NDPA Compliance

How we comply with the Nigeria Data Protection Act and protect your rights.

Last updated · 8 July 2026

1. Our commitment

4XITE is committed to protecting your personal data in line with the Nigeria Data Protection Act (NDPA) 2023, and to GDPR-aligned standards for our international and diaspora users. This page summarises how we comply.

2. Lawful basis for processing

We process your data on the basis of your explicit consent (given at signup and when you connect a bank) and to perform our contract with you — providing the financial-intelligence service you asked for. You can withdraw consent at any time.

3. Your rights as a data subject

You have the right to access your data, correct inaccurate data, request deletion, restrict or object to processing, receive your data in a portable format, and withdraw consent. To exercise any right, contact privacy@4xite.com and we will respond within the timeframes required by law.

4. Data security

We apply encryption in transit and at rest, database-level access controls scoped to each user, secure storage of bank tokens, and removal of personal information from monitoring systems. We never store bank credentials.

5. Retention and deletion

We keep personal data only as long as needed to provide the service or as required by law. You can request full deletion of your account and data at any time.

6. Cross-border transfers

Where data is processed outside Nigeria by our service providers, we ensure appropriate safeguards consistent with the NDPA and applicable data-protection law.

7. Complaints and contact

For any data-protection question or concern, contact our data team at privacy@4xite.com. You also have the right to lodge a complaint with the Nigeria Data Protection Commission (NDPC).