Introduction We are Acecore Technology (“Acecore”), a Jellywebb financial management (system) company. For any access request, questions, or inquiries about how we use your Personal Information, please contact us at acecoreprivacy@jellywebb.com. We (“Acecore”) do not take your trusting us with your information for granted. The privacy of our Users is important to us and we are committed to safeguarding it. Hence, this Privacy Policy explains your Personal Information which we collect, why we collect it, and what we do with it. Overview This Privacy Policy describes your privacy rights regarding how and when we collect, use, store, share and protect your information across our website, payment platforms (“Platforms”), APIs, Software Applications, (“Apps”), email notifications and tools regardless of how you use or access them. This Privacy Policy is applicable to all of the Website, software applications (“Apps”) and/or payment platforms (“Platforms”) offered by Acecore or affiliated companies collectively referred to as Acecore “services”. Acecore is part of a group which is made up of a number of local and international operating entities in a number of markets across the globe. “Acecore”, “we” “us” or our” in this privacy statement means the Acecore entity that is responsible for processing your personal information. Definition Account: means a Jellywebb Account. Cookies: A cookie is a small data file that is transferred to your computer or mobile device. It enables us to remember your account log-in information, IP addresses, web traffic, number of times you visit, browser type and version, device details, date and time of visits. Acecore: means Acecore Integrated Technology. Personal Information: Any information that can be used to identify a living person including email address, company name, password, payment card, financial information such as Bank Verification Number (BVN), bank account number, etc.), Government-issued Identity card, and/or taxpayer identification it may also include anonymous information that is linked to you, for example, your internet protocol (IP), log-in information, address, location, device or transaction data. Sites: means any platform including but not limited to mobile applications, websites and social media platforms. User: means an individual who uses the Services or accesses the Sites and has agreed to use the end services of Acecore. Objective This Privacy Policy statement is to provide all persons and organizations whose Personal Information we hold with description of the types of Personal Information we collect, the purposes for which we collect that Personal Information, the other parties with whom we may share it and the measures we take to protect the security of the data. Accordingly, we have developed this privacy policy in order for you to understand how we collect, use, communicate, disclose and otherwise make use of personal information. We have outlined our privacy policy below. Privacy Principle Acecore focuses on the following core principles To Empower the individual: Acecore wants you to be in charge of your personal information and to make your own voluntary choices about your Personal Information; To keep and secure personal information: Acecore does not take your trusting us with your information for granted. We take responsibility to ensuring that appropriate security measures are put in place and your personal information is protected; To be transparent and to educate users: For you to know what personal information is, how we collect personal information, for what purpose and how we secure personal information; To abide by local laws: Acecore is a global company with local privacy expertise. Our privacy practices may vary among the countries in which we operate to reflect local practices and legal requirements. Specific privacy notices may apply to some of our products and services. Please visit the webpage or digital asset of the specific product or service to learn more about our privacy and information practices in relation to that product or service; To collect and store personal information on the “need to collect” basis: Acecore collects personal information from our partner company “Jellywebb” to perform its services for you. We work to have measures in place to prevent collecting and storing Personal Information beyond what we need. Content Personal Information we may collect about you; How we get your Personal Information and why we have it; How we may use your Personal Information; Data security and retention Disclosing your Personal Information; Marketing Your data protection rights and choices Cookies Use by Minors International transfers Data Protection Officer Training Data Protection Audit Dispute Resolution and Filing a Complaint Updates to our privacy policy Updates to our privacy policy Contact Us Personal Information We May Collect About You We may collect, use, process, store, or transfer personal information such as: Identity Data: Information such as, your full name(s), your government-issued identity number, and your date of birth. This data is to enable us to verify your identity in order to offer our services to you; Contact Data: This is data that is needed to reach out to you, such as your contact address, email address, telephone number, details of the device you use and billing details; Identification documents :(such as your passport or any Government-issued identity card), a photograph (if applicable) and any other registration information you may provide to prove you are eligible to use our services and in compliance with regulatory requirements on Know Your Customer (KYC); Log/Technical information: When you access Acecore services, our servers automatically record information that your browser sends whenever you visit a website, links you have clicked on, length of visit on certain pages, unique device identifier, log-in information, location and other device details. Financial Data: Information, such as Bank Verification Number (BVN), personal account number, the merchant’s name and location, the date and the total amount of transaction, and other information provided by financial institutions or merchants when we act on their behalf; Transactional Data: These are information relating to a payment when you as a merchant (using one or more of our payment processing services) or as a customer, are using our products or services; Marketing and Communications Data: This includes both a record of your decision to subscribe or to withdraw from receiving marketing materials from us or from our third parties. Records of your discussions with us, if we contact you