Explore Quot Pro

Privacy Policy

Purpose 

To transparently communicate Dplux Technologies LLC’s practices regarding the collection, use, storage, disclosure, and protection of personal and business data for all users of Quot Mini (mobile application) and Quot Enterprise (web application) and associated services. This policy aims to meet the requirements of the Nigerian Data Protection Act (NDPA), the General Data Protection Regulation (GDPR), and other relevant data protection laws.

1.0 Introduction

1.1 Identity of Controller: Dplux Technologies LLC (RC: 6869502) located in Lagos, Nigeria, is the data controller responsible for your personal data.

1.2 Our Commitment: We are committed to protecting your privacy and handling your data transparently and securely. This policy details our practices for Quot Mini and Quot Enterprise.

1.3 Scope: This Privacy Policy applies to all users of Quot Mini (Android/iOS mobile application), Quot Enterprise (web application), our website (www.tryquot.com), and all related services, features, and content (collectively, “the Service”).

1.4 Key Definitions: Define “Personal Data,” “Business Data,” “Processing,” “Controller,” “Processor,” “Data Subject,” “User,” “Quot Mini,” “Quot Enterprise.”

2.0 Information We Collect

2.1 Personal Data You Provide Directly:

  • Account Registration: Name, email address, phone number, business name, business type, industry, physical address, country (Nigeria/other African nations).
  • Payment Information: Billing address, payment method details. Note: Full payment card, bank transfer processing details are typically handled by a secure third-party payment processor; Paystack.
  • Communication Data: Records of correspondence with our customer support (e.g., via WhatsApp, email, in-app chat), feedback, survey responses.
  • For Quot Enterprise (Specific): May include employee names, roles, contact details, payroll data, bank account details for payroll processing (if HR/Payroll module is utilized by the client). This data is processed by Quot as a processor on behalf of the client controller.

2.2 Business Data You Input:

  • Sales records, purchase records, inventory details (product names, quantities, prices), expense entries, customer lists (names, contact info), vendor details, financial reports (P&L, balance sheets), employee records (for Enterprise HR module). This data is primarily Business Data but may contain Personal Data of your customers or employees.

2.3 Data Collected Automatically:

  • Usage Data: Log data (access times, features used, pages viewed, session duration, actions taken within the app like invoice generation, inventory updates), referring/exit pages.
  • Device Information: Device type, operating system, unique device identifiers, mobile network information, browser type, language settings.
  • Technical Data: IP address, timestamps, crash reports.
  • Location Data: If location services are enabled for specific features (e.g., POS, delivery tracking), approximate or precise location data may be collected with user consent. This may be optional depending on the registered module by the client.
  • Cookies & Tracking Technologies: Information collected via cookies, web beacons, and similar technologies (e.g., for authentication, preference saving, analytics, marketing).

3.0 Legal Basis for Processing (GDPR & NDPA Compliance)

We may collect and process your data for the following reasons;

  • Contractual Necessity: For providing the Service (e.g., account management, core features, payment processing).
  • Legitimate Interests: For improving the Service, internal analytics, fraud prevention, direct marketing (with opt-out), customer support.
  • Consent: For specific purposes like marketing communications (where required), optional location services, or processing sensitive personal data.
  • Legal Obligation: For tax compliance, regulatory reporting, responding to lawful requests.

4.0 How We Use Your Information

  • To Provide and Maintain the Service: Enable core functionalities (sales, inventory, accounting, CRM, HR/Payroll for Enterprise), process transactions, manage subscriptions, provide customer support.
  • To Improve and Personalize: Analyze usage patterns to enhance features, user experience (UI/UX), and performance (e.g., optimizing for low-bandwidth environments). Personalize content and recommendations.
  • For Communication: Send service-related notifications, updates, security alerts, and administrative messages. Respond to inquiries and feedback.
  • For Marketing and Promotion: Send promotional materials about Quot products and services, special offers (with opt-out mechanism), for personalized retention campaigns and upsell/cross-sell recommendations.
  • For Security and Fraud Prevention: Detect and prevent fraudulent activities, unauthorized access, and other malicious acts.
  • For Analytics and Research: Perform data analysis to understand user behavior, market trends, and product-market fit, for churn prediction, sentiment analysis of support interactions.
  • For Legal Compliance: Fulfill tax obligations, respond to legal processes, enforce our Terms and Conditions.

5.0 How We Share Your Information

5.1 With Third-Party Service Providers (Processors):

  • Payment Processors: Paystack for billing and transaction processing.
  • Cloud Hosting Providers: AWS/VPS for infrastructure, data storage, and scalability.
  • Analytics Providers: For understanding user behavior (e.g., Google Analytics, Firebase Analytics).
  • Customer Support Platforms: For managing inquiries (e.g., WhatsApp Business API, in-app chat providers).
  • Email & SMS Providers: For communications.
  • Note: We ensure these providers are contractually bound to protect your data and comply with relevant data protection laws.

5.2 With Integrated Partners (as applicable):

  • Fintechs (Moniepoint, Opay, Kuda) for payment integrations or business account linking.
  • E-commerce platforms.

Note that such sharing occurs only with the user’s explicit consent or initiation of integration.

5.3 For Legal Reasons:

  • To comply with a legal obligation, court order, or governmental request (e.g., FIRS, LIRS, law enforcement).
  • To protect the rights, property, or safety of Dplux Technologies LLC, our users, or the public.

5.4 Business Transfers: 

In connection with a merger, acquisition, asset sale, or other corporate restructuring involving Dplux Technologies LLC.

5.5 With Your Consent: 

For any other purpose not outlined in this policy, with your explicit consent.

5.6 Aggregated or Anonymized Data: 

We may share aggregated or de-identified data that cannot reasonably be used to identify you with third parties for research, marketing, analytics, or other purposes.

6.0 Data Security

  • Measures implemented to protect your data from unauthorized access, alteration, disclosure, or destruction.
  • Technical measures: Encryption (data in transit and at rest), access controls (RBAC for Quot Enterprise), firewalls, regular security audits, secure coding practices.
  • Organizational measures: Employee training, data access policies, incident response plan.
  • Compliance with NDPA principles of data security.

7.0 Data Retention

  • We retain your personal and business data for as long as your account is active or as needed to provide you with the Service.
  • We may retain data for a longer period if required by law (e.g., tax records, financial transactions), for dispute resolution, or to enforce our agreements.
  • Upon account termination, data will be deleted or anonymized in accordance with our data retention policy, unless legal obligations require longer retention.

8.0 Your Data Rights

In accordance with NDPA, GDPR, and other applicable laws, you have the following rights regarding your personal data:

  • Right to Access: Request a copy of your personal data.
  • Right to Rectification: Request correction of inaccurate or incomplete data.
  • Right to Erasure (“Right to be Forgotten”): Request deletion of your data under certain conditions.
  • Right to Restriction of Processing: Request limitation on how your data is processed.
  • Right to Data Portability: Receive your data in a structured, commonly used, machine-readable format.
  • Right to Object: Object to processing based on legitimate interests or for direct marketing.
  • Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent.
  • Right to Lodge a Complaint: Lodge a complaint with the relevant data protection authority (e.g., National Data Protection Commission in Nigeria).

8.1 How to Exercise Your Rights: 

Kindly contact us through our available channels (in-app settings, contacting support at support@tryquot.com

9.0 Changes to This Privacy Policy

  • We may update this policy periodically.
  • Users will be notified of significant changes via email, in-app notification, or prominent notice on our website.
  • The “Effective Date” at the top of the policy will indicate the latest revision.

10.0 Contact Us

  • For any questions or concerns regarding this Privacy Policy or your data rights, please contact us at:

Email: privacy@dpluxtech.com