Upholding Privacy
Protecting Your Data

1. Introduction

EeziCodez Tech ("we," "our," or "us") is a software engineering and technical consulting firm. We respect your privacy and are committed to protecting your personal data in accordance with global standards, including the General Data Protection Regulation (GDPR) and the Nigeria Data Protection Regulation (NDPR).

This Privacy Policy applies to all information collected through our website (eezicodeztech.com), communications, and service engagements. It outlines the scope of our data practices and your rights regarding your personal information.

This Privacy Policy shall be governed in accordance with the laws of the Federal Republic of Nigeria, without prejudice to applicable international data protection regulations where relevant.

2. Information Collection

We collect data to provide effective technical scoping and engineering services. The information we collect includes:

• Directly Provided Information: Name, email address, company name, project requirements, and technical scopes submitted via our contact forms or Scoping Modal.
• Automatically Collected Information: IP addresses, browser types, device information, and usage patterns collected via essential cookies or security protocols (e.g., hCaptcha) to prevent spam and abuse.

By submitting information through our forms, you acknowledge and consent to the processing of such information in accordance with this Privacy Policy.

3. Use of Data

Your data is strictly utilized for core business operations. We use your information to:

• Evaluate project scopes and provide accurate technical proposals.
• Communicate regarding service inquiries, contracts, and project updates.
• Maintain the security and integrity of our platform.
• Comply with legal obligations and enforce our Terms of Service.

Lawful Basis for Processing

We process personal data under one or more lawful bases, including:

• Consent
• Legitimate business interests
• Contractual necessity
• Compliance with legal obligations

4. Third-Party Processing & International Transfers

We do not sell, rent, or trade your personal data. We may share data with trusted third-party sub-processors solely to facilitate our services. These include:

• ZeptoMail (Zoho): For routing transactional emails and lead notifications securely.
• hCaptcha: For bot protection and spam mitigation on our web forms.
• Cloud Infrastructure Providers: (e.g., AWS, GCP) used to host our platform and process form submissions securely.

All sub-processors are bound by strict data processing agreements and are required to maintain equivalent levels of data protection.

International Data Transfers

Your information may be processed or stored in jurisdictions outside your country of residence through trusted infrastructure and service providers. Where applicable, we implement appropriate safeguards to ensure such transfers comply with relevant data protection laws.

5. Client Data & Intellectual Property (IP)

A distinction exists between "Visitor Data" (covered by this policy) and "Client Data" (data processed on your behalf during an active engineering project).

Once a commercial engagement begins, the processing of sensitive project data, source code, user databases, and Intellectual Property is governed by a separate, bespoke Non-Disclosure Agreement (NDA) and Data Processing Agreement (DPA). EeziCodez Tech claims no ownership over client IP unless explicitly stated in a commercial contract.

6. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including satisfying any legal, accounting, or reporting requirements. Project scoping briefs that do not result in a commercial contract are removed from active operational systems within 24 months, subject to secure backup retention policies and legal obligations.

7. Data Security

As an engineering firm, security is fundamental. We implement reasonable technical and organizational security measures consistent with industry practices to protect your data against unauthorized access, alteration, disclosure, or destruction. This includes TLS encryption in transit, secure environment variables for API credentials, and strict internal access controls. However, no internet-based transmission is 100% secure, and we cannot guarantee absolute security.

8. Your Data Protection Rights (GDPR & NDPR)

Under applicable data protection laws, you possess the following rights:

• Right to Access: Request copies of your personal data.
• Right to Rectification: Request correction of inaccurate or incomplete data.
• Right to Erasure (Right to be Forgotten): Request deletion of your personal data under certain conditions.
• Right to Restrict Processing: Request limitation on how we use your data.
• Right to Data Portability: Request transfer of your data to another organization.

To exercise any of these rights, please contact us at our provided email address. We respond to all legitimate requests within 30 days.

9. Cookies & Children's Privacy

Cookies & Tracking

We use essential cookies necessary for the operation and security of our platform (such as session management for anti-bot verification). Certain essential cookies are required for the proper operation and security of the platform and cannot be disabled through our systems.

We currently do not use aggressive third-party marketing trackers. Any future implementation of non-essential analytics cookies will require your explicit opt-in consent.

Children’s Privacy

Our services are not directed toward individuals under the age of 18, and we do not knowingly collect personal data from minors.

10. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect operational, legal, or regulatory changes. The updated version will be published on this page with a revised effective date.

11. Contact Us

If you have any questions about this Privacy Policy, our data practices, or wish to exercise your legal rights, please contact our Privacy & Compliance Team: