Welcome to Moniex. We are committed to protecting your privacy and handling your personal data responsibly. This Privacy Policy explains how we collect, use, share, and safeguard your information when you use the Moniex mobile application ("App") — a service that enables you to receive cryptocurrency, have it automatically converted to Nigerian Naira (NGN), fund your Naira balance, send crypto, and withdraw funds to your Nigerian bank account.
By using the App, you agree to the collection and use of your information as described in this policy. If you do not agree, please discontinue use of the App.
Data We Collect
We collect different categories of data depending on how you interact with the App:
| Category | Examples | When Collected |
|---|---|---|
| Identity Data | Full name, date of birth, BVN | During KYC / account registration |
| Contact Data | Email address, phone number | Account registration |
| Financial Data | Bank account number, bank name, transaction history, Naira balance, crypto amounts | During transactions & withdrawals |
| Device & Usage Data | IP address, device type, OS version, app version, session timestamps | Automatically on App usage |
| Biometric Data | Selfie / facial image for identity verification | KYC verification (where required) |
| Communication Data | Support messages, feedback, and emails you send us | When you contact support |
How We Use Your Data
We use your personal data for the following purposes:
- Account creation & management — to register your account, verify your identity, and maintain your profile.
- Transaction processing — to execute crypto-to-Naira conversions, send crypto on your behalf, process Naira funding, and facilitate bank withdrawals.
- Regulatory compliance — to comply with KYC, AML, and other obligations under Nigerian law, including CBN directives.
- Fraud detection & security — to detect, investigate, and prevent fraudulent transactions and unauthorised account access.
- Customer support — to respond to your enquiries, resolve disputes, and provide assistance.
- App improvement — to analyse usage patterns, fix bugs, and develop new features that improve your experience.
- Notifications & communications — to send you transaction alerts, security notifications, and important account updates.
- Marketing (with consent) — to send you promotional content about Moniex features or offers, where you have opted in.
Legal Basis for Processing
We process your personal data under the following legal grounds in accordance with the Nigeria Data Protection Act (NDPA) 2023:
- Contractual necessity — processing required to provide the services you signed up for (e.g. executing transactions).
- Legal obligation — processing required by law, including AML checks, KYC verification, and CBN reporting obligations.
- Legitimate interests — processing for fraud prevention, security monitoring, and improving the App, provided such interests are not overridden by your rights.
- Consent — for optional processing such as marketing communications. You may withdraw consent at any time.
Sharing Your Data
We do not sell your personal data. We may share it only in the following limited circumstances:
- Payment & banking partners — Nigerian banks and payment processors required to facilitate your withdrawals and Naira funding.
- KYC & identity verification providers — third-party services that assist with identity document verification and fraud screening.
- Blockchain infrastructure — transaction data (wallet addresses and amounts) is inherently public on the blockchain when you send or receive crypto.
- Legal & regulatory authorities — the CBN, EFCC, NFIU, Nigerian Police, or courts when required by law or valid legal process.
- Business transfers — in the event of a merger, acquisition, or sale of assets, your data may be transferred to the successor entity, subject to the same privacy commitments.
- With your consent — any other sharing will only occur with your explicit prior consent.
All third-party service providers are bound by data processing agreements requiring them to protect your information and use it only for the purposes we specify.
Data Retention
We retain your personal data for as long as your account is active or as necessary to provide our services. Specific retention periods include:
- Transaction records — retained for a minimum of 5 years as required by Nigerian AML regulations.
- KYC / identity documents — retained for a minimum of 5 years after account closure.
- Account data — retained for the life of your account, plus 2 years following closure.
- Support communications — retained for 2 years from the date of the last interaction.
When data is no longer required, we securely delete or anonymise it in accordance with applicable law.
How We Protect Your Data
We implement comprehensive technical and organisational measures to protect your personal information, including:
- End-to-end encryption for all data in transit (TLS 1.2+) and encryption at rest for sensitive data.
- Multi-factor authentication (MFA) for account access.
- Regular security audits and penetration testing of our platform.
- Role-based access controls ensuring only authorised personnel can access your data.
- Automated fraud detection and real-time transaction monitoring.
- Secure data centres with physical access restrictions.
If you suspect your account has been compromised, contact us immediately at support@getmoniex.com.
Your Data Protection Rights
Under the Nigeria Data Protection Act (NDPA) 2023, you have the following rights regarding your personal data:
Right to Access
Request a copy of the personal data we hold about you.
Right to Correction
Request that inaccurate or incomplete data be corrected.
Right to Deletion
Request deletion of your data, subject to legal retention obligations.
Right to Restriction
Request that we limit how we process your data in certain circumstances.
Right to Object
Object to processing based on legitimate interests or for direct marketing.
Right to Portability
Receive your data in a structured, machine-readable format for transfer elsewhere.
To exercise any of these rights, email us at support@getmoniex.com with the subject line "Data Rights Request." We will respond within 30 days. Some requests may be subject to identity verification before we can action them.
Cookies & App Tracking
The Moniex mobile app does not use browser cookies. However, we may use the following within the App:
- Session tokens — to keep you securely logged in during your session.
- Analytics SDKs — to understand how users navigate the App and identify areas for improvement. Analytics data is aggregated and anonymised where possible.
- Push notification tokens — to deliver transaction alerts and security notifications to your device.
You can manage notification preferences within the App's settings at any time.
Minors
Moniex is not intended for use by persons under the age of 18. We do not knowingly collect personal data from minors. If we become aware that we have collected data from a person under 18, we will take immediate steps to delete that information and close the associated account. If you believe a minor has created an account, please contact us at support@getmoniex.com.
Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or business operations. When we make material changes, we will notify you via in-app notification or email at least 14 days before the changes take effect.
We encourage you to review this policy periodically. The "Effective Date" at the top of this page indicates when this version was last updated. Your continued use of the App after any changes take effect constitutes your acceptance of the updated policy.
Contact & Data Complaints
If you have any questions, concerns, or complaints about how we handle your personal data, please reach out to our Data Protection team: