Privacy Policy

Effective Date: May 30, 2025

Welcome to Ijeawele Invest. We are committed to protecting your privacy. This Privacy Policy explains how Ijeawele Invest (“we,” “us,” or “our”) collects, uses, shares, and protects your personal information when you use our website ijeaweleinvest.com (the “Site”) and related services. By using the Site or creating an account, you agree to the practices described in this Privacy Policy. If you do not agree, please discontinue use of our services. If you have any questions, feel free to contact us using the information provided at the end of this Policy.

Information We Collect

We collect various types of personal data to provide and improve our services. This includes:

• Identification Information: Details that identify you, such as your full name, phone number, email address, and date of birth.
• Account Information: Data related to your account profile, including your chosen username, a hashed password (we do not store passwords in plain text), and any profile photo or avatar you upload.
• Financial Information: Information needed to facilitate investments and transactions, such as your bank account details for withdrawals, records of deposit and investment amounts, your wallet balances, and your transaction history on the platform.
• Technical Data: Information automatically collected about your device and usage of the Site. This can include your IP address, browser type and version, device identifiers, pages visited, and other browsing information collected through cookies or similar technologies.
• Referral Information: If you participate in our referral program, we record information about referrals. For example, we may collect a referral code or the user ID of the person who referred you, and link your account with the referrer for reward tracking.
• Verification Documents: Any documents you or our administrators provide for identity verification or Know Your Customer (“KYC”) purposes. This may include uploaded copies of identification cards, passports, utility bills, or other documents necessary to comply with legal requirements.

How We Collect Your Information

We gather personal data from you in several ways:

• Account Registration: When you sign up for an account on our Site, we collect the information you provide on the registration form (such as your name, email, phone number, username, and password).
• Profile Updates: You may provide additional personal details when completing or updating your user profile. For example, you might add a profile picture, update contact info, or submit KYC documents for verification. We collect and store these details when you provide them.
• Transactions & Investments: If you make a deposit, investment, or request a withdrawal, we collect information related to that action. This includes the transaction amounts, payment method or bank details (for withdrawals), and any other details necessary to execute and record the transaction.
• Referral Program: If you use a referral code or link, or participate in our referral program, we collect information to track that referral. For instance, when you sign up with a referral code, we associate your new account with the referrer’s account. If you refer others, we record that you were the source of the referral.
• Automatic Collection (Cookies & Tech): When you use our Site, we use cookies and similar tracking technologies to automatically collect technical data about your equipment, browsing actions, and usage patterns. For example, our system may log your IP address, browser type, and pages you visit. This helps us enhance your experience (such as keeping you logged in or remembering preferences) and gather analytics about site usage. (See the “Cookies and Tracking Technologies” section below for more details.)
• Administrator Input: In some cases, our team might add information to your profile on your behalf. For example, if you send us identification documents via email or offline channels for verification, our administrators will upload those to our system. Similarly, if our support team needs to adjust your account settings or record information from a customer support interaction, that data may be entered into our system.

Cookies and Tracking Technologies

Our Site uses cookies and similar technologies to improve user experience and analyze how the platform is used. Cookies are small text files placed on your device by websites you visit. We use cookies to, for example, keep you logged in, remember your preferences, and gather analytic information about usage of our Site. Cookies also help us provide a more personalized experience by recalling your settings and interests.

You have control over cookies. Most web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies or alert you when cookies are being sent. However, please note that blocking or deleting cookies may affect the functionality of our Site (for instance, some features might not work properly if cookies are disabled). For more details on how we use cookies and how you can manage them, please see our Cookie Policy (if available).

How We Use Your Information

We use the personal data we collect for various purposes intended to serve you and operate our services effectively. These uses include:

