How Fastro collects, uses, and protects your personal data.
Fastro Technologies Ltd ("Fastro", "we", "us") is committed to protecting your personal data in accordance with the Nigeria Data Protection Regulation (NDPR) 2019 and the Nigeria Data Protection Act (NDPA) 2023.
| Category | Examples |
|---|---|
| Identity | Name, phone number, email |
| Location | GPS coordinates during active orders and deliveries |
| Financial | Bank account details for payouts (riders/vendors only) |
| Device | Device ID, OS version, push notification token |
| Usage | Orders placed, delivery history, app interactions |
| KYC | Government ID images, selfie (riders and vendors only) |
We share data with: - Paystack — payment processing - Smile ID — KYC document and biometric verification - Cloudinary — media storage for menu photos and KYC documents - Termii — OTP SMS delivery - Law enforcement — when required by Nigerian law
We do not sell your personal data.
| Data type | Retention period |
|---|---|
| Active account data | Duration of account + 2 years |
| KYC documents | 7 years (regulatory requirement) |
| Order records | 5 years |
| Location pings | 90 days |
| Deleted account data | 30-day grace period, then purged |
You have the right to: - Access — request a copy of your personal data - Correction — update inaccurate data - Deletion — request account deletion (subject to retention obligations) - Portability — receive your data in a machine-readable format - Objection — object to certain processing activities
To exercise your rights, see the NDPR Data Rights page or go to Profile → Privacy in the app.
We use industry-standard encryption (TLS 1.3 in transit, AES-256 at rest) for all personal data. KYC documents are stored with super_admin access controls.
Was this helpful? Contact support if you need more help.