Spotivik Privacy Policy
Effective Date: [10/04/2025]
Introduction:
At Spotivik, we prioritize your privacy and comply with relevant data protection regulations, including the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and Nigeria Data Protection Regulation (NDPR). This policy outlines our data collection, use, and protection practices.
Personal Data We Collect:
1. Registration Data: Name, email address, username, and password.
2. Profile Data: Information you provide in your profile, such as bio, profile picture, and other details.
3. Usage Data: Browsing history, page views, clicks, and engagement metrics.
4. Cookies and Tracking: We use cookies, pixel tags, and similar technologies to track your interactions with our platform.
Purpose and Lawful Basis for Processing:
1. Contractual Necessity: To provide and improve our services, fulfill contractual obligations, and respond to your inquiries.
2. Consent: Where you've given consent for specific processing activities, such as marketing communications.
3. Legitimate Interests: To enhance user experience, prevent fraud, and optimize platform performance.
Data Sharing:
1. Service Providers: We share data with trusted third-party services for analytics, advertising, and platform management.
2. Partners: We may share data with partners for joint marketing initiatives or content creation.
3. Legal Compliance: We may disclose data to comply with laws, regulations, or legal requests.
Your Rights:
1. Access: Request access to your personal data.
2. Correction: Update or correct your information.
3. Deletion: Request data deletion, subject to legal requirements.
4. Restriction: Request restriction of processing for specific purposes.
5. Objection: Object to processing based on legitimate interests.
6. Data Portability: Request a copy of your data in a machine-readable format.
Data Retention:
We retain personal data for as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required or permitted by law.
Security Measures:
1. Encryption: We use encryption to protect data in transit.
2. Access Controls: We limit access to authorized personnel.
3. Regular Audits: We conduct regular security audits and penetration testing.
International Data Transfers:
We may transfer data to countries outside your jurisdiction. We'll ensure such transfers comply with relevant regulations, using standard contractual clauses or other approved mechanisms.
Notification of Changes:
We'll notify you of significant changes to this policy. Your continued use of our platform after such changes constitutes your acceptance of the updated policy.
Contact Us:
If you have questions or concerns about this policy or your data, please contact us here.
Regulatory Contact:
For complaints or inquiries related to data protection, you can also contact:
- Nigeria: National Information Technology Development Agency (NITDA) or Nigeria Data Protection Commission (NDPC)
- EU: Relevant supervisory authority in your member state
- California: California Attorney General's Office