and if you contact us. We may also collect, store, use and transfer non-personal information or anonymized data such as statistical or demographic data. As a principle, we do not collect any Special Categories of Personal Information. If we do collect Special Categories of Personal Information, we will ensure compliance with applicable law. This Privacy Policy applies to Acecore services only. We do not exercise control over the sites displayed or linked from within our various services. These other sites may place their own cookies, plug-ins or other files on your computer, collect data or solicit personal information from you. Acecore does not control these third-party websites and we are not responsible for their privacy statements. Please consult such third parties’ privacy statements and set appropriate controls from your setting when using any third-party services. How we get your Personal Information and why we have it The Personal Information we have about you is directly made available to us when you: Sign up for a Acecore Account; Use any of our services; Contact our customer support team; Fill our online forms; Contact us; The lawful basis we rely on for processing your Personal Information are: Your consent; Where you agree to us collecting your Personal Information by using our Services. We have a contractual obligation: Without your Personal Information, we cannot provide our Services to you. We have a legal obligation: To ensure we are fully compliant with all applicable Financial legislations such as Anti-Money Laundering and Counter Terrorist Financing Laws, we must collect and store your Personal Information. We protect against fraud by checking your identity with your Personal Information. How We May Use Your Personal Information We may use your Personal Information we collect to: Create and manage any accounts you may have with us, verify your identity, provide our services, and respond to your inquiries; Process your payment transactions (including authorization, clearing, chargebacks and other related dispute resolution activities); Protect against and prevent fraud, unauthorized transactions, claims and other liabilities; Provide, administer and communicate with you about products, services, offers, programs and promotions of Acecore, financial institutions, merchants and partners; Evaluate your interest in employment and contact you regarding possible employment with Acecore; Evaluate and improve our business, including developing new products and services; To target advertisements, newsletter and service updates; As necessary to establish, exercise and defend legal rights; As may be required by applicable laws and regulations, including for compliance with Know Your Customers and risk assessment, Anti-Money Laundering, anti-corruption and sanctions screening requirements, or as requested by any judicial process, law enforcement or governmental agency having or claiming jurisdiction over Acecore or Acecore’s affiliates; To use data analytics to improve our Website, products or services, user experiences and to optimize service. For other purposes for which we provide specific notice at the time of collection. Data Security and Retention The security of your Personal Information is important to Acecore. We are committed to protecting the information we collect. We maintain administrative, technical and physical controls designed to protect the Personal Information you provide, or we collect against loss or theft, as well as against any unauthorized access, risk of loss, disclosure, copying, misuse or modification. Other security measures include but not limited to, secure servers, firewall, data encryption and granting access only to employees in order to fulfill their job responsibilities. Where you use a password for any of your Accounts, please ensure you do not share this with anyone, and the password is kept confidential at all times. We are committed to conducting our business in accordance with these principles in order to ensure that the confidentiality of your Personal Information is protected and maintained. Transmitting information online is not entirely secure. As such, we cannot guarantee that all information provided online is secure. We would take all reasonable steps to ensure that your Personal Information is secured and well protected. We will only retain personal information on our servers for as long as is reasonably necessary as long as we are providing Services to you. Where you close your Account, your information is stored on our servers to the extent necessary to comply with regulatory obligations and for the purpose of fraud monitoring, detection and prevention. Where we retain your Personal Information, we do so in compliance with limitation periods under the applicable law. Disclosing your Personal Information We may disclose or share your Personal Information with third parties which include our partners, affiliates, employees, officers, service providers, agents, suppliers, subcontractors as may be reasonably necessary for the purposes set out in this policy. Acecore only shares personal information with External Third parties in the following limited circumstances: We have your consent. We require opt-in consent for the sharing of any personal information; We share Personal Information with third parties directly authorized by you to receive Personal Information, such as when you authorize a third party application provider to access your account. The use of your Personal Information by an authorized third party is subject to the third party's privacy policy and Acecore shall bear no liability for any breach which may arise from such authorization by you. We provide such information to our subsidiaries, affiliated companies or other trusted businesses or persons for the purpose of processing personal information on our behalf. We require that these parties agree to process such information based on our instructions and in compliance with this Privacy Policy and any other appropriate confidentiality and security measures. We have a good faith belief that access, use, preservation or disclosure of such information is reasonably necessary to: Satisfy any applicable law, regulation, legal process or enforceable governmental request, enforce applicable Terms of Service, including investigation of potential violations thereof, detect, prevent, or otherwise address fraud, security or technical issues, or protect against imminent harm to the rights, property or safety of Acecore, its users or the public as required or permitted by law. If Acecore becomes involved in a merger, acquisition, or any form of sale