General Privacy Policy

Ascent Tech Hub Africa Nig. Ltd. ('Ascent', 'we', 'us', or 'our') is a financial technology company incorporated under the Companies and Allied Matters Act (CAMA) 2020 and registered in the Federal Republic of Nigeria. We operate the Ascent Finance Suite (the 'Platform'), a digital platform providing financial management tools, payment services, and related financial technology solutions.

Ascent is a registered Data Controller with the Nigeria Data Protection Commission (NDPC) and is committed to processing Personal Data lawfully, fairly, and transparently in accordance with the Nigerian Data Protection Act (NDPA) 2023 and all Applicable Law.

For all privacy-related enquiries, please contact our Data Protection Officer at [email protected].

This Policy applies to all natural persons who:

This Policy does not apply to the processing of business entity data, which is governed by the Ascent Business Privacy Policy. However, individual directors, shareholders, partners, and employees of Business Users whose Personal Data is processed through the Platform are covered by this Policy to the extent they are identifiable natural persons.

When you create an Account or use the Platform, you provide us with:

When you access the Platform, we automatically collect:

With your consent or as permitted by Applicable Law, Ascent may receive your Personal Data from:

With your consent, we may use your contact information to send you:

You may opt out of marketing communications at any time by clicking the unsubscribe link in any email we send or by updating your communication preferences in your Account settings. Opting out of marketing does not affect transactional or account-related communications.

Ascent processes your Personal Data on the following legal bases, as required by the NDPA 2023:

Contract: Processing is necessary to perform our Agreement with you and to deliver the services you have requested.

Legal Obligation: Processing is required to comply with our legal and regulatory duties, including KYC, AML, tax reporting, and data retention obligations.

Legitimate Interests: Processing is necessary for our legitimate interests in operating a secure and effective platform, including fraud prevention, system security, and product improvement, where these are not overridden by your rights.

Consent: For certain activities such as marketing communications or the processing of Sensitive Personal Data, we rely on your freely given, specific, and informed consent. You may withdraw consent at any time.

We share your Personal Data with carefully selected third-party service providers who help us deliver the Platform, including cloud hosting providers, identity verification services, payment processors, customer support platforms, and analytics providers. All service providers are bound by Data Processing Agreements requiring them to process data only on Ascent's instructions and in compliance with Applicable Law.

To facilitate transactions and Financial Services, we may share relevant financial data with licensed banks, payment processors, card schemes, and settlement institutions operating under CBN authorisation.

We will disclose your Personal Data to regulatory authorities, law enforcement agencies, or courts where required or permitted by Applicable Law, including in response to a valid court order, subpoena, or regulatory demand.

In the event of a merger, acquisition, sale of assets, or corporate restructuring, your Personal Data may be transferred to the successor entity, subject to appropriate confidentiality protections and notification to you.

Ascent does not sell, rent, or otherwise commercially license your Personal Data to any third party for marketing, advertising, or any other purpose not described in this Policy.

The Platform is primarily operated from and data is stored in Nigeria. In limited circumstances, Ascent may transfer your Personal Data to recipients outside Nigeria, for example where cloud infrastructure providers operate servers in other jurisdictions. In all such cases, Ascent ensures that adequate safeguards are in place, including the use of standard contractual clauses approved by the NDPC or transfers to jurisdictions recognised as providing an adequate level of data protection.

We retain your Personal Data for as long as your Account is active and for as long as necessary to fulfil the purposes described in this Policy. Specific retention periods include:

When retention periods expire, we securely delete or anonymise your Personal Data in accordance with our data destruction procedures.

Under the NDPA 2023, you have the following rights in relation to your Personal Data. To exercise any of these rights, please contact us at [email protected]:

Right of Access: You can request a copy of the Personal Data we hold about you.

Right to Rectification: You can ask us to correct any inaccurate or incomplete Personal Data.

Right to Erasure: You can request that we delete your Personal Data, subject to our legal retention obligations.

Right to Restrict Processing: You can ask us to limit how we use your Personal Data in certain circumstances.

Right to Data Portability: You can request your Personal Data in a structured, machine-readable format.

Right to Object: You can object to processing based on legitimate interests, including direct marketing.

Right to Withdraw Consent: Where processing is based on your consent, you may withdraw it at any time without affecting prior lawful processing.

We will respond to your request within 30 days. In complex cases, we may extend this by a further 30 days with prior notice. We will never charge a fee for exercising your rights, unless requests are manifestly unfounded or excessive.

We take the security of your Personal Data seriously and implement the following measures:

In the event of a breach likely to result in risk to your rights and freedoms, we will notify the NDPC within 72 hours and inform you without undue delay, providing details of what data was affected and the steps we are taking.

The Platform is not directed at or intended for use by children under the age of 18. We do not knowingly collect Personal Data from minors. If you are under 18, please do not register for or use the Platform. If we become aware that we have inadvertently collected Personal Data from a child, we will take immediate steps to delete it. If you believe a child's data has been submitted to us, please contact us at [email protected].

The Platform uses cookies and similar technologies (such as web beacons and tracking pixels) to enhance your experience, maintain session security, and analyse usage patterns. You can manage your cookie preferences through the Platform settings or your browser settings. Please note that disabling certain cookies may affect your ability to use some features of the Platform. A detailed Cookie Policy is available at www.ascentfinance.africa/cookies.

The Platform may contain links to third-party websites, applications, or services that are not operated by Ascent. This Policy does not apply to those third-party platforms, and Ascent is not responsible for their privacy practices. We encourage you to review the privacy policies of any third-party services you visit.

Ascent may update this Policy from time to time to reflect changes in Applicable Law, regulatory guidance, or our business practices. We will notify you of material changes through the Platform, by email, or through other appropriate communication channels at least 14 days before the changes take effect. The updated Policy will display the revised effective date at the bottom of this document. Your continued use of the Platform after the effective date constitutes your acceptance of the updated Policy.

If you have any questions, concerns, or requests relating to this Policy or our data practices, please contact

Data Protection Officer - Ascent Tech Hub Africa Nig. Ltd.

Email: [email protected]

Address: Plot 12, Oladele Kadiri Close, Ogba, Lagos, Nigeria

Website: www.ascentfinance.africa