Privacy Policy
This Privacy Policy explains how Prosperous Financial ("we", "us", "our") collects, uses, shares, and protects the personal information you provide when you use the Prosperous Financial mobile application and related services (the "Service"). This policy describes the data we collect, why we collect it, how we use it, who we share it with, and your rights.
1. Data we collect
We collect the following types of personal data when you register for and use the Service:
- Account & identity: full name, email address, phone number, date of birth, National Identification Number (NIN).
- Authentication: password (stored securely via our authentication provider) and session tokens used to keep you signed in.
- Financial & banking: bank account name, account number, bank name, transaction references needed to process contributions.
- Device & usage: device model and OS version, app usage logs, crash reports, IP address and timestamps.
- Communications: messages you send to support and your communication preferences.
2. Whether data is linked to you (Play Store requirement)
All data listed above is linked to your account and is used to provide and secure your access to the Service, to process banking-related operations, and to communicate with you. On the Google Play Data Safety form we indicate that we collect and store personally-identifiable information (including financial and government identifier data) and that this data is linked to the user account.
3. Purposes for collection
- To create and manage your account, authenticate users and persist sessions.
- To process member contributions and provide banking-related features.
- To operate, maintain and improve the Service (including analytics and debugging).
- To communicate important service messages, notifications and customer support replies.
- To comply with regulatory, legal and anti-fraud obligations.
4. Legal basis (where applicable)
Where required by applicable law (for example in the EU), we process personal information on the following bases: to perform a contract (provide the Service), to comply with a legal obligation, and where you have given consent (e.g., marketing communications). For sensitive data (e.g., NIN) we process it only as required to comply with legal obligations, for identity verification, or with your explicit consent where applicable.
5. Sensitive personal data
We may collect and store certain sensitive data necessary to provide financial services — in particular government identifiers such as NIN and bank account details. This data is treated as sensitive and is handled with enhanced protections and minimal access. We will only collect it when required and we will explain why it is required at collection time.
6. Sharing & third‑party processors
We may share personal information with:
- Service providers and processors (e.g., payment processors, hosting providers, SMS/email gateways, analytics providers and our authentication provider). These processors operate under contracts that require them to protect your data.
- Financial institutions and banks where necessary to process payments or contributions.
- Legal or regulatory authorities when required by law or to protect rights and safety.
Our main data processors include (replace or add actual providers used): Supabase (authentication & database), payment processor(s) (e.g., Stripe, Paystack — if used), analytics providers (if used). We recommend reviewing these providers’ privacy policies for details on their handling of personal data.
7. Advertising & identifiers
If the app uses advertising identifiers (Advertising ID) or similar device identifiers, we will declare that in Play Console and obtain any required consent. Currently the Service does not display third‑party advertising; if we add advertising or personalization later we will update this policy and the Play Data Safety form.
8. Data retention
We retain personal data for as long as necessary to provide the Service, to comply with legal obligations, to resolve disputes, and to enforce our agreements. Retention periods vary by data type and legal requirement. For example, transactional and accounting records may be retained for several years where required by law.
9. Security
We implement reasonable technical and organizational measures to protect your personal data, including encryption in transit (TLS). Access to sensitive data is limited to authorized employees and processors who need it to perform their duties. However, no system is completely secure — if you suspect a security issue contact us immediately.
10. Your choices & rights
- Access & correction: You may request access to or correction of your personal data by contacting us at the email below.
- Deletion: You may request deletion of your account and personal data; we will comply except where retention is required by law (for example for financial records or fraud prevention).
- Marketing opt‑out: You may opt out of marketing communications by following unsubscribe links or contacting support.
To exercise rights, contact us at the email address provided. We may verify your identity before fulfilling requests.
11. Children's policy
The Service is not directed to children under the minimum age required by local law (often 13). We do not knowingly collect personal information from children under that age. If you believe we have inadvertently collected data from a child, contact us to request deletion.
12. International transfers
Your data may be stored or processed in countries other than your own. When we transfer data internationally we use appropriate safeguards required by law (contractual agreements, approved mechanisms, etc.).
13. Cookies and local storage
In the app we use local storage for session tokens and may use analytics SDKs that use local storage. On web pages, we may use cookies consistent with industry practice. You can control some storage and cookie behavior through your device settings.
14. Changes to this policy
We may update this Privacy Policy. For material changes we will notify you in-app or by email where required. The "Last updated" date at the top will change when we update the policy.
15. Contact
If you have questions, complaints, or requests regarding this policy or your personal data, contact us:
Email: support@prosperousfinancialservice.com
Address: 6 Ebara Road, Orazi Mile 4 Port Harcourt, Rivers State, Nigeria
Data Protection Officer: (if applicable — enter contact)
Note: This policy is a general template intended to help meet Google Play requirements. It is not legal advice. Please adapt to your jurisdiction and have legal counsel review before publishing.