PRIVACY POLICY - VENDA SERVICES LTD.

Last Updated: November 2025

Venda (“we”, “our”, “us”) is a service marketplace that enables customers to discover, book, and pay for services offered by independent service providers (“Vendors”). This Privacy Policy explains how we collect, use, share, and protect personal information when you use our website, mobile applications, and related services (“Platform” or “Services”).

By using Venda, you agree to the practices described in this Privacy Policy.
If you do not agree, do not use the Platform.

1) Information We Collect

We collect information in three primary ways:
(1) information you provide directly,
(2) information collected automatically, and
(3) information from third-party sources.

1.1 Information You Provide

For all Users

  • Name
  • Email address
  • Phone number
  • Password
  • Profile information
  • Communication preferences
  • Messages exchanged on the Platform (Vendor ↔ Customer)
  • Identity verification details (if required)

For Vendors

  • Name and/or Business name and contact details
  • Service descriptions and pricing
  • Proof of qualifications or licenses (when required)
  • Bank account or payout details
  • Service performance data (ratings, reviews, cancellations, complaints)

For Customers

  • Booking details
  • Payment information (processed via secure payment providers)
  • Service requirements or instructions

1.2 Information We Collect Automatically

  • Device identifiers
  • IP address
  • Browser type and version
  • Usage analytics
  • Pages visited, buttons clicked
  • Referral sources
  • Cookies and tracking technologies

This helps us improve the Platform and detect fraud.

1.3 Information From Third Parties

We may receive information from:

  • Meta (WhatsApp/Instagram/Facebook) when you connect your accounts
  • Payment providers (e.g., Stripe, Paystack)
  • Identity verification partners
  • Analytics tools
  • Public business databases
  • Fraud prevention services
  • Vendors (about Customers)
  • Customers (about Vendors)

2) How We Use Your Information

We use personal information to:

2.1 Provide and Improve the Platform

  • Process bookings
  • Facilitate Vendor–Customer communication
  • Operate messaging tools (including Meta integrations)
  • Manage payments, fund holding, payouts, and refunds
  • Maintain safety and trust
  • Provide customer and vendor support

2.2 Personalization

  • Show relevant Vendors or services
  • Tailor content and recommendations

2.3 Security & Trust

  • Detect and prevent fraud
  • Verify user identity
  • Investigate safety or policy violations
  • Enforce our Terms of Service

2.4 Legal & Regulatory Compliance

  • NDPR, GDPR, CCPA-equivalent transparency requirements
  • Payment and tax compliance requirements
  • Respond to legal requests or investigations

3) Legal Bases for Processing

Depending on your location, we process data under:

  • Contract necessity
  • Legitimate interest
  • Consent
  • Legal obligations

You may withdraw consent at any time where applicable.

4) Payments & Financial Data

Venda collects payments from Customers on behalf of Vendors.
We do not store full card or bank details.
All payment information is handled by secure, PCI-compliant third parties.

We retain:

  • Partial card data (last 4 digits)
  • Transaction history
  • Refund activity
  • Dispute records

5) Sharing Your Information

We may share information with:

5.1 Vendors (for Customers)

When a Customer books or interacts with a Vendor, we share:

  • Customer name
  • Service details
  • Messaging content as needed
  • Relevant booking notes

5.2 Customers (for Vendors)

Vendors share with Customers:

  • Business name
  • Profile and service information
  • Ratings & reviews
  • Contact details (where enabled)

5.3 Service Providers & Partners

We share information with partners that help us operate the platform, such as:

  • Payment processors
  • Messaging and communication providers (Meta APIs)
  • Cloud hosting
  • Security, fraud detection, and analytics tools
  • Customer support tools
  • Identity verification partners

5.4 Legal Requirements

We may disclose information if:

  • Required by law enforcement
  • Necessary to protect users
  • Needed to enforce our Terms or policies

6) Data Controller & Processor Roles

This section is required for NDPR/GDPR & Meta compliance.

Venda as Data Controller

Venda is the Data Controller for:

  • Vendor account information
  • Customer account information
  • Platform analytics
  • Payment and booking metadata
  • Reviews, ratings, and marketplace content

Venda as Data Processor

Venda acts as a Data Processor for:

  • Customer data provided by Vendors (e.g., notes, instructions)
  • Conversations routed through Meta APIs

Vendors as Data Controllers

Vendors are independent Data Controllers for:

  • Customer information collected in relation to service fulfillment
  • Any personal data exchanged outside the Platform
  • Their own compliance with privacy laws

Vendors must follow NDPR/GDPR obligations where applicable.

7) Messaging & Meta Integrations

Venda integrates with WhatsApp Business API.
When connected, we may:

  • Sync conversations
  • Deliver notifications
  • Provide structured messaging tools
  • Apply anti-spam and consent rules
  • Store message metadata

Users must comply with Meta’s Messaging Policies, including:

  • User consent
  • 24-hour customer service windows
  • Template message rules
  • Opt-out mechanisms
  • Anti-spam requirements
  • No prohibited content

Misuse may result in account removal or API disconnection.

8) Cookies & Tracking

We use cookies for:

  • Authentication
  • Security
  • Analytics
  • Personalization
  • Performance improvement

Users may control cookie preferences through browser settings.

9) Data Retention

We retain personal data only as long as necessary for:

  • Providing services
  • Compliance and legal requirements
  • Preventing fraud
  • Resolving disputes

You may request deletion at any time, subject to retention requirements.

10) Your Rights

Depending on where you live (NDPR/GDPR regions), you may have:

  • Right to access
  • Right to correction
  • Right to deletion
  • Right to restrict processing
  • Right to object
  • Right to data portability
  • Right to withdraw consent

Contact: support@findvenda.com with subject “Venda Account Rights Request”

11) Children's Privacy

Venda is not intended for individuals under 18. If we learn that a minor has provided data, we will delete it promptly.

12) Security

We use industry-standard practices to protect data, including:

  • Encryption in transit
  • Access controls
  • Monitoring for suspicious activity
  • Secure cloud infrastructure

However, no system is 100% secure.

13) International Data Transfers

Data may be transferred to countries other than your own, including:

  • Europe
  • United States
  • Nigeria
  • Other jurisdictions where our partners operate

Transfers follow NDPR/GDPR rules and best practices.

14) Third-Party Links

The Platform may contain links to external sites.
We are not responsible for the privacy practices of third-party services.

15) Changes to This Policy

We may update this Privacy Policy periodically.
We will notify users of material changes via:

  • Email
  • In-app notification
  • Posting on the Platform

Continued use means acceptance of updated terms.

16) Contact Us

If you have questions or requests regarding this Privacy Policy:
Venda Email: hello@findvenda.com or support@findvenda.com