Privacy Policy

1. Products Covered by This Policy

This policy covers all Toledah products and services:

Zaena — Business management platform for sales, inventory, expenses, payroll, tax, and trust score. Operates at zaena.toledah.com and via mobile and desktop applications.

Afiyar — Online marketplace and free store platform for sellers and buyers. Operates at afiyar.com.

MoGenn — AI-powered motion graphics generator, accessible within Afiyar at afiyar.com/mogenn.

The Terminal — Editorial publication covering business and economics. Operates at toledah.com/terminal.

2. Information We Collect

Account & Contact Data (all products) — When you register for any Toledah product, we collect your name, email address, phone number, and where relevant, your business name and sector. We never store payment card information; payments are handled by PCI-DSS-compliant third-party processors.

Zaena — Business & Financial Data — Any business data you record in Zaena (sales records, expenses, inventory, employee data, customer contacts, financial transactions, withdrawal records, tax records) is your own. You retain full ownership and control. We process this data solely to provide the Zaena service and to calculate your Zaena Trust Score. This data is private and is never shared with third parties without your explicit instruction.

Zaena Trust Score Data — Your Trust Score is calculated from your own transaction history within Zaena. Score history, tier status, and generated reports are stored on your behalf. When you choose to share a Trust Score report with a supplier, lender, or partner, the report data is made accessible to that specific recipient via a unique reference link. You control all report sharing.

Afiyar — Seller Data — When you create a store on Afiyar, we store your store name, handle, product listings, pricing, images, contact details (phone, WhatsApp number), location, and store customisation settings. This data is intentionally public — it forms your store page visible at afiyar.com/s/yourhandle. You control what you list and can delete your store at any time.

Afiyar — Buyer & Visitor Data — When someone visits an Afiyar store page, we record anonymous store visit counts, product view counts, and interaction events (such as WhatsApp button taps and link copies) for the benefit of the seller's analytics dashboard. We do not collect personally identifiable information from store visitors unless they create an Afiyar account.

MoGenn — Content Data — When you use MoGenn to generate graphics or videos, we store your prompts, generated output files, and usage history to provide the service and display your generation history. Generated content belongs to you.

The Terminal — We collect your email address if you subscribe to Terminal newsletters. Reading Terminal articles does not require an account.

Browser & Technical Data (all products) — We record IP addresses, browser type, device type, and general geolocation for security purposes and to optimise the experience across devices and network conditions.

3. How We Use Your Information

Service Provision — We use your data to operate the products you have signed up for, manage your account, process payments, and provide technical support.

Trust Score Calculation (Zaena) — Your Zaena transaction data is processed by our scoring algorithm to generate your Trust Score and reports. This processing happens on your behalf and the results are yours to use and share as you choose.

Seller Analytics (Afiyar) — Aggregated, anonymous visitor data is presented to sellers through their Afiyar dashboard to help them understand how their store is performing. This data is never used to profile individual visitors.

Product Improvement — We may analyse aggregated, anonymised usage patterns across our products to improve features and performance.

Marketing — We may use your contact information to send updates about Toledah products and features. You may opt out at any time through any communication we send or by contacting support@toledah.com.

Security & Legal Compliance — We analyse server logs to detect and prevent fraud, unauthorised access, and abuse, and to comply with applicable legal obligations.

4. Public Data on Afiyar

Afiyar is a public marketplace. Store pages, product listings, store names, locations, and contact details you publish on Afiyar are publicly accessible on the internet. Search engines may index your store page. If you wish to remove your store from public view, you can unpublish or delete it at any time from your Afiyar dashboard. Removing your store removes it from Afiyar but does not guarantee immediate removal from search engine caches, which are controlled by third parties.

5. Accessing, Updating, or Deleting Your Data

You can modify or delete your data directly within each product's dashboard. You may export your Zaena business data at any time. You may delete your Afiyar store and all associated listings at any time. You may request permanent deletion of your Toledah account by contacting support@toledah.com. We will delete all data except what we are legally required to retain.

6. Data Retention

Account data is retained for as long as your account is active. If you cancel your subscription or close your account, data is retained in a deactivated state for a 21-day grace period before permanent deletion. Data may persist in encrypted backups for up to 12 months after deletion from live systems. Trust Score history used for report verification purposes may be retained for up to 36 months to support the integrity of previously issued reports.

7. Third-Party Service Providers

Toledah relies on the following trusted infrastructure partners:

Supabase — Primary database and backend infrastructure for Zaena and Afiyar. Data is hosted on Supabase's infrastructure in accordance with their data protection commitments.

Convex — Backend services for The Terminal and select Toledah web properties.

Cloudflare — Content delivery, DDoS protection, and edge hosting for web properties.

Paystack / Paddle — Payment processing. No card data is stored by Toledah.

Google (Gemini API) — AI model powering MoGenn content generation. Prompts and generation requests may be processed by Google's API infrastructure in accordance with Google's data use policies for API customers.

Google Analytics — Anonymous web analytics on Toledah marketing pages.

We ensure all providers are bound by appropriate data protection obligations.

8. Security

We implement rigorous technical and organisational measures to protect your data, including encryption at rest and in transit, row-level security controls, access management, and regular security reviews. Full details are available in our Security Practices document.

9. Children's Privacy

Toledah products are intended for business use by adults. We do not knowingly collect personal data from individuals under the age of 18. If we become aware that data has been collected from a minor, we will delete it promptly.

10. Changes to This Policy

We may update this policy as our products evolve. Material changes will be communicated to registered users via email at least 14 days before taking effect. The current version is always available at toledah.com/legal/privacy.

11. Contact

For privacy questions or data requests:
support@toledah.com
Toledah Technologies Limited
2 Irowa Street, Benin City, Nigeria.