• Account Creation and Management: To create your account and maintain your profile. We use your information to register you as a user, assign you a username, and keep your account information up-to-date. This also includes using identification details to personalize your account dashboard or profile.
• Authentication and Security: To verify your identity when you log in and ensure that only you can access your account. For example, we use your login credentials (username and hashed password) to authenticate you. We may also employ security measures like token-based authentication and two-factor authentication (2FA) to protect your account from unauthorized access.
• Providing Services & Processing Transactions: To facilitate your investments and financial transactions on the platform. We use your financial information to process deposits into your wallet, execute your investment purchases, and initiate withdrawals to your bank account. Transaction history and wallet balances are recorded so you can review your activities and we can accurately maintain your account.
• Communication: To communicate with you about your account and our services. This includes transactional communications (e.g., confirmations of deposits, receipts for investments, withdrawal alerts, account balance updates, and important notices about your account or transactions). If you have agreed or as permitted by law, we may also send you marketing communications such as newsletters, special offers, or updates about new products and features. You can opt out of marketing emails at any time by using the unsubscribe link in those emails or contacting us.
• Referral Program Management: To administer our referral program. If you take part in referrals, we use your data to track referrals and attribute any referral rewards or bonuses. For example, if you referred a friend, we’ll use your identity to ensure you receive credit, and if you were referred, we’ll use the referrer’s ID to grant them the appropriate reward.
• Personalized Experience: To tailor and enhance your experience on our Site. The technical data and cookies help us remember your preferences (such as language or currency settings) and show content that is more relevant to you. We may use profiling based on your usage to highlight features or investment opportunities that match your interests, but we do not use any fully automated decision-making that has legal or significant effects on you without human review.
• Product Improvement and Analytics: To understand how our services are used and to improve them. We analyze aggregated usage patterns, feedback, and other data to debug issues, develop new features, and enhance the functionality and security of the platform. For instance, we might review how users navigate the Site to optimize user interface or use transaction data to identify trends that inform new investment offerings.
• Security and Fraud Prevention: To protect our platform and our users. We continuously monitor accounts and transactions for suspicious activity to prevent fraud, hacking, or any unauthorized dealings. Your information is used to enforce our terms and policies, to investigate potential security breaches, and to verify user identities in the event of suspected fraud. For example, before processing a large withdrawal, we might review the request for consistency with your usual behavior or confirm your identity to safeguard your funds.
• Legal Compliance: To comply with applicable laws and regulations. In particular, we use identification and KYC documentation to meet our legal obligations under anti-money laundering (AML), “Know Your Customer” regulations, and other financial compliance laws. We may use and retain certain personal data to satisfy tax, accounting, and regulatory requirements. For example, financial regulations might require us to report or keep records of transactions above a certain amount, or to verify your identity before allowing investments.

Data Sharing and Disclosure

We treat your personal data with care and confidentiality. We do not sell your personal information to third parties. However, in order to operate our business and provide our services, we sometimes need to share information with trusted third parties under strict conditions. The scenarios in which we share your data include:

• Service Providers: We share necessary information with third-party service providers who perform functions on our behalf. This includes companies that provide payment processing, email delivery, data hosting, customer support tools, or analytics services. These providers are given access only to the information needed to perform their specific services, and they are contractually obligated to protect your data and use it only for our specified purposes. For example, we partner with a payment processor to handle transactions (see Third-Party Services below) and an email service to send out notifications.
• Legal Compliance and Protection: We may disclose your information if required to do so by law or legal process, or if we in good faith believe that such disclosure is necessary to (a) comply with a legal obligation (for instance, responding to a court order, subpoena, or regulatory request); (b) protect and defend our rights, property, or safety, or that of our users or others; (c) investigate or assist in preventing any violation of law or our Terms of Service, including fraud or security issues.
• Business Transfers: If we undergo a business transition such as a merger, acquisition, corporate reorganization, or sale of all or part of our assets, your personal data may be among the assets transferred to the new owner. Should such an event occur, we will ensure that the successor entity is bound by terms similar to this Privacy Policy with respect to your personal information, and we will notify you (for example, via email or a prominent notice on our Site) of any change in data ownership or new privacy policy provisions.
• With Your Consent: In any situation where we need to share your information for purposes other than those covered above, we will only do so if you have given explicit consent. For instance, if we ever want to feature your testimonial or share your data with a partner for a new service, we would seek your permission. You are in control of whether we share your personal data beyond the scope of this Privacy Policy.

Aside from the cases listed above, we will not disclose your personal data to any third party. In particular, we will not rent or trade your personal information for marketing purposes. Any third parties with whom we do share data (other than legal authorities as required by law) are bound to strict confidentiality and data protection obligations.

Third-Party Services

We utilize a few third-party services to carry out key functions for our platform. Here are the primary external services that may handle your data, and why we use them:

• Payment Processing – Paystack: We use Paystack as our payment processor to handle transactions such as deposits and withdrawals. When you make an investment deposit or request a withdrawal, the payment details you provide (for example, bank account information or card details) are securely transmitted to Paystack for processing. Paystack is a PCI-DSS compliant service that specializes in secure payment processing. We do not receive or store your sensitive card information on our servers; Paystack processes payments and only provides us with the necessary transaction confirmations. Paystack may collect certain personal data directly for these transactions (such as your name or card info) and such data is handled according to Paystack’s own privacy and security policies. We encourage you to review Paystack’s Privacy Policy if you want more information on how they handle your data.
• Email Service Provider: We rely on a third-party email service to send out emails for us. Examples include transactional emails (like confirming your registration, notifying you of successful investments or withdrawals, password resets, etc.) and any marketing or newsletter emails (if you’ve subscribed to them). To do this, we provide our email service provider with your email address and the content of the message to be delivered. This provider stores and uses your email information only for the purpose of sending emails on our behalf and is not permitted to use it for their own marketing. We may use reputable email delivery services that have their own strict privacy practices. For instance, our contracts with such providers ensure your data (email content and address) remains confidential and secure.
• Other Providers: In addition to the above, we may use other third-party tools and services to support our platform (such as cloud hosting services, analytics tools, or customer support software). These providers might process technical data or usage data in the course of providing their services to us. Whenever we engage any third-party service, we carefully vet their privacy and security measures and ensure that they are contractually bound to protect your information. We only share the data necessary for them to perform their functions, and they are forbidden from using it for any other purpose.