of some or all of its assets, we will provide notice before personal information is transferred and becomes subject to a different privacy policy. Marketing We may process your Personal Information in order to contact you or send you marketing content and communication about our products, services or surveys. You may exercise your right to object to such contact from us or opt out from the marketing content. Please note however that if you opt-out of marketing content, we may still send you messages relating to transactions and our Services related to our ongoing business relationship. We may ask you for permission to send notifications to you. Our Services will still work if you do not grant us consent to send you notifications. Your Data Protection Rights and Choices Based on your location and applicable laws, below are the rights you have as a user in relation to your Personal Information: Right to be informed. Right to request access or copies to your Personal Information by signing into your Account or contacting us. Right to request that Acecore erase your Personal Information. You have the right to ask us to erase your Personal Information. Please note that this is a limited right which applies where the data is no longer required, or the processing has no legal justification. The exceptions to this right is where the applicable law requires Acecore to retain a historical archive or where we retain a core set of your Personal Information to ensure we do not inadvertently contact you in future where you object to your data being used for marketing purposes. Right to correct or rectify any Personal Information that you provide which may be incorrect, out of date or inaccurate. You also have the right to ask us to complete information you think is incomplete. Right to object to the processing of your Personal Information for marketing purposes. You have a right to ask us not to contact you for marketing purposes by adjusting your notification preference on the settings page or by opting out via the unsubscribe link in marketing emails we send you. Right to object to processing: You have the right to object to the processing of your Personal Information in certain circumstances. Please note that where you object to us processing your Personal Information, we might be unable to provide the services to you. The basis of we processing your Personal Information is your consent. You also have the choice at any time to withdraw consent which you have provided. You also have a choice to deactivate your Account at any time. You may contact us should you wish to de-activate your Account at any time via the Contact Us segment below or send us an email at acecoreprivacy@jellywebb.com. If you wish to exercise any of the rights set above, please contact us using the contact information provided in the Contact Us segment below. Where we are unsure of your identity, we might ask you for proof of your identity for security reasons before dealing your request. Cookies Like many other websites, we use cookies to distinguish you from other users and to customize and improve our services. Some browsers may automatically accept cookies while some can be modified to decline cookies or alert you when a website wants to place a cookie on your computer. If you do choose to disable cookies, it may limit your ability to use our website. For detailed information on the cookies and how we use them see our Cookie Policy. Minor Acecore’s websites and applications are not directed at persons under the age of eighteen (18) and we do not collect any Personal Information knowingly or directly from minors who fall within this category. Where you have any belief that Acecore has mistakenly or unknowingly collected information from a minor, please contact us using the information provided under the Contact Us section to enable investigate and restrict such data. International Data Transfers Where Personal Information is to be transferred to a country outside Nigeria, Acecore shall put adequate measures in place to ensure the security of such Personal Information and to ensure same is done securely and in accordance with the Nigerian Data Protection Regulation. Data Protection Officer Acecore shall appoint a Data Protection Officer(s) (DPO) responsible for overseeing the Company's data protection strategy and its implementation to ensure compliance with the NDPR requirements. The DPO shall be a knowledgeable person on data privacy and protection principles and shall be familiar with the provisions of the NDPR. Training Acecore shall ensure that employees who collect, access and process Personal Information receive adequate data privacy and protection training in order to develop the necessary knowledge, skills and competence required to effectively manage the compliance framework under this Policy and the Nigerian Data Protection Regulation (NDPR) with regard to the protection of Personal Information. On an annual basis, Acecore shall develop a capacity building plan for its employees on data privacy and protection in line with the NDPR. Data Protection Audit Acecore shall conduct an annual data protection audit through a licensed Data Protection Compliance Organization (DPCOs) to verify Acecore’s compliance with the provisions of the NDPR and other applicable data protection laws. The audit report will be certified and filed by the DPCO to the National Information Technology Development Agency (NITDA) as required under the NDPR. Dispute Resolutions and Filing a Compliant If you have any complaints regarding this Privacy Policy, please contact us at acecoreprivacy@jellywebb.com. We will investigate and work on resolutions for complaints and disputes regarding use and disclosure of personal information within thirty (30) days in accordance with this Privacy Policy and in accordance with the Nigerian Data Protection Regulation. Updates to our privacy policy From time to time, we may change, amend or review this Privacy Policy from time to time to reflect new services or changes in our Privacy Policy and place any updates on this page. All changes made will be posted on this page and where changes will materially affect you, we will notify you of this change by placing a notice online or via mail. If you keep using our Services, you consent to all amendments of this Privacy Policy. Contact us: All access requests, questions, comments, complaints and other requests regarding the privacy policy should be sent to @jellywebb.com. We may request additional details from you regarding your complaints and keep records of your requests and resolution. This Privacy Policy was last updated in May 2021.