1. Introduction
We are committed to protecting your privacy. This policy explains what personal information we collect, how we use it, who we share it with, and the choices and rights you have. Some features of our services may have additional privacy notices—please read them alongside this policy.
2. Who we are & scope
This policy applies to the Digital Pivot website at dipivot.com, our mobile applications, and related services for gift card redemption, bill payments, and local flight bookings (when available).
Controller: Digital Pivot LLC, 1 Omozogie Road, off Uselu Lagos Road, Benin City, Nigeria. Email: privacy@dipivot.com / info@dipivot.com
3. Definitions
Personal information means information that identifies or could reasonably be linked to an individual. Examples include name, contact details, government ID, account identifiers, device and network information, and transaction data.
4. What we collect
Account & profile
Name, phone, email, country/region, username, profile photo, security questions, and authentication tokens.
Verification / KYC
Government ID, date of birth, address, live photo/biometrics (where required by law), and risk/fraud checks (via compliant providers).
Transactions
Gift card brand/denomination, rates and quotes, trade history, wallet and payout details, bills paid, flight search/booking details.
Device & network
App and device identifiers, model/OS, language, IP address, coarse location, crash and performance logs, and security telemetry.
Usage & support
Feature usage, session events, page views, referral/marketing attribution, support chats and tickets, and survey responses.
Cookies & similar tech
See our Cookie Policy for details on categories and choices.
5. Sources of personal information
- You — when you create an account, use features, or contact support.
- Your device — through logs, analytics, and security telemetry.
- Third parties — identity verification, fraud prevention, payments, messaging, analytics, and business partners you connect.
6. How we use information
Provide & improve services
Create and secure accounts, process trades and payouts, process bills and bookings, provide support, and improve performance.
Security & fraud prevention
Detect, prevent, and investigate fraud, abuse, and security incidents; risk scoring; and enforcement of our Terms.
Communications
Transactional messages (receipts, alerts), service updates, and—where permitted—product tips. You can opt out of non‑essential emails.
Legal & compliance
AML/KYC, record‑keeping, accounting, responding to lawful requests, and regulatory reporting.
7. Legal bases for processing
- Contract — to provide services you request.
- Consent — for specific features (e.g., marketing, certain analytics) where required. You can withdraw consent at any time.
- Legal obligation — to meet AML/KYC and other regulatory requirements.
- Legitimate interests — to secure our services, prevent fraud, and improve features, balanced against your privacy.
9. International transfers
We operate globally and may transfer personal information to countries with different data protection laws. Where required, we use appropriate safeguards (such as Standard Contractual Clauses) and implement technical and organizational measures to protect your data.
10. Retention
We retain personal information only as long as necessary for the purposes described, to comply with law, or to resolve disputes. When no longer needed, we delete or anonymize information. In limited cases we may securely archive information for legal obligations.
11. Security
We use a combination of administrative, technical, and physical controls to protect personal information (encryption in transit and at rest, access controls, monitoring, and secure development practices). No system is 100% secure. If you suspect an account issue, contact support immediately.
12. Managing preferences
Privacy & cookies
Update your cookie choices and non‑essential data preferences.
Access, export, or delete
You can request a copy of your data, ask us to correct or delete it, or object to certain processing. See “Your rights”.
View your rights13. Your rights
Depending on your location, you may have rights to:
- Access — receive a copy of personal information we hold about you.
- Correction — rectify inaccurate or incomplete data.
- Deletion — request deletion when no longer needed or where required by law.
- Restriction — limit processing in certain circumstances.
- Objection — object to processing based on legitimate interests or direct marketing.
- Portability — receive data in a machine‑readable format.
- Withdraw consent — where processing is based on consent.
- Complain — to a supervisory authority in your region.
To exercise rights, email privacy@dipivot.com. We may ask for information to verify your identity and will respond within timeframes required by applicable law.
14. Children’s privacy
Our services are not directed to children, and we do not knowingly collect personal information from individuals under the age of 13 (or the age of digital consent in your region). If you believe a child has provided us information, contact us to request deletion.
15. Automated decision‑making
We do not make decisions based solely on automated processing that produce legal or similarly significant effects. We may use automated tools to help detect fraud or abuse; you can contact us to contest a decision or request human review.
16. Changes to this policy
We review this policy periodically and may update it to reflect changes to our products, legal obligations, or best practices. If changes are material, we will notify you via the site, app, or email. The “Effective date” at the top shows when this policy last changed.
17. Regional notices
EEA/UK/Switzerland
If you are located in the EEA/UK/CH, Digital Pivot acts as the data controller. We rely on Standard Contractual Clauses and comparable safeguards for international transfers where applicable. You can raise concerns with your local supervisory authority.
Nigeria
We process personal information in line with the Nigeria Data Protection Act (NDPA) and applicable NDPR guidelines. You may contact us to exercise your data subject rights.
18. Contact us
Questions about this policy or our data practices? Contact our privacy team:
- Email: privacy@dipivot.com or info@dipivot.com
- Address: Digital Pivot LLC, 1 Omozogie Road, off Uselu Lagos Road, Benin City, Nigeria
- Support: dipivot.com/contact-us
Appendix: Data categories & purposes
| Category | Examples | Primary purposes | Legal bases |
|---|---|---|---|
| Account | Name, email, phone, profile | Create/manage account, support | Contract; Legitimate interests |
| KYC | ID, selfie, address | Verification, AML/CTF, fraud prevention | Legal obligation; Legitimate interests |
| Transactions | Gift card trades, payouts, bills | Provide services, accounting | Contract; Legal obligation |
| Device/usage | IP, device IDs, logs | Security, diagnostics, analytics | Legitimate interests; Consent (analytics) |
| Comms | Support chats, email prefs | Customer support, service updates | Contract; Legitimate interests |