VENDA PRIVACY POLICY

Effective Date: March 3, 2026

1. INTRODUCTION

Venda ("we," "our," or "us") is committed to protecting the privacy of our Merchants ("Users") and their Customers. This Privacy Policy explains how we collect, use, and safeguard data within the Venda POS ecosystem.

2. DATA WE COLLECT

We collect information necessary to provide a functional POS and Affiliate service:

  • Merchant Account Data: Name, business name, email, phone number, and bank account details (for bounty withdrawals).
  • Transaction Data: Records of sales, inventory levels, pricing, and payment methods (Cash/Transfer/Card).
  • Customer Data: If you use the digital receipt feature, we collect the customer’s phone number or email solely to deliver the receipt via WhatsApp or Email.
  • Referral Data: We track referral links to attribute ₦1,200/₦5,000 bounties correctly.

3. HOW WE USE YOUR DATA

We use the collected data for the following "6-1-2-35" operations:

  • To maintain your subscription and enforce plan limits.
  • To process payouts for your referral earnings.
  • To generate "End-of-Day" Z-Reports and forensic stock audits.
  • To provide offline-to-online synchronization via browser local storage (IndexedDB).

4. DATA SHARING & THIRD PARTIES

Venda never sells your business data to third parties. We only share data with essential service providers:

  • Paystack: To verify payments and resolve bank account names for withdrawals.
  • Google Firebase: To securely store your database and provide authentication.
  • WhatsApp API: If you choose to send digital receipts to your customers.

5. DATA RETENTION & DELETION

Retention: We store your sales data as long as your account is active.

Deletion: Upon account termination, you may request a complete wipe of your business data. This will be processed within 30 days, except for data we are legally required to keep (e.g., financial tax records).

Inactive Accounts: Accounts inactive for more than 12 months may be archived or deleted.

6. SECURITY MEASURES

Encryption: All data is encrypted in transit using TLS 1.2+ and at rest using AES-256.

Role-Based Access: Our software prevents staff members from accessing the owner's financial wallet or changing sensitive business settings.

NDPA Compliance: We act as a "Data Processor" for your customer data and a "Data Controller" for your account data.

7. COOKIES & LOCAL STORAGE

Venda uses "Session Storage" and "IndexedDB" to:

  • Keep you logged in across browser tabs.
  • Allow the POS to function offline during power or network outages in Nigeria.
  • Store your referral code locally during the signup process.

8. YOUR RIGHTS

Under the NDPA, you have the right to:

  • Access your data.
  • Correct inaccurate business records.
  • Object to certain processing activities.
  • Request a copy of your sales data in a portable format (CSV).

9. CONTACT US

For any privacy-related inquiries or to exercise your data rights, contact our Data Protection Officer at:

Email: support@venda.app

WhatsApp Support: 08020502448

© 2026 Venda Systems Group. Distributed Operational Node.