Privacy Policy

We provide tools that help businesses and sellers create online fronts, display products and services, manage orders, track customers, manage inventory, automate customer conversations, and receive payments through supported payment partners.

We are a platform provider. Sellers who create fronts are responsible for their own products, services, customers, delivery, refunds, policies, and business operations.

Because We provide tools for sellers and customers to interact, we may process information about both sellers and customers.

When you create or use a Quickfront account, we may collect information such as:

1. (a)full name;
2. (b)email address;
3. (c)phone number;
4. (d)WhatsApp number;
5. (e)username;
6. (f)password or authentication credentials;
7. (g)Google account information, where you sign in with Google;
8. (h)email verification status;
9. (i)phone verification status;
10. (j)business contact email;
11. (k)business phone or contact details;
12. (l)front name;
13. (m)front slug;
14. (n)business category;
15. (o)business description;
16. (p)business address, pickup address, or delivery-related business location details where you provide them;
17. (q)profile picture, business logo, front images, product images, and other uploaded media;
18. (r)account settings, notification preferences, dashboard preferences, and feature settings;
19. (s)subscription plan, billing status, payment status, and renewal status;
20. (t)support messages, reports, complaints, and other communication with us.

We collect this information so we can create your account, set up your front, verify your contact details, operate the platform, provide support, process payments, manage subscriptions, improve the service, and protect the platform.

Quickfront may require additional verification before allowing access to certain features, including payment collection, payouts, higher limits, verification badges, or other restricted features.

For verification and Know Your Customer checks, we may collect or verify information such as:

1. (a)business name;
2. (b)business registration details;
3. (c)CAC documents or registration information;
4. (d)business ownership information;
5. (e)identity information;
6. (f)BVN;
7. (g)NIN;
8. (h)director, owner, or representative information;
9. (i)business address;
10. (j)contact details;
11. (k)uploaded verification documents;
12. (l)verification status and verification results.

Verification and KYC checks are performed through QoreID, a third-party identity verification provider. When you submit verification information, it is processed by QoreID under their own privacy policy and terms. Quickfront does not store raw KYC documents. We receive and retain only the verification outcome (verified or not verified) and a reference identifier from QoreID.

We use verification outcomes to confirm identity, confirm business ownership or authority, reduce fraud, manage risk, comply with payment requirements, protect customers, and keep the platform safe.

When a customer visits, chats with, or places an order through a seller's front, we may collect information such as:

1. (a)name;
2. (b)email address;
3. (c)phone number;
4. (d)delivery or pickup details;
5. (e)order details;
6. (f)product or service selected;
7. (g)quantity, price, and delivery fee;
8. (h)payment reference and payment status;
9. (i)transaction information;
10. (j)customer messages, support requests, or report details;
11. (k)AI chat messages where the customer uses a front's AI assistant;
12. (l)device, browser, and usage information.

We collect this information to process orders, support sellers, provide customer communication tools, support payment and checkout flows, manage disputes or reports, improve the service, prevent abuse, and keep records of transactions made through the platform.

When customers place orders, contact a seller, or interact with a seller's front, the seller may receive customer information needed to manage the order or relationship.

This may include the customer's name, phone number, email address, order details, delivery or pickup details, chat messages, and order history.

Sellers are responsible for using customer information lawfully and responsibly. Sellers must not sell, misuse, spam, expose, or unlawfully share customer data obtained through Quickfront.

Quickfront uses payment gateway partners and supported payment service providers to process payments.

When you pay for a Quickfront subscription, verify a card, authorise recurring billing, or when a customer pays through a front, our payment partners may collect and process payment information.

We do not store full payment card details on its own servers. Card payments, saved cards, tokenisation, encryption, and recurring billing authorisation are handled by our payment gateway partners.

Quickfront may receive and store payment-related information needed to operate the platform, such as:

1. (a)transaction reference;
2. (b)payment status;
3. (c)payment amount;
4. (d)currency;
5. (e)subscription status;
6. (f)plan selected;
7. (g)renewal date;
8. (h)failed payment status;
9. (i)card type or masked card information where provided by the payment partner;
10. (j)customer or seller payment record;
11. (k)wallet balance or payout record;
12. (l)payout status;
13. (m)refund, reversal, chargeback, or dispute status.

We use this information to manage subscriptions, process customer orders, maintain seller wallet or payout records, confirm successful payments, handle failed payments, support refunds or disputes, prevent fraud, and keep transaction records.

Where Quickfront provides wallet, balance, or payout features, we may collect and process information such as:

1. (a)seller wallet balance;
2. (b)pending balance;
3. (c)available balance;
4. (d)payout requests;
5. (e)payout status;
6. (f)payout history;
7. (g)bank account or settlement information where required;
8. (h)refund deductions;
9. (i)chargeback or reversal records;
10. (j)payout delays, holds, or restrictions;
11. (k)payment partner settlement information.

