Privacy Policy

Introduction

At CANNY CONSULT & ADVISORY ("CannyConsult", "we", "our", "us" or "Company"), we are committed to protecting the privacy and security of our users' personal information. This Privacy Policy describes how we collect, use, store, share and protect personal information when you use our website, applications, and related services (together, the "Services"). By using the Services you consent to the practices described in this policy.

Definitions

• Cookies: small data files stored on your device that enable features like remembering logins and preferences.
• Personal Data: any information that identifies or can be used to identify you.
• Services: the website at www.cannyconsultadvisory.ng and all related pages, apps, and tools.
• Third Parties: any person or organization other than you and CannyConsult.

Information You Provide

When you use our Services you may choose to provide information such as:

• Identity data: business name, incorporation details, management contacts.
• Contact data: billing and delivery addresses, email, phone numbers.
• Profile data: orders, preferences, feedback or survey responses.

Information Collected Automatically

We automatically collect technical and usage information such as IP address, browser and device type, operating system, connection information, referral URLs, pages visited, search queries and interaction data. We may also derive location information from GPS-enabled devices where you grant permission.

Cookies and similar technologies: we use session cookies and other tracking technologies to personalize content, improve the user experience, ensure account security, and prevent fraud. Cookies do not store sensitive personal data; they store a unique reference used to recognize your device.

Information from Third Parties

We may obtain additional information about you from third-party sources (for example, identification/verification providers) to enhance or verify the data you provide.

How We Use Your Information

• To provide, operate, maintain and improve the Services.
• To respond to inquiries, provide customer support and fulfil contracts.
• To send marketing communications where you have consented (with an option to unsubscribe).
• To detect and prevent fraud, enforce our terms, and protect rights and safety.
• To comply with legal and regulatory obligations.

Disclosure & Sharing

We will not sell your personal information. We may share data with:

• Affiliated companies and professional advisers on a need-to-know basis.
• Service providers (e.g., hosting, email, payment, fraud prevention) who process data on our behalf under contract.
• Business partners, suppliers and subcontractors for performance of contracts.
• Authorities where required by law or to protect the rights, property or safety of others.
• Potential buyers or transferees if we sell or transfer part or all of our business.

International Transfers

If we transfer Personal Information outside Nigeria we will ensure appropriate safeguards are in place in accordance with applicable law (for example by confirming the destination country is on the NITDA whitelist or by using contractual safeguards).

Third-Party Links

Our Services may contain links to third-party websites. We are not responsible for the privacy practices or content of those sites. Please review their privacy notices before providing personal data.

How We Collect Information

We collect information you provide voluntarily (forms, messages, support requests) and information automatically collected when you interact with the Services.

Legal Bases for Processing

We process personal data where one of the following applies: (i) you have given consent; (ii) processing is necessary to perform a contract with you; (iii) processing is necessary for our or a third party's legitimate interests (provided your rights do not override those interests); or (iv) processing is required by law.

Data Retention

We retain personal information only as long as necessary for the purposes described, to satisfy contractual or legal obligations, or to resolve disputes. Retention may also depend on statutory requirements or an express request for deletion (subject to investigations or ongoing contracts).

Data Minimization & Security

We limit collection to data necessary for the stated purposes and apply technical and organizational measures (HTTPS, encryption, firewalls, access controls, 2FA where appropriate) to protect personal information. You should also follow good security practices to protect your account.

Your Rights

Subject to local law, you may have the right to:

• Request access to or a copy of your personal data.
• Request correction or deletion of inaccurate or unnecessary data.
• Object to or request restriction of processing.
• Request transfer of your data to you or another controller.
• Withdraw consent where processing is based on consent.

To exercise these rights contact us at the address below. We may ask for information to verify your identity. We aim to respond within one month; complex requests may take longer and we will notify you if additional time is required.

Contact & Data Breach

For questions, access requests or to report a suspected data breach, contact us at admin@cannyconsultadvisory.ng. We maintain a data breach procedure and will notify affected individuals and regulators as required by law.

Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in the law, technology, or business practices. We will post the updated policy on this page and, if changes are material, we may provide additional notice.