Privacy Policy

1. Introduction

DOAM ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform.

2. Information We Collect

2.1 Information You Provide

• Account Information: Email address, password, phone number
• Business Information: Business name, category, description, location
• Payment Information: Bank account details (for receiving payments)
• Product Information: Product names, descriptions, prices, images

2.2 Information Collected Automatically

• Device information (browser type, operating system, user agent)
• Usage data (pages visited, features used)
• IP address and approximate geographic location
• Analytics data (storefront views, product views)
• Timestamps of account activities and transactions

2.3 Security and Audit Information

To protect our platform and users, we maintain detailed audit logs of certain activities including:

• Account creation, login attempts (successful and failed), and password changes
• Order placement and payment proof submissions
• Changes to sensitive information (bank accounts, business details)
• IP addresses, device information, and timestamps for all logged activities

This security data is retained for up to 7 years as required for fraud prevention, anti-money laundering (AML) compliance, and potential law enforcement cooperation.

3. How We Use Your Information

We use the information we collect to:

• Provide and maintain our services
• Process your transactions and subscriptions
• Generate your business assets (logos, bios)
• Display your public storefront to customers
• Send you important updates and notifications
• Improve our platform and develop new features
• Prevent fraud and ensure security

4. Information Sharing

4.1 Public Information

The following information is publicly visible on your storefront:

• Business name and description
• Products and prices
• Bank account details (for payment)
• WhatsApp number (if provided)
• Verification status

4.2 Third-Party Services

We share information with:

• Supabase: Database and authentication
• Paystack: Payment processing
• OpenAI: AI-generated content (logos, bios)
• Resend: Email delivery

4.3 Law Enforcement and Legal Compliance

We may disclose your information, including IP addresses and audit logs, to:

• Law enforcement agencies investigating fraud, money laundering, or other crimes
• Regulatory authorities as required by applicable laws
• Courts in response to valid legal process (subpoenas, court orders)
• Third parties when necessary to protect our rights, safety, or property

Where legally permitted, we will notify you before disclosing your information in response to legal process.

4.4 We Do NOT

• Sell your personal information
• Share your data for advertising purposes
• Access or store your customers' payment information

5. Data Security

We implement appropriate security measures to protect your information, including encryption, secure servers, and access controls. However, no method of transmission over the Internet is 100% secure.

6. Your Rights

You have the right to:

• Access your personal information
• Correct inaccurate information
• Delete your account and associated data
• Export your data
• Opt out of marketing communications

7. Data Retention

We retain your information for as long as your account is active. If you cancel your subscription or your subscription expires without renewal:

• Your storefront remains visible for a 3-day grace period
• After 3 days, your storefront is hidden from public view
• Your data is preserved for 90 days in case you wish to reactivate
• After 90 days, your data may be permanently deleted

You can reactivate your subscription at any time within the 90-day retention period to restore full access to your store.

7.1 Security Log Retention

Security and audit logs (including IP addresses, login records, and transaction logs) are retained for up to 7 years, regardless of account status. This extended retention is required for:

• Fraud prevention and investigation
• Anti-money laundering (AML) compliance
• Cooperation with law enforcement investigations
• Legal and regulatory requirements

8. Cookies

We use essential cookies for authentication and session management. We also use analytics cookies to understand how our platform is used. You can control cookies through your browser settings.

9. Children's Privacy

DOAM is not intended for users under 18 years of age. We do not knowingly collect information from children.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via email or through the platform.

11. Contact Us

If you have questions about this Privacy Policy, please contact us at:

Email: privacy@doam.online