Privacy Policy
Effective date: 1 June 2026 · Last updated: 1 June 2026
1. Introduction
Flashpay (“we”, “us”, “our”) operates the marketing website at flashpay.africa and related subdomains. This Privacy Policy explains what data we collect when you visit this site, how we use it, and the rights available to you under the Nigeria Data Protection Regulation (NDPR) and the EU General Data Protection Regulation (GDPR).
2. Data We Collect
When you visit this website we may collect:
- Usage data — pages visited, referrer URL, browser type, and device information collected via server logs.
- Cookie consent preference — your Accept or Reject choice, stored locally in your browser (not transmitted to our servers).
- Contact data — name and email address if you submit an enquiry form.
We do not currently use advertising, behavioural tracking, or third-party analytics cookies.
3. Cookies
This site uses only functional cookies necessary for it to operate correctly. We store your cookie consent preference in your browser’s localStorage under the key flashpay_cookie_consent. This value is never transmitted to our servers.
You can withdraw or change your consent at any time by clearing your browser’s local storage for this site.
4. How We Use Your Data
We use the data we collect to:
- Operate and improve this website.
- Respond to enquiries you send us.
- Comply with applicable laws and regulatory obligations.
- Ensure the security and integrity of our systems.
We do not use your data for automated decision-making or profiling.
5. Data Sharing
We do not sell your personal data. We may share it with:
- Licensed partner banks and financial institutions, as necessary to deliver our payment services.
- Service providers who assist us in operating this website, bound by confidentiality obligations.
- Regulators or law enforcement where required by applicable law.
6. Your Rights
Depending on your jurisdiction you have the right to:
- Access — request a copy of the personal data we hold about you.
- Correction — ask us to correct inaccurate data.
- Erasure — request deletion of your data where there is no lawful basis for continued processing.
- Portability (GDPR) — receive your data in a structured, machine-readable format.
- Objection — object to processing based on legitimate interests.
To exercise any of these rights, contact us at divine@flashpayweb.com. We will respond within 30 days.
7. Data Retention
Server logs are retained for up to 90 days. Contact enquiry data is retained for as long as necessary to respond to your request, and deleted thereafter unless a longer retention period is required by law.
8. Governing Law
This policy is governed by the laws of the Federal Republic of Nigeria. For visitors in the European Economic Area, we process personal data in compliance with the GDPR and recognise the supervisory authority of the relevant EU data protection authority.
9. Changes to This Policy
We may update this policy from time to time. The “Last updated” date at the top of this page reflects the most recent revision. Continued use of the site after an update constitutes acceptance of the revised policy.
10. Contact
For any privacy-related questions or requests, please write to us at divine@flashpayweb.com.