Privacy Policy

Effective date: May 1, 2026

1. Introduction

Gigly ("we," "us," or "our") is a VTU (Value-Top-Up) platform operated by Gigly Technologies, located in the Federal Capital Territory, Abuja, Nigeria. We are committed to protecting your personal information and your right to privacy.

This Privacy Policy explains how we collect, use, share, and protect your information when you use our mobile application, website, and related services (collectively, the "Services"). By using Gigly, you agree to the collection and use of information as described in this policy.

2. Data We Collect

We collect the following categories of information:

  • Contact Information: Phone number, email address, and full name provided during registration.
  • Transaction Data: Purchase history, wallet funding records, amounts, dates, network providers, and recipient phone numbers.
  • Device Information: Device model, operating system version, app version, unique device identifiers, and IP address.
  • Usage Data: App feature interactions, session duration, crash reports, and performance data.
  • Financial Data: Wallet balance, transaction references, and payment method details (card details are processed by our payment partners and not stored by Gigly).
  • Identity Verification: Information needed to verify your identity and prevent fraud.

3. How We Use Your Data

  • Service Delivery: To process your VTU purchases, wallet funding, and bill payments.
  • Account Management: To create, maintain, and secure your Gigly account.
  • Fraud Prevention: To detect, investigate, and prevent fraudulent transactions and abuse.
  • Customer Support: To respond to inquiries, resolve disputes, and process refund requests.
  • Service Improvements: To analyze usage patterns and improve app performance and features.
  • Communications: To send transaction confirmations, OTPs, and service notifications.
  • Legal Compliance: To comply with applicable Nigerian laws and regulations.

4. Data Sharing

We do not sell your personal data. We may share your data only in the following limited circumstances:

  • Payment Processors: With Paystack and Monnify to process wallet funding and payments.
  • VTU Providers: With SMEData.ng and other licensed VTU providers to fulfill your data/airtime purchases.
  • Network Operators: With MTN, Airtel, Glo, and 9mobile to complete service delivery.
  • Legal Requirements: When required by Nigerian law, court order, or government authority.
  • Service Providers: With trusted third-party service providers who assist in our operations, bound by confidentiality agreements.

5. Data Security

We implement industry-standard security measures to protect your data:

  • Encryption: All data transmitted between your device and our servers is encrypted using TLS 1.2+.
  • Secure Storage: Sensitive data is stored with AES-256 encryption at rest.
  • Access Controls: Strict role-based access controls limit who can access your data within our team.
  • Transaction PINs: Transactions require a separate PIN or biometric verification.
  • Audit Logs: All account and administrative actions are logged for security review.

6. Your Rights

You have the following rights regarding your personal data:

  • Access: Request a copy of the personal data we hold about you.
  • Correction: Request correction of inaccurate or incomplete data.
  • Deletion: Request deletion of your account and associated data (subject to legal retention requirements).
  • Portability: Request your data in a machine-readable format.
  • Objection: Object to certain uses of your data, including marketing.

To exercise these rights, contact us at privacy@gigly.ng.

7. Cookies & Analytics

Our website uses cookies and similar technologies to improve your browsing experience and analyze usage. We use:

  • Essential Cookies: Required for website functionality. Cannot be disabled.
  • Analytics Cookies: Help us understand how visitors interact with our website.

You can control cookie preferences through your browser settings.

8. Children's Privacy

Gigly is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately at privacy@gigly.ng.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes through the app or email. Continued use of Gigly after changes are posted constitutes acceptance of the revised policy. The effective date at the top of this page reflects the most recent revision.

10. Data Retention

We retain your data only as long as necessary for the purposes outlined in this policy or as required by Nigerian law. The following retention periods apply:

  • OTP Records: Deleted automatically after 24 hours.
  • Login Audit Logs: Routine login records are purged after 90 days. Critical events (account locks, admin actions, large-transaction flags) are retained for 1 year.
  • Transaction Records: Retained for 7 years to comply with Nigerian financial regulations and CBN requirements.
  • Session Tokens: Expired refresh tokens are deleted 7 days after expiry. WhatsApp bot sessions are removed after 1 hour of inactivity.
  • Account Data: Retained until you submit an account deletion request to privacy@gigly.ng. Deletion is subject to applicable legal retention requirements.

Automated cleanup jobs run nightly to enforce these retention periods. You may request early deletion of your personal data by contacting our Privacy Officer.

11. Contact Us

For privacy-related questions, requests, or concerns, please contact our Privacy Officer at:

Gigly Technologies

Federal Capital Territory, Abuja, Nigeria

privacy@gigly.ng