We use this information to reflect successful customer payments, manage payout flows, resolve disputes, prevent fraud, comply with payment partner requirements, and operate seller financial records inside the platform.

We may provide AI assistant features that allow sellers to automate customer conversations on their fronts.

When customers use the AI assistant, we may process information such as:

1. (a)customer messages;
2. (b)AI responses;
3. (c)front and product information used to generate responses;
4. (d)seller knowledge base content;
5. (e)product names, prices, stock, descriptions, and related business information;
6. (f)timestamps and usage information;
7. (g)technical information needed to provide the AI feature.

The AI assistant may use information provided by the seller, including public product data and seller-controlled knowledge base information. Where available, sellers may be able to view AI chat history or customer conversations connected to their front from their dashboard.

We may use AI chat information to provide the AI assistant, help sellers understand customer interactions, monitor abuse, improve safety, investigate issues, and operate the platform.

Customers should not share sensitive personal information with the AI assistant unless necessary for their order or request.

Users may upload images, logos, profile pictures, product images, front images, business images, verification documents, and other files where the feature is available.

Uploaded media may include personal information if the image, file, or document contains identifiable details.

We may store uploaded files using cloud storage providers such as AWS S3 or other infrastructure providers. We may compress, resize, convert, optimise, store, cache, and deliver uploaded images or files to improve platform performance, loading speed, storage, and user experience.

Some uploaded content, such as product images, business logos, and front images, may be publicly visible on a seller's front. Verification documents are used for verification, compliance, fraud prevention, payment access, and platform safety.

When you use Quickfront, we may automatically collect certain technical and usage information, including:

1. (a)IP address;
2. (b)device type;
3. (c)browser type;
4. (d)operating system;
5. (e)pages visited;
6. (f)actions taken on the platform;
7. (g)date and time of access;
8. (h)referral source;
9. (i)session activity;
10. (j)error logs;
11. (k)performance data;
12. (l)approximate location derived from technical information;
13. (m)security and abuse-prevention signals.

We use this information to keep the platform working, improve performance, detect bugs, prevent fraud or abuse, protect accounts, understand usage, and improve the product.

We may use cookies, local storage, session storage, and similar technologies to keep the platform working, secure accounts, remember user preferences or progress, improve performance, prevent abuse, and understand platform usage.

Some information may be temporarily stored in your browser to make the platform easier to use, such as helping you continue a setup flow without starting again.

We may use essential technologies for login, security, session management, account protection, and core platform functions. We may also use analytics technologies, such as Google Analytics, to understand how people use Quickfront and improve the platform.

Where required, we may ask for your consent before using non-essential cookies or analytics technologies. You can manage cookies through your browser settings, but disabling some cookies or storage features may affect how Quickfront works.

For full details on the specific cookies and storage items we use, see our Cookie Policy.

If you sign in or create an account using Google, we may receive information from your Google account, such as your email address, name, profile picture, and account identifier, depending on the permissions you approve.

We use this information to create or authenticate your Quickfront account, prefill account details, improve onboarding, and help secure your login.

Your use of Google sign-in may also be subject to Google's own terms and privacy policy.

We may use security and anti-spam tools such as Cloudflare Turnstile to protect signups, forms, and platform activity from bots, abuse, spam, and automated attacks.

These tools may process technical information about your device, browser, session, and interaction with the platform to determine whether activity appears legitimate.

We may use your contact information to send messages such as:

1. (a)email verification codes;
2. (b)phone or WhatsApp OTPs;
3. (c)password reset messages;
4. (d)account security messages;
5. (e)subscription and billing messages;
6. (f)failed payment reminders;
7. (g)order notifications;
8. (h)customer inquiry notifications;
9. (i)payout or wallet messages;
10. (j)verification requests;
11. (k)support replies;
12. (l)product updates;
13. (m)legal or policy notices;
14. (n)marketing messages, where permitted.

Users may be able to manage some notification preferences from their dashboard where that feature is available. Some important service, security, billing, legal, or account messages may still be sent even if you opt out of marketing messages.

We may use personal information to:

1. (a)create and manage user accounts;
2. (b)verify email addresses and phone numbers;
3. (c)create, publish, and manage fronts;
4. (d)display seller products, services, images, business details, and content;
5. (e)process orders;
6. (f)provide customer management and CRM features;
7. (g)provide inventory and order management tools;
8. (h)provide AI assistant features;
9. (i)process subscriptions and billing;
10. (j)manage saved-card authorisation through payment partners;
11. (k)manage wallets, balances, payouts, refunds, and payment records;
12. (l)verify businesses, identities, and account authority;
13. (m)prevent fraud, abuse, spam, impersonation, and prohibited activity;
14. (n)investigate reports, complaints, disputes, suspicious activity, or policy violations;
15. (o)provide customer support;
16. (p)send service, billing, legal, security, and account messages;
17. (q)improve platform performance, design, features, and reliability;
18. (r)analyse platform usage;
19. (s)maintain audit logs and internal records;
20. (t)comply with legal, regulatory, tax, accounting, payment, and security obligations;
21. (u)enforce our Terms of Service and platform policies.

We process personal information only where we have a lawful basis to do so. Depending on the situation, our lawful basis may include:

1. (a)your consent;
2. (b)performance of a contract with you;
3. (c)steps taken before entering into a contract;
4. (d)compliance with legal obligations;
5. (e)our legitimate business interests;
6. (f)protection of users, customers, sellers, Quickfront, payment partners, or the public;
7. (g)the establishment, exercise, or defence of legal claims.

Where we rely on consent, you may withdraw your consent, but this will not affect processing that happened before the withdrawal.

Some information is required to provide the service. If you refuse to provide required information, we may not be able to create your account, verify you, process payments, publish your front, provide support, or allow access to certain features.

We do not sell your personal information.

We may share personal information with trusted third parties where needed to provide, operate, secure, verify, improve, or support Quickfront. This may include:

1. (a)hosting and infrastructure providers;
2. (b)database providers;
3. (c)cloud storage providers;
4. (d)payment gateway partners;
5. (e)card processing and billing providers;
6. (f)verification and KYC providers;
7. (g)email delivery providers;
8. (h)SMS, phone, WhatsApp, or communication providers;
9. (i)analytics providers;
10. (j)anti-spam and security providers;
11. (k)AI service providers;
12. (l)customer support tools;
13. (m)professional advisers where necessary;
14. (n)service providers who help us operate the platform.

We may also share information between customers and sellers where needed to process orders, provide support, complete delivery or pickup, manage disputes, or operate a front. For example, when a customer places an order, the seller may receive the customer's name, phone number, email address, delivery details, and order information.

We require service providers to handle personal information responsibly and only for the purposes connected to the services they provide to us.

We may use third-party services such as:

1. (a)Vercel for frontend hosting;
2. (b)Render for backend hosting;
3. (c)MongoDB for database storage;
4. (d)AWS S3 for file and media storage;
5. (e)Paystack for payments, card processing, saved-card authorisation, and recurring billing;
6. (f)Google for Google sign-in and analytics;
7. (g)Cloudflare Turnstile for anti-spam and bot protection;
8. (h)OpenAI or other AI providers for AI assistant features;
9. (i)Namecheap SMTP or other email providers for email delivery;
10. (j)Payment or communication providers where used for SMS, WhatsApp or similar services;
11. (k)QoreID or other verification providers where KYC or business verification is implemented.

These providers may process information according to their own terms and privacy policies, depending on the service.

Sellers who receive customer data through Quickfront are responsible for how they use that data.

Sellers must use customer data only for lawful business purposes connected to orders, delivery, customer support, customer relationship management, refunds, disputes, or lawful marketing where permitted.

Sellers must not:

1. (a)sell customer data;
2. (b)use customer data for scams or unrelated purposes;
3. (c)spam customers;
4. (d)harass customers;
5. (e)expose customer data publicly;
6. (f)share customer data unlawfully;
7. (g)use customer data in a way that violates privacy, consumer protection, or marketing laws.

We may restrict or suspend sellers who misuse customer data.

Our admins may access user accounts, fronts, products, orders, customers, uploaded content, payment records, wallet records, AI settings, AI chats, reports, and other platform data where needed for support, moderation, compliance, debugging, fraud prevention, dispute review, platform safety, or service operation.

Admin activity may be recorded in internal audit logs. Admin access is intended to be limited to legitimate operational and safety purposes.

We keep personal information for as long as reasonably necessary to provide Quickfront, operate accounts and fronts, process orders, maintain payment and subscription records, provide support, resolve disputes, prevent fraud, enforce our Terms, comply with legal obligations, maintain business records, and protect the platform.

The retention period may depend on the type of information, the purpose for which it was collected, legal or payment requirements, dispute risk, fraud prevention needs, backup cycles, and platform safety needs.

If you delete your account or request deletion, we may delete or disable your account information where appropriate. However, we may retain certain information where necessary for:

1. (a)payment and transaction records;
2. (b)fraud prevention;
3. (c)chargeback or dispute handling;
4. (d)accounting and tax records;
5. (e)security logs;
6. (f)audit records;
7. (g)legal compliance;
8. (h)backup and disaster recovery;
9. (i)enforcement of our Terms;
10. (j)legitimate business purposes.

Some information may remain in backups or logs for a limited period before deletion.

We use reasonable technical, administrative, and organisational measures to protect personal information.

