Legal Resource

GDPR Compliance Statement

Released on 26 February 2025

1. Scope and Applicability

While SaleTick is based in **Nigeria** and primarily serves the Nigerian business ecosystem, we recognize that we may process the personal data of individuals located within the European Economic Area (EEA) and the United Kingdom.

As a global-thinking company, we are committed to upholding the rigorous standards set by the General Data Protection Regulation (GDPR) and the UK GDPR for any affected Data Subjects.

2. Lawful Basis for Processing

Under GDPR, we process personal data only when we have a valid lawful basis:

  • Consent: You have given clear, affirmative consent for us to process your data for a defined purpose.
  • Contract: The processing is essential for fulfilling a contract we have with you (e.g., providing your inventory dashboard).
  • Legal Obligation: The processing is necessary for us to comply with statutory laws.
  • Legitimate Interests: The processing is necessary for our legitimate business interests, provided they do not override your privacy rights.

3. Your Rights Under GDPR

If you are a resident of the EEA or UK, you are entitled to protected rights:

  • Transparency: The right to be informed about how your data is used.
  • Access: The right to request a copy of your personal data.
  • Rectification: The right to correct any inaccurate data.
  • Erasure: The right to be forgotten (data deletion).
  • Restriction: The right to limit how we process your data.
  • Portability: The right to receive your data in a machine-readable format.
  • Objection: The right to object to profiling or direct marketing.

4. Data Minimization and Privacy by Design

We apply the principle of **Data Minimization**, ensuring we ONLY collect data that is strictly necessary for our inventory management service. We integrate privacy into our software development lifecycle (Privacy by Design) to ensure protection from the first line of code.

5. International Data Transfers

When data is transferred outside the EEA or UK, we utilize strict safeguards such as **Standard Contractual Clauses (SCCs)** approved by the European Commission. This ensures your data maintains a level of protection equivalent to that stipulated by the GDPR.

6. Data Breach Notification

In the unlikely event of a personal data breach that poses a high risk to your rights, we will notify you and the relevant supervisory authority without undue delay—typically within 72 hours of discovery.

7. Data Protection Officer (DPO)

We have appointed a designated Data Protection Officer to oversee our global compliance. You can reach them directly for any GDPR-specific queries at **privacy@saletick.net**.

8. Contact and Complaints

If you wish to exercise your rights or have concerns about our handling of your information:

  • Direct Inquiry: privacy@saletick.net
  • Official Complaint: You have the right to lodge a complaint with a Data Protection Authority in your country of residence.