What personal data does Sikash collect?

Sikash collects personal identifiers (such as name, email, phone), payment information, usage data, and communication history, as detailed in our privacy policy.

How can I exercise my rights under GDPR or NDPR?

Email privacy@usesikash.com to access, correct, or delete your data, or to withdraw consent for marketing.

Sikash Privacy Policy

1 Introduction

This Privacy Policy applies to all users of Sikash — including creators, senders (gifters), and visitors — and explains:

What personal data we collect
Why we collect it
How we use and share it
How we secure it
Your rights under applicable data protection laws

We comply with applicable data protection laws including:

NDPR (Nigeria Data Protection Regulation)
GDPR (General Data Protection Regulation)
Other international data laws where applicable

By using Sikash, you agree to the terms of this Privacy Policy.

Back to top

2 What Data We Collect

Personal Identifiers:
- Full Name
- Email Address
- Phone Number
- Username / Display Name
- Profile Picture (optional)
- Social Media Handles (if provided)
Payment Information:
- Bank Account Details (for payout)
- BVN and Government-issued ID (for KYC)
- Transaction History (amount, sender name, method, time)
Usage & Device Data:
- IP Address
- Browser Type and Version
- Operating System
- Device Type
- Session Duration and Activity
- Referral URLs
- Cookie Identifiers and Analytics Tags
Communications:
- Support messages
- In-app interactions
- Emails between users and Sikash
Optional Information:
- Role or Category (e.g. Creator, Freelancer)
- Content displayed on creator pages (e.g. taglines or bios)

Note: We do not store card numbers or sensitive payment credentials. Payments are processed via third-party partners.

Back to top

3 How We Collect Your Data

Directly from you: during account creation, profile setup, form submissions, or withdrawals.
Automatically: when you use Sikash (via cookies, logs, and analytics).
From third parties: e.g., KYC/AML providers (for BVN/ID verification), advertising partners (aggregated engagement data), and banks (for transaction confirmation).

Back to top

4 Why We Collect and Use Your Data

Provide and Improve Our Services:
- Create your unique payment page
- Process incoming funds and withdrawals
- Provide customer support
- Prevent duplicate or fake accounts
Verify Your Identity:
- Comply with Know Your Customer (KYC) and Anti-Money Laundering (AML) requirements
- Match your bank account to your verified ID or BVN
Secure the Platform:
- Detect and prevent fraud or abuse
- Monitor suspicious transactions
Communicate With You:
- Notify you of transactions, updates, or service alerts
- Send marketing communications (only if you opt-in)
Analytics & Research:
- Understand user behavior
- Improve features and user experience
- Measure ad engagement (when ads are enabled on your page)

Back to top

5 Legal Bases for Processing

We rely on the following legal bases under data protection laws:

Consent: For marketing emails and optional ad participation
Contract: To fulfill our agreement with you (e.g., processing payments)
Legal Obligation: Compliance with tax, KYC/AML, and banking laws
Legitimate Interest: To improve services, prevent abuse, and grow the platform

Back to top

6 Sharing of Your Information

We do not sell your personal data.

We may share data with:

Payment Partners — Banks and payment processors for withdrawals and account verification
Identity Verification Partners — KYC/AML providers for BVN, ID, or address validation
Ad Partners (if opted-in) — Only anonymized or engagement data (e.g. clicks/views)
Your email, phone number, or BVN are never shared with advertisers
Analytics Services — Platforms like Google Analytics or PostHog, to help us understand usage patterns
Regulatory Bodies — Only when legally required (e.g., fraud, court orders, financial reporting)

Back to top

7 Cookies & Tracking Technologies

Keep you logged in
Track usage patterns
Improve performance
Run A/B tests

You can disable cookies via your browser settings, but this may affect your experience.

Back to top

8 Data Security

TLS encryption on all pages
Role-based access controls on staff dashboards
Hashing of sensitive identifiers
All payments processed via PCI DSS-compliant providers

Despite our best efforts, no system is 100% immune from risks.

Back to top

9 Data Retention

As long as your account is active
Or as long as needed to comply with legal and regulatory obligations

You may request deletion of your account, but some records (e.g. transactions) must be kept for audit and regulatory compliance.

Back to top

10 Your Rights (under NDPR, GDPR, and others)

Access your data
Correct inaccurate information
Delete your account and personal data (where legally allowed)
Withdraw consent at any time (for marketing)
Object to automated decision-making (we do not use any currently)
Port your data to another provider (on request)

To exercise these rights, email us at privacy@usesikash.com

Back to top

11 International Transfers

Some data may be processed or stored in countries outside Nigeria (e.g., secure servers in the EU or US). When we transfer data, we ensure:

Adequate protection measures (e.g. Standard Contractual Clauses)
Secure encryption during transit

Back to top

12 Children’s Privacy

Sikash is not intended for users under 18 years old.
We do not knowingly collect or store personal data of minors.

Back to top

13 Changes to This Policy

We may update this Privacy Policy from time to time.
If changes are significant, we’ll notify you via:

Email
In-app banner
Or both

The “Last Updated” date will always reflect the latest version.

Back to top

14 Contact Us

For questions, complaints, or data-related requests, contact us at:
Email: privacy@usesikash.com
Address: Lagos, Nigeria

Back to top