Privacy Policy

1. Introduction

AssureTech Ltd ("we," "our," or "us") is committed to protecting your privacy and maintaining the highest standards of data security. As a leading provider of cybersecurity, revenue assurance, and regulatory compliance solutions for financial institutions across Africa, we understand the critical importance of data protection. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, use our cybersecurity services, or engage with our fintech solutions. Please read this privacy policy carefully. If you do not agree with the terms of this privacy policy, please do not access the site or use our services.

2. Information We Collect

As a cybersecurity and fintech solutions provider, we collect various types of information to deliver our services effectively and maintain security standards:

Personal and Business Data

Personally identifiable information such as your name, email address, company name, job title, phone number, business address, and professional credentials that you voluntarily provide when you request a security consultation, schedule a demo, subscribe to our threat intelligence updates, engage our Virtual CISO services, or participate in our cybersecurity assessments and compliance programs.

Financial and Transaction Data

Financial information related to service subscriptions, payment methods, billing information, and transaction records when you purchase our cybersecurity solutions, revenue assurance services, or RegTech compliance tools. All payment data is processed through secure, PCI-DSS compliant payment gateways.

Technical and Security Data

Technical information including IP addresses, browser types, device information, operating systems, access times, pages viewed, security logs, and system configurations. This data helps us monitor security threats, detect anomalies, improve our cybersecurity services, and protect both our systems and yours from potential threats.

Service-Related Data

Information related to security assessments, vulnerability scans, penetration testing results, compliance audits, revenue assurance analytics, fraud detection patterns, and other service-specific data necessary to deliver our cybersecurity and fintech solutions. This data is handled with the highest level of confidentiality and security.

3. Use of Your Information

We use the collected information to provide, maintain, and improve our cybersecurity and fintech solutions:

• Deliver cybersecurity services including threat detection, vulnerability assessments, and security monitoring
• Provide Virtual CISO services and strategic security guidance
• Conduct revenue assurance analysis and fraud detection for financial institutions
• Ensure regulatory compliance through our RegTech solutions
• Process security consultations, demos, and service requests
• Send threat intelligence updates and security alerts
• Manage your account and service subscriptions
• Process payments and manage billing for our services
• Improve our cybersecurity tools and fintech solutions
• Monitor and analyze security trends and emerging threats
• Provide customer support and technical assistance
• Comply with legal obligations and regulatory requirements
• Prevent fraud, unauthorized access, and security breaches
• Communicate service updates, security patches, and compliance changes

4. Data Security and Protection

As a cybersecurity company, we implement industry-leading security measures to protect your data:

• End-to-end encryption for data transmission and storage
• Multi-factor authentication and access controls
• Regular security audits and penetration testing
• ISO 27001 certified information security management systems
• SOC 2 Type II compliance for service organization controls
• GDPR and data protection regulation compliance
• 24/7 security monitoring and incident response capabilities
• Secure data centers with physical and logical access controls
• Regular security training for all personnel
• Strict data retention and disposal policies

While we implement comprehensive security measures, no method of transmission over the internet or electronic storage is 100% secure. We continuously update our security protocols to address emerging threats and maintain the highest standards of data protection.

5. Disclosure of Your Information

We may share information in the following circumstances:

Legal and Regulatory Compliance

We may disclose information to comply with legal obligations, respond to lawful requests from regulatory authorities, protect against fraud and security threats, or enforce our terms of service. As a provider of services to financial institutions, we adhere to strict regulatory requirements including banking regulations, data protection laws, and cybersecurity frameworks.

Service Providers and Partners

We may share information with trusted third-party service providers who assist in delivering our cybersecurity and fintech solutions, including cloud infrastructure providers, security tool vendors, and payment processors. All service providers are bound by strict confidentiality agreements and security requirements.

Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity, subject to the same privacy protections outlined in this policy.

6. Data Retention

We retain your information for as long as necessary to provide our services, comply with legal obligations, resolve disputes, and enforce our agreements. Security logs and audit trails may be retained for extended periods to meet regulatory compliance requirements and support forensic investigations if needed.

7. Your Rights and Choices

You have the following rights regarding your personal information:

• Access: Request copies of your personal data and information about how we process it
• Rectification: Request correction of inaccurate or incomplete information
• Erasure: Request deletion of your personal data, subject to legal and contractual obligations
• Restriction: Request limitation of processing under certain circumstances
• Portability: Request transfer of your data to another service provider
• Objection: Object to processing of your personal data for specific purposes
• Withdraw Consent: Withdraw consent for data processing where consent was the legal basis

To exercise these rights, please contact us using the information provided below. We will respond to your request within the timeframes required by applicable data protection laws.

8. International Data Transfers

As we serve financial institutions across Africa and globally, your information may be transferred to and processed in countries outside your jurisdiction. We ensure that all international data transfers comply with applicable data protection laws and implement appropriate safeguards such as standard contractual clauses and data transfer agreements.

9. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, services, legal requirements, or industry standards. We will notify you of material changes by posting the updated policy on our website and updating the "Last updated" date. For significant changes, we may provide additional notice through email or prominent website notifications.

10. Contact Us

If you have questions about this Privacy Policy, wish to exercise your data rights, or need to report a security concern, please contact us:

For immediate security concerns or to report a potential data breach, please contact our Security Operations Center at security@assuretech.online