KnoxPay Technologies Privacy Policy

KnoxPay Technologies (hereinafter referred to as “KnoxPay”, “we”, “us”, or “our”) respects your privacy and is committed to protecting your personal data.

This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our platform (either website, mobile application, and services).

It also applies to all data subjects who access or use our platforms and it is designed in compliance with the Nigeria Data Protection Regulation (NDPR) 2019, the General Data Protection Regulation (GDPR), and other applicable data protection laws as well as other relevant global privacy standards.

1. Consent

By using our website or services, you provide explicit consent to the terms of this Privacy Policy and agree to our collection, processing, and storage of your personal data in accordance with applicable laws. You may withdraw your consent at any time by contacting our Data Protection Officer (DPO) or any executive member of KnoxPay’s management as provided below. Withdrawal of consent does not affect the lawfulness of data processing based on consent before its withdrawal.

We may amend this Privacy Policy at any time by posting a revised version on any of our platforms (website, mobile application & services). The revised version will be effective 7-days after publication.

2. Information We Collect

We collect various categories of data from and about users of our services upon onboarding and in the course of carrying out high volume transactions:

a. Personal Information:

Full name

Contact details (email, phone number)

Identity verification data (Government-issued ID, facial recognition data, biometrics, etc.)

Financial data (bank account, wallet addresses)

b. Technical and Usage Data:

IP address, browser type, device identifiers

Location data (via IP or device)

Log data and cookies

Transaction history (crypto/fiat-related activities)

Biometric data (if required for KYC/AML verification)

The personal information that you are asked to provide, and the reasons why, will be made clear to you at the point we request it.

If you contact us directly, we may receive additional information such as your name, email address, phone number, the contents of the message/attachments, and any other information you may choose to provide.

When you register for an Account, we may ask for your contact information, including items such as name, company name, email address, and telephone number.

A. How We Collect Your Data:

When you register or log into your account via any of our platforms

When you transact or interact with our services

From cookies or similar technologies

From third-party service providers and partners

B. How We Use Your Information
We use the information supplied in various ways, including to:

Operate and maintain our website

Authenticate user(s) identity

Provide services and process transactions

Improve, personalize, and expand our website

Understand and analyze how you use our website

Develop new products, services, features, and functionality

Communicate with you directly or via partners (customer service, updates, promotions)

Send you emails

Detect and prevent fraud, abuse, and unauthorized access

Improve user experience and personalize content

Ensure legal and regulatory compliance

C. Legal Basis for Processing
We rely on several lawful bases for processing your personal data:

Consent – for marketing or optional services

Contractual necessity – to provide requested services

Legal obligation – for KYC/AML compliance and other statutory duties

Legitimate interest – for service improvement, fraud detection, and customer support

D. Data Retention
We retain personal data only as long as necessary to provide services or as required by law. For example:

Account data is retained until closure or for a statutory period as needed for dispute resolution or compliance

Transaction data is kept per regulatory timelines (minimum 3 years)

Log data is typically retained 30–90 days for security and analytics before deletion or anonymization

3. Data Protection Rights

Under NDPR, GDPR, Ghana DPA, and other applicable laws, you have the right to:

Be informed about collection and processing of your data

Lodge a complaint or request to KnoxPay’s supervisory authority

Access personal data held about you

Update, correct, or rectify your data

Withdraw consent or object to processing

Receive data in a portable format

Request deletion of your personal data

Limit or restrict processing

Be informed of data transfers to another country

Seek remedy upon breach of your rights

4. Data Security

We implement robust security measures including:

End-to-end encryption

Multi-factor authentication

Firewalls and anti-virus protection

Regular audits and penetration testing

5. Cookie Information

Our website uses cookies to improve user experience and performance. You may accept or decline cookies in your browser settings, but some features may not function properly if disabled.

6. Sharing and Disclosure of Data

We do not sell or rent your data. However, we may share with:

Regulators when legally required

Third-party service providers (KYC, hosting, analytics) under confidentiality agreements

Affiliates and partners for legitimate business purposes

7. International Data Transfers

Your data may be transferred to and processed in other countries with adequate safeguards in place.

8. Children’s Information

KnoxPay does not knowingly collect data from children under 13. If such data is discovered, we will promptly delete it upon request.

9. Log Files

KnoxPay follows standard procedures of log file usage (IP, browser type, ISP, time stamps, clicks). This is used for analytics, trends, and security monitoring.

10. Advertising Partners Privacy Policies

KnoxPay’s Privacy Policy does not apply to third-party advertisers. Please review their individual policies for details on data handling.

11. Third Party Privacy Policies

Our platform may link to third-party websites/services not covered by this Privacy Policy.

12. Alteration of Privacy Policy

We may update this Privacy Policy at any time. Changes will be communicated via website notice or email. Continued use of our services implies acceptance of updates.

13. Remediation

You may report complaints or privacy concerns to our DPO or designated authority. KnoxPay will address grievances within 7 working days.

14. Data Breach Notification

If a data breach occurs that poses high risk, we will notify you and regulators within 72 hours.

15. User Data Protection Rights

KnoxPay is committed to compliance with NDPR, GDPR, Ghana DPA, CCPA, and CPRA. Depending on your jurisdiction, you may have rights of access, rectification, erasure, restriction, objection, portability, and consent withdrawal.

Enquiries

At KnoxPay, we are committed to protecting your privacy and handling your personal data with transparency and care.

For any inquiries or concerns, please contact our Compliance Team:
support@knoxxpay.com