Data Protection
Last updated: September 23, 2025
Our Commitment to Data Protection
At iExplore (IXPL Limited), we are committed to protecting your personal data in compliance with Nigeria's Data Protection Regulation (NDPR) and international best practices. This page details our data protection measures and your rights.
1. Legal Framework
Applicable Laws
- Nigeria Data Protection Regulation (NDPR) 2019
- Nigerian Constitution (Right to Privacy)
- Nigerian Communications Act 2003
- Cybercrimes (Prohibition, Prevention, etc.) Act 2015
- International best practices and standards
2. Data Protection Principles
Lawfulness & Fairness
We process your data only with your consent or other legal basis, in a fair and transparent manner.
Purpose Limitation
Your data is collected for specific, explicit, and legitimate purposes only.
Data Minimization
We collect only the minimum data necessary for our stated purposes.
Accuracy
We maintain accurate and up-to-date personal data records.
3. Technical Security Measures
Encryption
- AES-256 encryption for data at rest
- TLS 1.3 for data in transit
- End-to-end encryption for sensitive communications
- Encrypted database backups
Access Controls
- Multi-factor authentication for all staff
- Role-based access controls
- Regular access reviews and audits
- Secure API authentication
Infrastructure Security
- Secure cloud hosting with certified providers
- Regular security updates and patches
- Intrusion detection and prevention systems
- Automated security monitoring
4. Your Data Rights Under NDPR
Right of Access
You can request access to your personal data and information about how it's processed.
Right to Rectification
You can request correction of inaccurate or incomplete personal data.
Right to Erasure
You can request deletion of your personal data under certain circumstances.
For complete account deletion instructions, visit our Account Deletion page.
Right to Data Portability
You can request your data in a portable format to transfer to another service.
5. Data Breach Response
Our Response Plan
- Detection: Continuous monitoring for security incidents
- Assessment: Immediate evaluation of breach scope and impact
- Containment: Quick action to limit further exposure
- Notification: NITDA notification within 72 hours
- User Communication: Affected users notified within 72 hours
- Remediation: Implementation of corrective measures
6. Data Transfers
International Transfers
When we transfer data outside Nigeria, we ensure adequate protection through:
- Adequacy decisions by NITDA
- Standard contractual clauses
- Binding corporate rules
- Explicit user consent
7. Staff Training and Awareness
Our Commitment
- Mandatory data protection training for all employees
- Regular updates on privacy laws and best practices
- Clear data handling procedures and guidelines
- Regular audits and compliance assessments
- Incident response training and drills
8. Contact Our Data Protection Officer
Data Protection Officer
IXPL Limited
Email: dpo@iexploreonline.com
Phone: +234 (0) 123 456 7890
Address: [Company Address], Nigeria
9. Regulatory Authority
Nigeria Information Technology Development Agency (NITDA)
If you have concerns about our data processing, you can file a complaint with NITDA, the supervisory authority for data protection in Nigeria.
Data Protection by Design
Privacy and data protection are built into every aspect of iExplore, from initial design to ongoing operations. Your trust is our foundation.