Privacy Policy for SPESSE Social Standards Node Certification Portal

Introduction

Welcome to the SPESSE Social Standards Node Certification Portal. This Privacy Policy outlines how we collect, use, disclose, and protect your personal information when you use our services. By accessing or using our Portal, you agree to this Privacy Policy.

Information We Collect

We collect the following types of information:

  1. Personal Information

    • Name
    • Email address
    • Phone number
    • Gender
    • Age
    • Educational qualifications
    • Professional experience
    • Other information as required for the certification process
  2. Technical Information
    • IP address
    • Browser type and version
    • Operating system
    • Referral source
    • Pages visited
    • Date and time of access
  3. Documents
    • Certificates and degrees
    • Professional references
    • Other supporting documents as required for certification

How We Use Your Information

We use your information for the following purposes:

  • To process your application and certification
  • To verify your identity and qualifications
  • To communicate with you regarding your application and certification status
  • To improve our services and user experience
  • To comply with legal requirements

Legal Basis for Processing

We process your personal information based on the following legal grounds:

  • Your consent
  • Performance of a contract
  • Compliance with legal obligations
  • Legitimate interests

Sharing Your Information

We may share your information with:

  • The National Universities Commission (NUC) and other relevant regulatory bodies
  • Partner organizations involved in the SPESSE project
  • Third-party service providers who assist us in operating the Portal and providing our services
  • Law enforcement or other governmental authorities as required by law

Data Security

We implement a variety of security measures to protect your personal information, including:

  • Encryption of sensitive data
  • Use of secure networks and servers
  • Access controls and authentication mechanisms
  • Regular security audits and assessments

Data Retention

We will retain your personal information for as long as necessary to fulfil the purposes for which it was collected, or as required by law.

Your Rights

You have the following rights regarding your personal information:

  • Access: You can request access to the personal information we hold about you.
  • Correction: You can request corrections to any inaccurate or incomplete information.
  • Deletion: You can request the deletion of your personal information, subject to legal requirements.
  • Objection: You can object to the processing of your personal information under certain circumstances.
  • Portability: You can request a copy of your personal information in a structured, commonly used, and machine-readable format.

Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience on our Portal. You can manage your cookie preferences through your browser settings.

International Data Transfers

Your personal information may be transferred to, and processed in, countries other than Nigeria. We will take appropriate measures to ensure that your information is protected in accordance with this Privacy Policy.

GDPR and NDPR Compliance

We are committed to complying with the Nigeria Data Protection Regulation (NDPR) and General Data Protection Regulation (GDPR). This includes:

  • Ensuring that personal data is processed lawfully, fairly, and transparently.
  • Collecting data for specified, explicit, and legitimate purposes.
  • Ensuring data is adequate, relevant, and limited to what is necessary.
  • Keeping data accurate and up-to-date.
  • Retaining data only for as long as necessary.
  • Implementing appropriate security measures to protect data.

Data Subject Rights Under GDPR and NDPR

  • Right to be informed: You have the right to be informed about the collection and use of your personal data.
  • Right of access: You have the right to access your personal data and supplementary information.
  • Right to rectification: You have the right to have inaccurate personal data rectified or completed if it is incomplete.
  • Right to erasure: You have the right to have your personal data erased under certain conditions.
  • Right to restrict processing: You have the right to request the restriction or suppression of your personal data.
  • Right to data portability: You have the right to obtain and reuse your personal data for your own purposes across different services.
  • Right to object: You have the right to object to the processing of your personal data in certain circumstances.
  • Rights related to automated decision-making and profiling: You have the right to not be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page, and we will notify you of any significant changes.

Contact Us

If you have any questions or concerns about this Privacy Policy or our data practices, please contact us using the contact detail on this website.

By using the SPESSE Social Standards Node Certification Portal, you acknowledge that you have read and understood this Privacy Policy and agree to the collection, use, and disclosure of your personal information as described herein.