Effective Date: April 1, 2025
Controller: LiquidPay Africa Ltd.
1. Who We Are
LiquidPay Africa Ltd. ("LiquidPay", "we", "our", or "us") is a financial technology company incorporated in Africa. We operate a technology platform that facilitates cross-border payment transfers between Nigeria (NGN) and South Africa (ZAR). We are not a bank. All financial transactions are executed by our licensed financial partners.
Questions about this policy can be directed to: privacy@liquidpay.africa
2. Data We Collect
2.1 Identity and Verification Data
To comply with our partners' KYC obligations and applicable AML regulations, we collect:
- Full legal name
- Date of birth
- Bank Verification Number (BVN) — for Nigerian users
- South African ID number or passport — for South African users
- Government-issued identification documents
2.2 Contact Data
- Email address
- Phone number
- Country of residence
2.3 Financial Data
- Bank account details (for funding and disbursement, processed by our licensed partners)
- Transaction history within the LiquidPay platform
- Transfer amounts, source, and destination
2.4 Technical Data
- IP address and device information
- Browser type and operating system
- Session data and usage analytics (via anonymized tools)
3. Why We Collect Your Data
We collect and use your data for the following purposes:
- To process your transfers: We need identity and financial data to route your transfer securely through our network and licensed partners.
- To comply with the law: CBN directives and SARB regulations require us to verify user identities and maintain records of all transactions.
- To protect against fraud: We use your data to detect and prevent unauthorized activity on your account.
- To communicate with you: Transaction confirmations, account alerts, and service updates.
4. How We Share Your Data
We do not sell your personal data. We share it only in the following limited circumstances:
- Licensed Financial Partners: Our CBN and SARB licensed partners receive necessary information to process your transfer. They are bound by their own regulatory obligations and data protection commitments.
- Regulatory Authorities: We will provide data to regulators, financial intelligence units, or law enforcement when legally required to do so.
- Service Providers: We use carefully selected technology providers (e.g., identity verification services) who process data strictly on our behalf and under our instructions.
5. Data Retention
We retain your personal data for as long as your account is active and for a minimum of 5 years thereafter, as required by CBN and SARB AML record-keeping obligations. You may request deletion of non-legally-required data by contacting us.
6. Your Rights
Depending on your jurisdiction, you may have the right to:
- Access the personal data we hold about you
- Correct inaccurate data
- Request deletion of data we are not legally required to retain
- Object to processing in certain circumstances
- Withdraw consent where processing is based on consent
To exercise these rights, contact us at privacy@liquidpay.africa.
7. Security
We implement 256-bit SSL encryption for all data transmitted to and from our platform. Access to personal data is restricted to personnel who require it to perform their duties, and all access is logged and audited.
8. Changes to This Policy
We may update this policy as our services or regulatory requirements evolve. We will notify you of material changes by email or via an in-app notice at least 14 days before changes take effect.