These may include account authentication, email or phone verification, access controls, audit logs, secure infrastructure, encryption by payment partners, cloud security controls, monitoring, and restricted admin access.

However, no online platform, storage system, payment flow, or communication method is completely secure. You are responsible for keeping your login details, devices, email account, and account access secure.

If you believe your account has been accessed without permission, contact us immediately at support@quickfront.app.

Some of our service providers may store or process information outside Nigeria.

Where personal information is transferred outside Nigeria, we take reasonable steps to ensure that the information is protected using appropriate safeguards, contractual protections, provider security measures, or other lawful transfer mechanisms.

By using Quickfront, you understand that your information may be processed in countries where our service providers operate.

Subject to applicable law, you may have rights over your personal information, including the right to:

1. (a)be informed about how your personal information is used;
2. (b)request access to your personal information;
3. (c)request correction of inaccurate, incomplete, or outdated information;
4. (d)request deletion of your personal information;
5. (e)withdraw consent where processing is based on consent;
6. (f)object to certain processing;
7. (g)request restriction of processing;
8. (h)request data portability where applicable;
9. (i)object to direct marketing;
10. (j)complain to the Nigeria Data Protection Commission (NDPC) at ndpc.gov.ng;
11. (k)request human review where a significant decision is made only by automated processing, where applicable.

To exercise your rights, contact us at support@quickfront.app.

We may need to verify your identity before responding to a privacy request. Some requests may be limited where we need to keep certain information for payment records, fraud prevention, disputes, legal compliance, security, accounting, or legitimate business purposes.

We distinguish between two types of messages:

Transactional messages: OTP codes, order confirmations, payment alerts, security notices, and account updates are sent as required to operate the service. These do not require separate consent and cannot be opted out of while your account is active.

Marketing messages: Promotions, newsletters, product announcements, and similar communications are only sent where you have explicitly opted in. You may withdraw consent and opt out at any time using the unsubscribe link in any marketing message or by contacting us.

Opting out of marketing messages does not affect transactional or service-related messages.

We may use automated systems to support features such as spam prevention, fraud detection, account security, platform moderation, payment risk review, AI responses, and usage limits.

The AI assistant may generate automated responses to customers based on seller-provided information, product data, and knowledge base content. AI responses may be inaccurate, incomplete, or delayed. Sellers remain responsible for their front, products, services, business information, policies, and customer communication.

Where a significant decision affects your account, front, payment access, payout, or verification status, you may contact us to request review or provide additional information.

Quickfront is designed for businesses, sellers, and customers who can lawfully use business and payment services. Quickfront is not directed at children.

If we become aware that personal information has been provided by a person who is not legally able to use the service without proper authority or consent, we may restrict the account, delete the information, or request additional confirmation.

Sellers are responsible for ensuring that their products, services, and customer interactions comply with any applicable age restrictions.

Quickfront may contain links to third-party websites, seller pages, payment pages, social media pages, or other services.

We are not responsible for the privacy practices, content, security, or policies of third-party websites or services. You should review the privacy policies of any third-party service you use.

Some information provided by sellers may be publicly visible on fronts. This may include business name, front name, business description, business logo, product images, product names, product prices, product descriptions, delivery or pickup information, business contact details, and other content published by the seller.

Do not publish information on your front that you do not want customers or the public to see.

Quickfront may remove public content that violates our Terms of Service, this Privacy Policy, or platform rules.

If a customer, seller, business, rights holder, or other person reports a front, order, product, or seller, we may collect and process information related to the report.

This may include names, contact details, order details, payment references, screenshots, messages, product information, seller information, customer information, admin notes, and investigation records.

We use this information to review the issue, contact relevant parties, investigate complaints, protect users, prevent abuse, enforce our Terms, and support dispute handling.

If Quickfront is involved in a merger, acquisition, investment, restructuring, financing, sale of assets, or transfer of business, personal information may be reviewed or transferred as part of that process.

If this happens, we will take reasonable steps to protect personal information and ensure it continues to be handled in line with this Privacy Policy or a policy with similar protections.

We may update this Privacy Policy from time to time.

If we make material changes, we may notify you by email, dashboard notice, website notice, or another reasonable method.

The updated Privacy Policy will take effect when posted or on the date stated in the updated policy. Your continued use of Quickfront after the updated Privacy Policy takes effect means you accept the updated Privacy Policy.

For questions about this Privacy Policy, complaints, privacy requests, or data protection concerns, contact us through the support section of your dashboard or email us at support@quickfront.app.

Our Data Protection Officer (DPO) can be reached directly at privacy@quickfront.app for all data protection concerns, subject access requests, and privacy complaints.

If you believe your data protection rights have been violated and we have not resolved your concern, you may lodge a complaint with the Nigeria Data Protection Commission (NDPC):

Website: ndpc.gov.ng · Email: info@ndpc.gov.ng