We want to emphasize that all third-party services we work with are selected for their trustworthiness and strong data protection standards. We remain responsible for the handling of your personal data by any service providers working on our behalf, and we ensure your data is treated with care throughout any processing by third parties.

Data Security

We take the security of your personal data very seriously and implement a range of measures to safeguard it from loss, misuse, unauthorized access, or disclosure. Some of the key security practices we employ include:

• Encryption (SSL/TLS): All communications between your browser and our Site are encrypted using Secure Sockets Layer (SSL) or Transport Layer Security (TLS) protocols. This means that any personal data you transmit (such as when entering your login credentials or financial details) is encrypted in transit, protecting it from eavesdropping or interception by malicious parties. You can verify that our website is secure by looking for the padlock symbol in your browser’s address bar and “https://” in the URL.
• Password Protection: As noted, we never store your passwords in plain text. User passwords are hashed (and may be salted) using modern cryptographic algorithms. This ensures that even in the unlikely event of unauthorized access to our database, your actual password remains unknown. Important: You are responsible for choosing a strong, unique password and keeping it confidential. We will never ask you for your password via email or phone.
• Token-Based Authentication: Our system may use secure token-based authentication (such as JSON Web Tokens or session tokens) to manage your login sessions. This adds an extra layer of security by ensuring that each session is validated and can be terminated if suspicious activity is detected. For example, if you log in, our server issues a token to your device for subsequent requests, which can be revoked if needed (such as when you log out or if we suspect unauthorized use).
• Access Controls: We limit access to personal data strictly to those employees, agents, and contractors who need to know that information in order to process it for us (for example, customer service agents or technical staff maintaining the system). These authorized personnel are bound by confidentiality obligations and are subject to background checks and training in data protection. We also implement role-based access controls within our systems so that each staff member can only access the data appropriate for their job function.
• Regular Security Practices: We maintain up-to-date security software and practices to protect data. Our servers are protected by firewalls and monitoring systems to guard against external attacks. We periodically review our security protocols and update them in line with emerging threats and industry best practices. We may also perform security audits and vulnerability assessments on our infrastructure to identify and address potential weaknesses.
• Backups and Recovery: We perform regular backups of our databases and important data stores. These backups are encrypted and stored securely (possibly in a separate, secure location or cloud storage) to ensure that we can recover data in case of hardware failures, accidental deletion, or other data loss events. Having backups also means your account information and transaction history are safely preserved even in unforeseen situations.
• Payment Security Compliance: Although we delegate payment processing to Paystack, we ensure that our integration with them follows security best practices. We do not handle your card details directly on our servers; any payment details you enter on the Site are transmitted securely to Paystack. Paystack is PCI-DSS compliant, meaning it adheres to the highest data security standards for handling payment card information.

Despite all these measures, it’s important to note that no method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your personal data, we cannot guarantee absolute security. You should also play a role in security: protect your account by using a strong password, never sharing your login credentials, and logging out of the Site when you are on a shared device. If you suspect any unauthorized access to your account or personal data, please contact us immediately.

Data Retention

We will retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. In practice, this means:

• Active Account: For as long as you maintain an account with us, we will keep your personal data on file to service your account and provide the platform’s functionality. This includes keeping your profile information, transaction history, and other account-related data readily available.
• Closed Accounts: If you decide to close your account or your account becomes inactive, we will initiate the process of deleting or anonymizing your personal data. However, we may retain certain information for a defined period even after account closure. For example, we often need to keep transaction records, KYC information, and other financial data for a number of years to comply with anti-money laundering laws, tax laws, or other legal requirements. We may also retain some data to resolve disputes, enforce our Terms of Service, or as evidence of our dealings (such as proof of transactions) as allowed by law.
• Usage Data: Technical data and analytics information may be aggregated and retained for internal analysis. Aggregated data that no longer identifies a user may be kept indefinitely to help us improve our services, but this data is not personally identifiable.
• Retention Duration: The exact retention periods for different categories of data depend on legal requirements and our operational needs. For instance, financial transaction data might be kept for a minimum of 5 years (or as required by financial regulations in our jurisdiction), whereas routine web server logs containing IP addresses may be kept for a shorter period unless used for security analysis. We continually review the data we hold and securely delete or anonymize information that is no longer needed.

Once the retention period expires or the purpose for collecting your data has been fulfilled, we will ensure your data is either irreversibly anonymized or securely deleted from our systems. When we delete data, we use reasonable measures to ensure that it cannot be reconstructed or read.

Your Rights and Choices

We respect your rights to control your personal data. Depending on the laws that apply to your jurisdiction (for example, the European Union’s GDPR, or similar data protection laws), you have certain rights regarding your personal information. We provide all users with the ability to exercise the following rights:

• Right to Access: You have the right to request a copy of the personal data we hold about you. Upon request, we will provide you with a summary of the information in our records associated with your account or identity. This could include data you provided to us, records of your transactions, and other relevant information. We will typically deliver this in a common electronic format.
• Right to Rectification: If any of your personal information is inaccurate or incomplete, you have the right to ask us to correct or update it. You can update much of your basic account information directly through your profile settings. For any information you cannot change yourself, you may contact us to make the correction. We appreciate it when you keep your data up-to-date, as it helps us serve you better.
• Right to Erasure: You have the right to request deletion of your personal data (“the right to be forgotten”). Upon your request, we will delete or anonymize the personal information we have about you, provided that we do not have a valid legal reason or obligation to keep it. Please note that this right is not absolute; for example, we cannot delete information that we are required to retain by law or that is essential to ongoing contractual obligations. (For instance, we might need to keep certain transaction records for anti-fraud or accounting purposes even if you request deletion.) We will inform you if any data must be retained when responding to your request. If you choose to delete your account, most of your data will be removed, but note that residual copies or records may remain in our backups or archives until those are cycled out.
• Right to Withdraw Consent: Where we rely on your consent to process your personal data (such as for receiving marketing emails), you have the right to withdraw that consent at any time. For example, you can unsubscribe from our marketing communications by clicking the “unsubscribe” link in any email or by contacting us to have your name removed from our mailing list. Withdrawing consent will not affect the lawfulness of any processing we conducted prior to your withdrawal, and it won’t affect processing of your data under other legal bases (for instance, it won’t stop us from processing data necessary to provide you with our services).
• Right to Data Portability: You have the right to receive the personal data that you have provided to us in a structured, commonly used, and machine-readable format, and to have that data transmitted to another service provider (where technically feasible), if the processing is based on your consent or on a contract and is carried out by automated means. In practical terms, this means you can request that we export the data you gave us (and that is associated with your identity) in a format like CSV or JSON, which you could then import into another service. This right aids you in moving your data to other services if needed.

To exercise any of these rights, please contact us using the contact information in the section below. For your privacy and security, we may require you to verify your identity before fulfilling your request (for example, by logging into your account or providing additional identification). We will respond to your request within a reasonable timeframe and in accordance with applicable laws (generally within 30 days for most requests, subject to extensions allowed by law).

Limitations and Exceptions: Keep in mind that your rights might be subject to certain limitations. If your request is manifestly unfounded or excessive (for example, repetitive requests), we may charge a reasonable fee or refuse to act on it. Also, as mentioned, sometimes we must retain certain data despite a deletion request due to legal obligations or other legitimate grounds. In such cases, we will inform you of the specific reasons we cannot fulfill a part of your request.

If you are a resident of a region with specific privacy regulations (for instance, the European Economic Area or California), you may have additional rights under those laws (such as the right to object to processing or not to be subject to certain profiling, or the right to non-discrimination for exercising your privacy rights). We strive to respect all applicable laws. Should you have any concern about your rights or how we handle your data, please let us know. Additionally, you have the right to lodge a complaint with a supervisory data protection authority or regulator in your jurisdiction if you believe we have infringed your rights. We would, however, appreciate the chance to address your concerns directly first — we are committed to resolving any privacy issues in a fair and transparent manner.

Changes to This Privacy Policy

We may update or revise this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or for other operational reasons. When we make changes, we will update the Effective Date at the top of this Policy. For substantial or material changes, we may also provide a more prominent notice, such as an email notification or a banner on our website, to inform you of the updates.

We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information. Your continued use of the Site or our services after any changes to this Privacy Policy will constitute your acknowledgment of the changes and your agreement to be bound by the updated Policy. If you do not agree with the changes, you should discontinue using our services and may contact us if you have concerns.

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please do not hesitate to reach out to us. We are here to help and address any issues you may have.

• Email: info@ijeaweleinvest.com
• Mailing Address: Ijeawele Invest, Mulliner Towers, 39 Alfred Rewane Road, Ikoyi, Lagos 101233, Nigeria

Effective Date: This policy is effective as of the date stated at the top.

Version: 1.0 (May 30, 2025)

Thank you for trusting Ijeawele Invest. We value your privacy and are dedicated to safeguarding your personal information as you use our platform.