Glotrade Data Protection Policy

1. Purpose

This policy outlines how Glotrade collects, uses, stores, shares, and protects the personal data of its customers, vendors, and employees. It ensures Glotrade adheres to best practices in privacy, even without current local law enforcement.

2. Scope

This policy applies to all employees, contractors, vendors, and systems that process personal data across Glotrade's operations.

3. Definition of Personal Data

Personal data includes but is not limited to:

• Full name
• Email address
• Phone number
• Delivery address
• Payment information (excluding full card details)
• Order history
• IP addresses and device identifiers

4. Principles of Data Protection

• Lawfulness, Fairness, Transparency: We collect data for legitimate purposes and inform users.
• Purpose Limitation: Data is only used for stated business purposes.
• Data Minimization: We only collect data necessary for processing orders and improving service.
• Accuracy: We take steps to ensure data is current and accurate.
• Storage Limitation: Personal data is not kept longer than necessary.
• Integrity and Confidentiality: Data is protected against unauthorized access or loss.

5. Data Collection and Use

We collect personal data when users create accounts, place orders, contact support, or engage with marketing.

Data is used for:

• Processing orders and payments
• Delivering products
• Customer support
• Service improvement and analytics
• Promotions (with consent)

6. User Consent

• Users must actively opt-in for marketing communications.
• Consent can be withdrawn anytime via account settings or by contacting support.

7. Data Sharing

We do not sell or rent customer data. However, data may be shared with:

• Payment processors (e.g., Paystack, Flutterwave)
• Logistics companies (e.g., DHL, GIG)
• Customer service tools (e.g., email systems)

All third-party partners are expected to comply with our data protection standards.

8. Data Storage and Security

• Data is stored on secure servers with encryption.
• Access is restricted to authorized staff.
• Regular backups and monitoring systems are in place.
• SSL encryption is used for all customer data transfers.

9. Data Breach Policy

• In the event of a breach, affected individuals will be notified within 72 hours.
• Affected systems will be isolated and corrected.
• All incidents are logged and reviewed quarterly.

10. User Rights

Customers have the right to:

• Request access to their data
• Correct or delete their data
• Withdraw consent
• Object to data processing

Requests should be sent to support@glotrade.online and will be responded to within 7 working days.

11. Training and Awareness

• All staff undergo regular training on data privacy practices, cybersecurity, and handling of customer data.

12. Policy Review

This policy is reviewed annually or upon major business/regulatory changes. Updates will be posted on the website or emailed to users.

13. Contact Information

Email: support@glotrade.online

Phone: +234 913 542 3242