Gingerly

Privacy Policy

Last Updated: January 2026

1. Our Privacy Commitment

At Gingerly, we understand that your data is a strategic asset. Our Payment OS is built with a “Privacy by Design” philosophy. We are committed to protecting the data you entrust to us and ensuring transparency in how we collect, use, and share information.

2. Information We Collect

  • Merchant Data: Name, business registration details, contact information, and bank account details for settlement.
  • Customer Data: As part of the collection process, we store customer names, phone numbers (for mobile money/alerts), and transaction histories as provided by the Merchant.
  • Usage Data: Information on how you interact with our dashboard to help us optimise OS performance.
  • Cookies & Analytics: Non-identifiable data to improve platform performance and user experience.

3. How We Use Information

  • Facilitation: To process transactions and send automated payment reminders.
  • Verification: To comply with “Know Your Customer” (KYC) and Anti-Money Laundering (AML) regulations.
  • Optimisation: To provide you with cashflow analytics, churn reports, and financial insights.
  • Communication: To send system updates, security alerts, and support responses.

4. Data Sharing and Disclosure

We do not sell, rent, or trade your data to third parties. We only share information with:

  • Financial Partners: Licensed banks and mobile money operators required to move the funds.
  • Service Providers: Secure cloud hosting and communication tools.
  • Legal Necessity: If required by law, regulation, or a valid legal process.

5. Data Security

We employ enterprise-grade security measures, including:

  • Encryption: All data in transit and at rest is protected using AES-256 encryption.
  • Access Control: Strict internal protocols ensure only authorised personnel have access to sensitive systems.
  • Compliance: Our processing partners are PCI-DSS compliant, ensuring the highest standards for card and mobile data. We conduct regular audits and monitoring for potential breaches.

6. Data Ownership and Retention

  • Your Data, Your Choice: You retain ownership of your customer lists and transaction data. You may request an export of your data at any time.
  • Retention: We retain data for as long as your account is active or as required by financial record-keeping laws (typically 7 years for tax/audit purposes).

7. International Data Transfers

Where data is transferred across borders, we ensure the receiving party provides an adequate level of protection consistent with global data protection regulations (such as GDPR or local Data Protection Acts).

8. Your Rights

  • Access your data to see what we hold
  • Correct inaccuracies or update information
  • Request deletion of data, where legally allowed
  • Opt out of marketing communications at any time

9. Third-Party Links

Our platform may contain links to third-party services. We are not responsible for their privacy practices. Please review their policies separately.

10. Changes to the Privacy Policy

We may update this Privacy Policy to reflect new features or legal requirements. Changes will be posted on the platform, and continued use constitutes acceptance.

11. Contact Us

For any questions regarding this policy or to exercise your data rights, please contact our Data Privacy Officer at privacy@gingerly.africa