the subject line.