PRIVACY
POLICY
.

1. Introduction

At The Qlip ("we," "us," or "our"), we are committed to protecting your privacy and ensuring the security of your personal information. As a leading technology company based in Lagos, Nigeria, specializing in software engineering, AI & robotics, cybersecurity, multimedia solutions, system testing, IT support, and training & consultancy, we process personal data responsibly in line with international standards including the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and Nigeria's Data Protection Act (NDPA) 2023.

This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website (theqlip.digital), use our services, or interact with our forms and tools. By using our site or services, you consent to the practices described herein. If you do not agree, please do not use our site.

Data Controller: The Qlip, Lagos, Nigeria. Email: theqlipglobal@gmail.com | Phone: +2347087342882.

2. Information We Collect

We collect information to provide and improve our services. This includes:

• Personal Information: Name, email address, phone number, and project details submitted via our contact forms, project modals, or newsletter subscriptions.
• Usage Data: IP address, browser type, pages visited, time spent on site, and referral sources (collected via cookies and analytics tools like Google Analytics, with your consent).
• Professional Information: For service inquiries, such as business details, budget ranges, or technical requirements related to software development, AI integration, or cybersecurity assessments.
• Sensitive Data: We do not collect sensitive personal data (e.g., health, racial, or biometric information) unless explicitly provided for AI/robotics or training services, in which case we conduct a Data Protection Impact Assessment (DPIA) as required by NDPA.

Sources: Directly from you (forms), automatically (cookies), or from third parties (e.g., analytics providers).

3. How We Use Your Information

We use your data for legitimate business purposes, with your consent where required:

• To respond to inquiries, process project submissions, and deliver services (e.g., software development quotes).
• To send newsletters, updates, or promotional content (you can opt-out anytime).
• To improve our site, analyze usage trends, and personalize experiences (e.g., recommending AI tools).
• For security, fraud prevention, and compliance with legal obligations (e.g., NDPA reporting).
• In AI services, to train models only with anonymized, aggregated data—never identifiable without explicit consent.

Legal Basis: Consent (for marketing), contract necessity (for services), legitimate interests (for analytics), or legal obligations (NDPA/GDPR compliance).

4. Sharing Your Information

We do not sell your personal data. We may share it with:

• Service Providers: Trusted third parties (e.g., email platforms like Mailchimp, cloud hosts like AWS) under strict contracts ensuring NDPA/GDPR compliance.
• Business Partners: For joint services (e.g., cybersecurity vendors), with your consent.
• Legal Authorities: If required by law, such as NDPC investigations or court orders in Nigeria.
• Business Transfers: In case of merger/acquisition, with notice to you.

Under CCPA, we do not "sell" data as defined; any sharing for value requires opt-out rights.

5. Data Security and Retention

We implement robust security measures, including encryption, access controls, and regular audits, to protect against unauthorized access or breaches. For high-risk processing (e.g., AI data), we perform DPIAs per NDPA Section 32.

Retention: We keep data only as long as necessary—for services (up to 7 years post-contract), marketing (until opt-out), or legal requirements. Data is securely deleted or anonymized thereafter.

6. Your Rights

Under NDPA, GDPR, and CCPA, you have rights to:

1. Access: Request a copy of your data.
2. Rectification: Correct inaccurate information.
3. Erasure ("Right to be Forgotten"): Delete your data (subject to legal exceptions).
4. Restriction/Objection: Limit processing or object to marketing/automated decisions.
5. Portability: Receive data in a structured format.
6. Opt-Out: From data sales/sharing (CCPA) or cookies (via banner).
7. Withdraw Consent: At any time, without affecting prior processing.

To exercise rights, email theqlipglobal@gmail.com. We respond within 30 days (or 45 for complex requests). Complaints can be filed with the Nigeria Data Protection Commission (NDPC) at ndpc.gov.ng.

7. Cookies and Tracking Technologies

We use cookies for functionality, analytics, and personalization. See our Cookie Policy for details. You can manage preferences via our cookie banner or browser settings. Essential cookies cannot be disabled.

8. International Data Transfers

As a global company, data may be transferred outside Nigeria (e.g., to EU/US servers). We ensure adequacy via Standard Contractual Clauses (SCCs) or Binding Corporate Rules, compliant with NDPA Section 42 and GDPR Chapter V. No transfers to high-risk countries without safeguards.

9. Children's Privacy

Our services are not directed at children under 16. We do not knowingly collect data from minors. If we discover such data, we delete it promptly. Parents/guardians can contact us for access/deletion.

10. Changes to This Policy

We may update this policy to reflect legal changes or business needs. Significant updates will be notified via email or site banner. Continued use constitutes acceptance.

11. Contact Us