Privacy policy

Payroid is operated by Payroid Synergy Limited (RC 9553657), a Nigerian private company limited by shares, registered with the Corporate Affairs Commission under the Companies and Allied Matters Act 2020. We provide a platform to sell gift cards for naira and pay common Nigerian bills from a naira balance. Crypto cash-out is also offered under our authorisation pursuant to the SEC Digital Assets Rules, 2022.

If you have questions about how we handle your data, reach us at support@payroid.co.

To run the service, we collect three categories of data:

• Identity: your name, BVN, NIN, date of birth, address, and a face check. Required by Nigerian regulators for cash-out platforms.
• Account: your email, phone number, bank account number, and the device you use to access the app.
• Activity: every trade you make, the rate at submit, the amount, the asset, the timestamp, and the settled bank. We keep these for fraud prevention and to honor your locked rates.

• To verify you're a real person. KYC is a legal requirement in Nigeria.
• To send naira to your bank when you sell on the platform.
• To detect fraud and stolen cards. We compare patterns across trades.
• To respond to lawful requests from Nigerian regulators (CBN, NFIU, EFCC) when required.

We hold identity and transaction records for at least 5 years after your last trade. This is the minimum required under Nigerian anti-money-laundering rules. After that period, we delete or anonymize data unless you ask us to keep it.

• Nigerian banks and payment processors, to settle your payouts.
• KYC providers, to verify your identity once.
• Regulators (CBN, NFIU, EFCC, NDPC) on lawful request only.
• Service providers we work with under written contract (analytics, infrastructure). They never receive your BVN, NIN, or bank details.

We do not sell your data. We never have, we never will.

Under the Nigerian Data Protection Act (NDPA 2023) and Nigerian Data Protection Regulation (NDPR), you have the right to:

• Ask what data we hold on you.
• Correct data that's wrong.
• Delete your account and data, subject to the 5-year retention rule for AML records.
• Export your trade history.
• Withdraw consent for analytics cookies at any time.
• File a complaint with the Nigeria Data Protection Commission if you believe we mishandled your data.

Email support@payroid.co to exercise any of these. We respond within 14 days.

We use two kinds of cookies. Necessary cookies keep you logged in and the trade flow working. Analytics cookies tell us which parts of the site people use. The cookie banner on your first visit lets you accept or decline analytics. Necessary cookies cannot be declined because the site stops working without them.

Data in transit is encrypted with TLS. Data at rest is encrypted with industry-standard ciphers. BVN, NIN, and bank details are stored separately from your account record and accessed under strict internal controls. If we ever have a breach that affects you, we'll tell you within 72 hours, as the law requires.

If we change how we handle your data, we update this page and note the date at the top. Material changes get a banner on the app and an email. By continuing to use Payroid after a change, you accept the updated policy.