NDPR Compliance
Last updated: March 17, 2025
1. Introduction
At Juniper, we are committed to protecting the personal data of our users and ensuring compliance with applicable data protection laws, including the Nigeria Data Protection Regulation (NDPR) issued by the National Information Technology Development Agency (NITDA).
This NDPR Compliance Statement explains how we collect, use, and protect the personal data of individuals in Nigeria and outlines your rights under the NDPR.
2. Data Controller
RISKGRATIS, is the data controller for the personal data we process. This means we determine the purposes and means of processing personal data in accordance with the NDPR.
3. Legal Basis for Processing
Under the NDPR, we must have a legal basis for processing your personal data. We rely on the following legal bases for processing personal data:
3.1 Consent
We process certain personal data based on your explicit consent. You can withdraw your consent at any time by contacting us.
3.2 Contractual Performance
We process personal data necessary for the performance of a contract to which you are party or to take steps at your request prior to entering into a contract.
3.3 Legal Obligations
We process personal data to comply with legal obligations under Nigerian law and other applicable regulations.
4. Your Rights Under NDPR
The NDPR provides individuals with certain rights regarding their personal data. These rights include:
4.1 Right to Access
You have the right to request information about your personal data that we process.
4.2 Right to Rectification
You have the right to request correction of any inaccurate or incomplete personal data we hold about you.
4.3 Right to Deletion
You have the right to request deletion of your personal data when it is no longer necessary for the purpose for which it was collected.
4.4 Right to Object
You have the right to object to the processing of your personal data for marketing purposes or on grounds relating to your particular situation.
5. Data Security
We implement appropriate technical and organizational measures to protect personal data against unauthorized access, alteration, disclosure, or destruction. Our security measures include:
- Encryption of personal data
- Regular security assessments
- Access controls and authentication
- Data backup and recovery procedures
- Staff training on data protection
6. Data Transfer
We ensure that any transfer of personal data outside Nigeria is done in accordance with NDPR requirements, including ensuring that the recipient country has adequate data protection regulations or appropriate safeguards are in place.
7. Data Protection Officer
We have appointed a Data Protection Officer (DPO) responsible for overseeing our compliance with the NDPR. You can contact our DPO at dpo@juniper.com for any data protection concerns.
8. Data Breach Management
In the event of a data breach, we will notify NITDA within 72 hours of becoming aware of the breach. If the breach is likely to result in a high risk to your rights and freedoms, we will also notify you directly.
9. Filing Complaints
If you believe that our processing of your personal data violates the NDPR, you have the right to file a complaint with NITDA. We encourage you to contact us first so we can address your concerns.
10. Changes to This Statement
We may update this NDPR Compliance Statement periodically to reflect changes in our practices or legal requirements. We will notify you of any material changes through appropriate channels.
11. Contact Us
If you have any questions about this NDPR Compliance Statement or our data practices, please contact us at:
RISKGRATIS
73, Victoria Street, Ojota, Lagos. KSF 100242
privacy@juniper.africa