This Privacy Policy explains how Paylode Services Limited (“Paylode”, “we”, “us”, “our”) — a Payment Solution Service Provider licensed by the Central Bank of Nigeria (CBN licence No. CBN/PAY/2024/001847) — collects, uses, shares, stores and protects your personal data. We are committed to processing your data lawfully, fairly and transparently in accordance with the Nigeria Data Protection Act 2023 and the Nigeria Data Protection Regulation (NDPR) and other applicable laws.
This policy applies to merchants, aggregators, their customers/payers, website visitors, and any individual whose personal data we process in the course of providing our payment gateway, virtual account, payout, invoicing and wallet services.
We do not store full payment card numbers (PANs); card payments are processed through a PCI-DSS-compliant processor.
We process personal data on one or more of the following bases under the NDPR: (a) your consent; (b) performance of a contract with you; (c) compliance with a legal or regulatory obligation; and (d) our legitimate interests in operating a secure, fraud-resistant payment service, provided these do not override your rights.
We do not sell your personal data. We share it only as necessary with:
Some of our infrastructure providers may process or store data outside Nigeria. Where personal data is transferred internationally, we take reasonable steps to ensure an adequate level of protection consistent with the NDPR.
We retain personal data for as long as necessary to provide our services and to satisfy our legal, regulatory, tax and record-keeping obligations (including CBN/AML retention requirements). When data is no longer required, it is securely deleted or anonymised.
We apply appropriate technical and organisational measures, including encryption of data in transit (TLS) and encryption of sensitive data at rest, role-based access controls, unique user accounts, signed/verified integrations, audit logging, network firewalls and monitoring. No method of transmission or storage is completely secure, but we work continuously to protect your data.
Subject to applicable law, you have the right to: access your personal data; request correction of inaccurate data; request deletion; restrict or object to certain processing; request portability; and withdraw consent at any time (without affecting prior lawful processing). To exercise these rights, contact us at [email protected]. You also have the right to lodge a complaint with the Nigeria Data Protection Commission (NDPC).
We use strictly necessary cookies to authenticate sessions and protect against fraud and abuse. You can control cookies through your browser settings; disabling essential cookies may affect the functioning of our services.
Our services are intended for individuals aged 18 and above. We do not knowingly collect personal data from children.
We may update this policy from time to time. Material changes will be posted on this page with a revised “Last updated” date. Your continued use of our services after changes take effect constitutes acceptance of the updated policy.
For any questions about this policy or how we handle your data, contact: