Privacy Policy

1. Introduction

Dohelps & Vidahelps Limited ("we," "our," or "us") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website (www.dohelpsandvidahelps.com) or use our services.

As a company operating across Nigeria, Portugal, and the United States, we comply with applicable data protection laws including the General Data Protection Regulation (GDPR) and the Nigeria Data Protection Act (NDPA).

2. Information We Collect

2.1 Information You Provide Directly

• Contact Information: Name, email address, phone number, company name
• Service Inquiries: Project details, budget information, technical requirements
• Communication Records: WhatsApp messages, emails, phone call records
• Payment Information: Billing address, payment method details (processed by third-party providers)

2.2 Information Automatically Collected

• Website Usage: Pages visited, time spent, click patterns
• Device Information: Browser type, operating system, IP address
• Performance Data: Page load times, error reports

2.3 Information from Third Parties

• Microsoft Partner Network: Professional verification and partnership status
• Business Directories: Company verification information
• Referrals: Information provided by referring clients or partners

3. How We Use Your Information

3.1 Service Delivery

• Providing IT services, cybersecurity solutions, and technical support
• Project management and communication
• Customer support and troubleshooting
• Invoice generation and payment processing

3.2 Business Operations

• Responding to inquiries and quote requests
• Improving our services and website functionality
• Compliance with legal and regulatory requirements
• Business development and partnership opportunities

3.3 Marketing Communications (with your consent)

• Sending newsletters and service updates
• Promotional offers and new service announcements
• Educational content and training invitations

4. Information Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information in the following circumstances:

4.1 Service Providers

• Cloud Hosting: Secure hosting providers for website and data storage
• Payment Processors: Secure payment processing services
• Communication Tools: Email service providers, WhatsApp Business API
• Analytics Services: Website performance and usage analytics

4.2 Legal Requirements

• Compliance with court orders, legal processes, or regulatory investigations
• Protection of our legal rights and interests
• Prevention of fraud or other illegal activities

4.3 Business Transfers

In the event of a merger, acquisition, or sale of business assets, your information may be transferred as part of the transaction.

5. Data Security

We implement comprehensive security measures to protect your personal information:

5.1 Technical Safeguards

• Encryption: SSL/TLS encryption for data in transit
• Access Controls: Role-based access and multi-factor authentication
• Secure Storage: Encrypted databases and secure cloud infrastructure
• Regular Updates: Security patches and system updates

5.2 Operational Safeguards

• Staff Training: Regular cybersecurity and privacy training
• Access Monitoring: Logging and monitoring of data access
• Incident Response: Established procedures for security incidents
• Regular Audits: Periodic security assessments and compliance reviews

6. Cookies and Tracking Technologies

6.1 Types of Cookies We Use

• Essential Cookies: Required for website functionality and security
• Performance Cookies: Anonymous usage statistics and website improvement
• Functional Cookies: Remember your preferences and settings

6.2 Cookie Management

You can control cookie settings through your browser preferences. Note that disabling certain cookies may affect website functionality. Our cookie notice banner allows you to manage your preferences easily.

6.3 Third-Party Services

• Google Fonts: Typography rendering (privacy-focused implementation)
• Font Awesome: Icon display via CDN
• WhatsApp Business: Direct messaging functionality

7. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this policy:

• Active Clients: Duration of service relationship plus 7 years for business records
• Inquiries: 2 years from last contact unless consent is withdrawn
• Marketing Communications: Until you unsubscribe or withdraw consent
• Legal Requirements: As required by applicable laws and regulations

We regularly review and delete data that is no longer necessary, using secure deletion methods.

8. Your Rights and Choices

Under GDPR and other applicable laws, you have the following rights regarding your personal data:

8.1 Access and Portability

• Right to Access: Request a copy of your personal data
• Right to Portability: Receive your data in a structured, machine-readable format

8.2 Correction and Deletion

• Right to Rectification: Correct inaccurate or incomplete information
• Right to Erasure: Request deletion of your personal data
• Right to Restriction: Limit how we process your data

8.3 Consent and Objection

• Right to Withdraw Consent: Revoke consent for marketing communications
• Right to Object: Object to processing based on legitimate interests

8.4 How to Exercise Your Rights

To exercise any of these rights, please contact us using the information provided in Section 10. We will respond to your request within 30 days.

9. International Data Transfers

As a global company operating across Nigeria, Portugal, and the United States, we may transfer your personal data between these jurisdictions to provide our services effectively.

9.1 Safeguards

• Adequacy Decisions: Transfers to countries with adequate data protection
• Standard Contractual Clauses: EU-approved contract terms for data protection
• Binding Corporate Rules: Internal policies ensuring consistent protection

9.2 Third-Party Services

Some of our service providers may be located outside your country. We ensure these providers meet appropriate data protection standards through contractual agreements and certifications.

10. Contact Information and Data Protection Officer

10.1 General Privacy Inquiries

10.2 Data Protection Officer

10.3 Regulatory Authorities

If you believe we have not addressed your privacy concerns adequately, you have the right to lodge a complaint with:

• Nigeria: Nigeria Data Protection Bureau (NDPB)
• Portugal: Comissão Nacional de Proteção de Dados (CNPD)
• EU/EEA: Your local data protection authority

11. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, services, or legal requirements. When we make significant changes, we will:

• Update the "Last updated" date at the top of this policy
• Notify active clients via email
• Display a notice on our website homepage
• For material changes, seek renewed consent where required

We encourage you to review this Privacy Policy regularly to stay informed about our data practices.

12. Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal grounds:

• Contract Performance: Processing necessary for service delivery
• Legitimate Interest: Business operations, fraud prevention, direct marketing to existing clients
• Consent: Marketing communications to prospects, newsletter subscriptions
• Legal Obligation: Compliance with tax, accounting, and regulatory requirements