Privacy Policy

Quick summary

• We collect contact and business information when you register, book a stall, sign up to the newsletter, or contact us.
• We use data to provide services, process stall bookings, send transactional and marketing communications (with consent), and to improve our events and programs.
• We keep contact records for service and legal purposes; retention periods vary by purpose — see the "Retention" section below.
• If you have questions or want to exercise your rights, contact privacy@asababusinesscommunity.com or info@asababusinesscommunity.com.

1) What personal data we collect

We collect data that you provide directly and information collected automatically by the site and third-party services.

• Identity & contact: name, business name, email, phone, postal address.
• Transaction: stall bookings, invoices, payment confirmations, receipts.
• Communications: messages, support requests, newsletter subscriptions and preferences.
• Event participation: images taken at events (used for promotion where consent applies), registration details, dietary or accessibility needs you share.
• Technical: IP address, device/browser details, analytics data (pages visited, referrers), and cookies.

2) How we use your information

We use personal data for the following purposes:

• Service provision: process bookings, manage memberships, run events, issue invoices and receipts.
• Communications: respond to inquiries, send transactional emails (booking confirmations, reminders), and notify about account activity.
• Marketing (with consent): news, event invites, partner offers — you can opt out at any time.
• Improvement: analyze site use and event effectiveness to improve programs and user experience.
• Legal & safety: prevent fraud, comply with laws and regulatory obligations, and enforce our Terms.

3) Legal basis & compliance

Where applicable, we rely on one or more legal bases to process personal data:

• Contractual necessity: to perform obligations when you purchase a stall, book a service, or become a member.
• Consent: for marketing communications, photographs used for promotion, and some optional features.
• Legitimate interests: for site security, fraud prevention, and improving our services — balancing your privacy rights.
• Legal obligations: to comply with accounting, tax or other regulatory requirements.

We aim to align our practices with the Nigeria Data Protection Regulation (NDPR) and applicable privacy law. If you have questions about legal compliance, contact our Data Protection Officer (DPO) at privacy@asababusinesscommunity.com.

4) Cookies & similar technologies

We use cookies and similar technologies to operate the site and improve your experience. Types of cookies we use:

• Essential: required for the site to function (session, security).
• Performance & analytics: (e.g., Google Analytics) to measure site usage and improve services.
• Functional: remember preferences (e.g., language or form state).
• Marketing: used by partners to deliver relevant adverts (we seek consent where required).

You can manage cookies in your browser settings. Disabling cookies may limit certain features. For analytics opt-out, consult your browser or privacy tools.

5) Third-party services

We use trusted third-party services to operate the site and our programs. Examples include:

• Email delivery & forms: EmailJS, Formspree (for contact/newsletter) — update credentials in site config.
• Maps: Google Maps embedded for location and directions.
• Analytics & performance: Google Analytics, CDN providers for libraries (Bootstrap, GSAP, AOS).
• Gallery/lightbox: GLightbox for image viewing (no video embeds by default).

These services may process data outside Nigeria. We select providers that maintain appropriate safeguards; where transfers occur, we require contractual safeguards to protect your data.

6) Data retention

We retain personal data only as long as needed for the purposes listed above or to meet legal obligations:

• Contact/request records: typically retained for up to 2 years after last contact for service and reporting purposes.
• Membership & transaction records (invoices): retained for up to 7 years for accounting and tax compliance.
• Marketing consents: stored until withdrawn.
• Event photos used for promotion: retained until consent is withdrawn or for up to 3 years; vendors or participants may request removal (see "Your rights").

7) Security

We take reasonable technical and organisational steps to protect personal data from loss, misuse, unauthorized access, disclosure, alteration, or destruction. Measures include encrypted connections (HTTPS), access controls, and secure hosting. However, no system is 100% secure — if you suspect a breach, contact privacy@asababusinesscommunity.com immediately.

8) Your rights

Depending on applicable law, you may have rights regarding your personal data. These commonly include:

• Access: request a copy of data we hold about you.
• Rectification: correct inaccurate or incomplete data.
• Erasure: request deletion where we have no lawful reason to retain it.
• Restriction: request limits on processing while a dispute is resolved.
• Object: object to direct marketing or processing based on legitimate interest.
• Data portability: where applicable, request your data in a structured, machine-readable format.
• Withdraw consent: withdraw consent for processing that was based solely on consent.

To exercise these rights, email privacy@asababusinesscommunity.com or write to: Data Protection Officer, Asaba Business Community, 12 Ukpaba Road, Asaba, Delta State, Nigeria. We will respond promptly and in accordance with applicable law.

If you remain unsatisfied, you may lodge a complaint with Nigeria's supervisory authority—National Information Technology Development Agency (NITDA) — or another competent regulator where applicable.

9) Children

Our services are intended for business owners and adults. We do not knowingly collect personal data from children under 13. If you believe a child under 13 has provided information, contact us so we can delete it.

10) Changes to this policy

We may update this policy to reflect changes in our practices or legal requirements. The "Last updated" date at the top indicates when this policy was last revised. We will notify users of material changes via our website or email where appropriate.

Contact & DPO

Questions or requests regarding data protection should be sent to: