Legal
Privacy Policy
Toledah and its affiliates offer a suite of business management tools and advanced data analytics services designed to help you scale your business. This policy explains what information is collected, why it is collected, and how we use it.
1. Information We Collect
Account & Contact Data — When you register, we collect your name, company name, email address, phone number, and business sector. We never store credit card information; we use PCI-DSS-compliant third-party processors.
Customer Databases (ERP Data) — Any information you upload (employee lists, inventory, financial records, customer contacts) is your own. You retain full ownership and control. We only process this data on your behalf.
Browser & Geolocation Data — We record your IP address, browser type, and geolocation to customize your experience and for security purposes.
Interaction Recording — We may record session interactions during trial periods to improve our UI, provided you have opted in.
2. How We Use This Information
Service Provision — We use contact data to manage your account, handle billing, and provide technical support.
Business Analytics — Our analytics product processes your business data to generate reports and performance insights, strictly to provide the service you subscribed to.
Marketing — We may use your contact info to send updates about Toledah. You may opt out at any time.
Security & Legal — We analyze server logs to prevent fraud, unauthorized access, and to comply with legal obligations.
3. Accessing, Updating, or Deleting Your Data
You can modify or delete your data directly through the Toledah control panel and export a full backup at any time. You may request permanent deletion of your account by contacting our Helpdesk. We will delete all data except what we are legally required to keep.
4. Data Retention
Account data is retained as long as your account is active or for the duration of legal retention periods. If you cancel your subscription, data is kept in a deactivated state for a 3-week grace period before being permanently destroyed. For safety, data may persist in encrypted backups for up to 12 months after deletion from live systems.
5. Third-Party Service Providers
Toledah relies on trusted partners including Convex (database and backend hosting), cloud hosting providers (infrastructure), Paystack/Monnify (payment processing — no credit card info shared), and Google Analytics (anonymous web analytics). We ensure these providers comply with data protection legislation.
6. Security
We implement rigorous technical and organizational measures to protect your data, including encryption at rest and in transit, access controls, and regular security audits.
7. Contact
For privacy questions: support@toledah.com
Address: 2 Irowa Street, Benin City, Nigeria.