DUKKA INC. respects your privacy and is committed to protecting your data.
A. Personal Information
As part of our operations, we collect and process certain types of information (such as name, telephone numbers, address, PIN, etc.) of individuals that make them easily identifiable. These individuals include current, past, and prospective registered users, prospective users, newsletter applicants, any and all other persons that in one way or the other interact with our Platform (“Users”), and other individuals with whom we communicate or deal with, jointly and/or severally.
To use our Services, you will be required and hereby undertake to voluntarily provide us with certain Personal Information. Personal Information refers to information relating to an identified person or information that can be used to identify you, (e.g., name, email address, telephone number). It may also include anonymous information that may be linked to you specifically, (e.g., IP address).
We use your Personal Information to:
We may retrieve additional Personal Information about you from third parties and other identification/verification services. With your consent, we may also collect additional Personal Information in other ways including emails, surveys, and other forms of communication. Once you begin using our Services, we will keep records of and collect information regarding your activities as it relates to our Services. We will not share or disclose your Personal Information with a third party without your consent except as may be required for the purpose of providing you with our Services or under applicable legislation.
B. Information that we collect from website visitors not Users
As a visitor to our website, we do not collect your Personal Information. However, so we can monitor and improve our website and Services, we may collect non-personally identifiable information. We will not share or disclose this information with third parties except as a necessary part of providing our Services. We may where applicable, use the information to target advertisements to you.
C. Purpose Limitation
We collect Personal Information only for identified purposes and for which consent has been obtained. Such Personal Information cannot be reused for another purpose that is incompatible with the original purpose, except consent is obtained for such purpose
D. Data Minimization
We limit Personal Information collection and usage to data that is relevant, adequate, and absolutely necessary for carrying out the purpose for which the data is processed. We will evaluate whether and to what extent the processing of Personal Information is necessary and where the purpose allows, anonymized data will be used.
Our cookies do not store personal or sensitive information. They simply hold a unique random reference to you so that once you visit our website, we can recognize who you are and provide certain content to you. If your browser or browser add-on permits, you have the choice to disable cookies on our website, however this may impact your experience with using our website.
We shall establish adequate controls in order to protect the integrity and confidentiality of your Personal Information, both in digital and physical format and to prevent your Personal Information from being accidentally or deliberately compromised.
We are committed to managing your Personal Information in line with global industry best practices. We protect your Personal Information using physical, technical, and administrative security measures to reduce the risks of loss, misuse, unauthorised access, disclosure and alteration, we also use industry recommended security protocols to safeguard your Personal Information. Other security safeguards include but are not limited to data encryption, firewalls, and physical access controls to our building and files and only granting access to your Personal Information to only employees who require it to fulfil their job responsibilities. No Personal Information processing will be undertaken by an employee who has not been authorised to carry such out as part of their legitimate duties.
We do not sell, trade, or rent Personal Information to anyone. However, to enable us to render our Services to you on our website, we may share your information with trusted third parties, such third parties include sanctions screening and identity verification services as well as any third parties that you have directly authorised to receive your Personal Information.
A. Third Party Processor within Nigeria
In providing you with the Services, we may rely on third-party servers located in foreign jurisdictions from time to time, which as a result, may require the transfer or maintenance of your Personal Information on computers or servers in foreign jurisdictions.
Where such Personal Information is to be transferred to a country outside Nigeria, we shall put adequate measures in place to ensure the security of such Personal Information. We shall, among other things, confirm whether the country is on the National Information Technology Development Agency (“NITDA”) Whitelist of Countries with adequate data protection laws.
The transfer and subsequent processing of such Personal Information would be in accordance with the provisions of the Nigeria Data Protection Regulation ("NDPR”) which we comply with. We will therefore only transfer and permit the processing of Personal Information outside of Nigeria where:
We will take all necessary steps to ensure that your Personal Information is transmitted and processed in a safe and secure manner. Details of the protection given when your Personal Information is transferred outside Nigeria shall be provided to you upon request.
We will retain your Personal Information for as long as is needed to provide our Services to you, comply with our legal and statutory obligations or verify your information with the required verification authorities. Therefore, even after discontinuance of our Services, we will retain certain Personal Information and transaction data to comply with our legal and regulatory obligations. All Personal Information shall be destroyed by us where we have satisfied the legal retention timeframe.
For all Personal Information and records obtained, used, and stored by us, we shall perform periodical reviews of the data retained to confirm the accuracy, purpose, validity, and requirement to retain. The length of storage of your Personal Information shall, amongst other things, be determined by:
Once your Personal Information is held by us, you are entitled to reach out to us to exercise the following rights:
Your request will be reviewed by us and carried out except as restricted by law or our statutory obligations. You may review and update your Personal Information directly or by contacting us via email at email@example.com
Our Services are directed to people between the ages of 18 and above. If as a parent or guardian, you become aware that your child or ward has provided us with any information without your consent, please contact us via email at firstname.lastname@example.org
You may contact us upon becoming aware of any breach of Personal Information or if your access to our Services has been compromised, to enable us to take the necessary steps towards ensuring the security of your Personal Information.