GioBiz

Data Retention Policy

Last updated: July 12, 2026 · GioBiz platform
What this policy covers This Data Retention Policy explains what data GioBiz keeps, why, how long, and how it is deleted. It applies to all GioBiz users — business owners, staff, managers, riders, logistics operators (LO/DLO), and the customers who order through a GioBiz store link. It works alongside our Privacy Policy (which explains what we collect and why).

GioBiz is a software service operated by Henmack Integrated Technologies Ltd (RC 9537539). We keep data only for as long as we need it to run the service, meet legal and financial obligations, and resolve disputes. When you close your account we delete your data from our active systems, except records we are legally required to keep (chiefly financial/tax records). We do not keep your personal data longer than necessary.

1. What we collect

  • Account data: name, email, phone, business name, role, PIN/password hashes (never plaintext).
  • Business data: products, orders, customers, staff, shipments, activity logs, payout/bank details (account number stored as text; never card data).
  • Verification data (paid plans only): NIN / Driver's Licence / CAC details processed via our verification provider (Dojah). We store the verification result + reference, not raw ID images, where avoidable.
  • Technical data: device/session records, IP-derived region, request logs, error reports (Sentry).

2. How long we keep data

We keep each type of data only for as long as it is needed for the purpose below. Where the law sets a minimum keeping period (financial records), we keep it for that period. We do not run fixed countdown timers that auto-delete on a set day; instead we remove data when it is no longer needed or when you close your account.

Data Kept for Why
Active account + business dataWhile your account is active; removed on account deletionTo run the service
Orders, invoices, financial recordsWhile your account is active, and after closure for as long as Nigerian tax & accounting law requires (up to 7 years)Tax / accounting / dispute obligations (Nigerian law)
Activity & audit logsAs long as needed for security and dispute resolutionSecurity, fraud, dispute resolution
Session / device recordsUntil you sign out or revoke the deviceSecurity
Verification resultsWhile your account is activeRe-verification, compliance
Customer (no-account) order dataWhile the ordering business's account is activeOrder history, tracking, disputes
BackupsShort-term copies, rotated regularlyDisaster recovery
Marketing/email opt-insUntil withdrawnConsent-based

3. Deletion

  • Account closure: when you request deletion (in-app under Settings → Delete Account, via Account Deletion, or by emailing support@giobiz.com), we permanently delete your business profile, products, orders, staff records, and personal data from our active systems — except records we are legally required to keep (financial/tax), which are kept until that period expires, then deleted.
  • Backups: residual copies in our short-term disaster-recovery backups age out as those backups are rotated.

4. Your rights (NDPA 2023 / data subject rights)

You may request access, correction, deletion, or export of your personal data, and may withdraw consent, by emailing support@giobiz.com. We respond within the period required by the Nigeria Data Protection Act (NDPA) 2023, as administered by the Nigeria Data Protection Commission (NDPC).

5. Security

Data is encrypted in transit (HTTPS) and access-controlled (per-tenant isolation + row-level security). Secrets are never stored in client code. We store payout/bank account numbers as text (never card data) and restrict access to them.

6. Changes

We may update this policy; material changes will be notified in-app or by email. Continued use after the effective date constitutes acceptance.

7. Contact

Questions about data retention or a deletion request:

  • Email: support@giobiz.com
  • Operator: Henmack Integrated Technologies Ltd (RC 9537539), Lagos, Nigeria