Privacy Policy

Last Updated: January 1, 2026

AutVent ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our inventory management platform.

1. Information We Collect

1.1 Information You Provide

  • **Account Information**: Name, email address, phone number, company name
  • **Payment Information**: Billing address, payment method details (processed by secure payment providers)
  • **Business Data**: Inventory data, product information, supplier details, staff information
  • **Communications**: Support tickets, emails, and feedback

1.2 Information Collected Automatically

  • **Usage Data**: Features used, pages visited, actions taken
  • **Device Information**: Browser type, operating system, IP address
  • **Cookies**: Session and preference cookies (see Cookie Policy)

2. How We Use Your Information

We use your information to:

  • Provide and maintain our services
  • Process transactions and send related information
  • Send administrative information and updates
  • Respond to inquiries and provide support
  • Improve our services and develop new features
  • Detect and prevent fraud and security issues
  • Comply with legal obligations

3. Data Sharing and Disclosure

3.1 We Do Not Sell Your Data

We never sell your personal information to third parties.

3.2 Service Providers

We may share data with trusted service providers who assist in operating our platform, including:

  • Cloud hosting providers
  • Payment processors
  • Email service providers
  • Analytics providers

3.3 Legal Requirements

We may disclose information if required by law or to:

  • Comply with legal process
  • Protect our rights and property
  • Prevent fraud or security issues
  • Protect the safety of users

4. Data Security

We implement robust security measures including:

  • Encryption in transit (TLS) and at rest
  • Multi-tenant data isolation
  • Regular security audits
  • Access controls and authentication
  • Regular backups
  • Secure data centers

5. Data Retention

  • **Active Accounts**: Data retained while your account is active
  • **Closed Accounts**: Data deleted within 30 days of account closure
  • **Backups**: Backup data purged within 90 days
  • **Legal Hold**: Data may be retained longer for legal compliance

6. Your Rights

You have the right to:

  • **Access**: Request a copy of your personal data
  • **Correction**: Request correction of inaccurate data
  • **Deletion**: Request deletion of your data
  • **Export**: Export your data in common formats
  • **Objection**: Object to certain processing activities
  • **Withdraw Consent**: Withdraw consent where applicable

To exercise these rights, contact privacy@autvent.com.

7. Multi-Tenant Architecture

AutVent uses a secure multi-tenant architecture where:

  • Each organization has isolated data
  • Data is never shared between tenants
  • Row-level security prevents unauthorized access
  • Dedicated databases for enterprise customers

8. International Data Transfers

Your data may be processed in different locations. We ensure adequate protection through:

  • Standard contractual clauses
  • Appropriate security measures
  • Compliance with applicable data protection laws

9. Children's Privacy

Our services are not intended for individuals under 18. We do not knowingly collect data from children.

10. Third-Party Links

Our platform may contain links to third-party sites. We are not responsible for their privacy practices.

11. Updates to This Policy

We may update this Privacy Policy periodically. We will notify you of significant changes via email or platform notification.

12. Contact Us

For privacy-related questions or concerns:

  • **Email**: hello@autvent.com
  • **Phone**: +234 814 792 9036
  • **Address**: Lagos, Nigeria

13. GDPR Compliance (EU Users)

For EU users, we comply with GDPR requirements including:

  • Lawful basis for processing
  • Data subject rights
  • Data protection by design
  • Breach notification procedures

14. Nigeria Data Protection Regulation (NDPR)

We comply with the Nigeria Data Protection Regulation, including:

  • Registration with NITDA
  • Data protection impact assessments
  • Appointment of a Data Protection Officer
  • Breach notification requirements