Privacy Policy

Privacy Policy

Last Updated: January 23, 2026

 

Introduction

This Privacy Policy describes how [BANK_NAME] (“we,” “us,” or “our”) collects, uses, discloses, and protects your personal information when you use our mobile banking application (the “App”). By using the App, you consent to the practices described in this Privacy Policy.

We are committed to protecting your privacy and ensuring the security of your personal information in compliance with applicable data protection laws, including the Nigeria Data Protection Regulation (NDPR) and other relevant regulatory requirements.

Information We Collect

1. Personal Information

When you register for and use our App, we may collect the following personal information:

 Identity Information: Full name, date of birth, gender, nationality

 Contact Information: Phone number, email address, residential address

 Government-Issued Identification: National Identification Number (NIN), Bank Verification Number (BVN), passport number, driver’s license, or other government-issued ID documents

  Financial Information: Account details, transaction history, account balances

 Biometric Data: Facial recognition data and fingerprint data (for identity verification during KYC and authentication)

  Photographs: Selfie images and ID document photos for identity verification

2. Device Information

We automatically collect certain device information when you use the App:

 Device Identifiers: Unique device ID generated for your device  Device Details: Device name, model, brand, and manufacturer

 Operating System Information: OS name and version (iOS/Android)  Application Information: App version and build number

3. Location Information

With your consent, we collect:

 Geographic Location: Latitude and longitude coordinates (collected once during device registration for security verification)

 Location Accuracy: Precision level of location data collected

4. Network Information

We collect network-related data including:

 IP Address: Your device’s Internet Protocol address  Network Type: WiFi or cellular network status

5. Contact Information (Optional)

 

With your explicit permission, we may access:

 Contacts: Phone numbers from your contact list (only when you choose to select a contact for airtime or data purchase)

6. Usage and Analytics Data

We collect information about how you interact with the App:

  Transaction Data: Details of financial transactions you perform

  App Usage Patterns: Features used, screens visited, and interaction timestamps

  Error and Diagnostic Logs: Technical information to help us identify and fix issues

How We Use Your Information

We use the collected information for the following purposes:

 

Security and Fraud Prevention

 Verifying your identity during registration and login  Detecting and preventing fraudulent activities

 Securing your account through biometric authentication  Monitoring for suspicious activities

Service Delivery

 Processing your financial transactions  Providing customer support

 Sending transaction notifications and alerts

 Enabling push notifications for important account updates

Regulatory Compliance

 Complying with Know Your Customer (KYC) requirements  Meeting Anti-Money Laundering (AML) obligations

 Fulfilling reporting requirements to regulatory authorities  Maintaining required records for audit purposes

Service Improvement

 Analyzing app performance and user experience  Troubleshooting technical issues

 Developing new features and services  Optimizing app functionality

Communication

 Sending service-related notifications  Providing security alerts

 Delivering promotional communications (with your consent)

How We Share Your Information

We may share your information with the following parties:

 

Regulatory Bodies and Government Agencies

 Central Bank of Nigeria (CBN)

 Nigeria Data Protection Bureau (NDPB)  Financial Intelligence Unit (NFIU)

 Other regulatory authorities as required by law

Identity Verification Partners

 QoreId: For KYC identity verification services (BVN validation, NIN verification, facial recognition)

Service Providers

 Cloud hosting providers for data storage

 Push notification services (OneSignal) for delivering notifications  Payment processing partners

 Analytics providers

Legal Requirements

We may disclose your information when required to:

 Comply with legal obligations

 Respond to lawful requests from law enforcement  Protect our rights, privacy, safety, or property

 Prevent or investigate possible wrongdoing

Data Security

We implement robust security measures to protect your personal information:

 

Technical Safeguards

 Encryption: All data is encrypted in transit using TLS/SSL protocols and at rest using industry- standard encryption

  Secure Storage: Sensitive data is stored in secure, encrypted storage on your device (Expo

SecureStore)

  Biometric Authentication: Optional fingerprint and Face ID authentication for enhanced security  Device Registration: Unique device identification to prevent unauthorized access

Organizational Measures

 Access controls limiting who can view your data  Regular security audits and assessments

 Staff training on data protection  Incident response procedures

Data Retention

We retain your personal information for as long as:

Your account remains active Necessary to provide our services

Required by applicable laws and regulations (minimum 6 years for financial records as required by CBN guidelines)

 

 Needed for legitimate business purposes

After these periods, your data will be securely deleted or anonymized.

Your Rights

Under applicable data protection laws, you have the following rights:

 

Right to Access

You can request a copy of the personal information we hold about you.

 

Right to Rectification

You can request correction of inaccurate or incomplete personal information.

 

Right to Deletion

You can request deletion of your personal information, subject to legal retention requirements. To exercise these rights, please contact us using the information provided below.

Cookies and Tracking Technologies

The App may use:

 Analytics Tools: To understand app usage patterns

 Session Tokens: To maintain your authenticated session

  Local Storage: To store preferences and improve performance

Third–Party Links

The App may contain links to third-party websites or services. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies.

Children‘s Privacy

Our App is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that a child has provided us with personal information, we will take steps to delete such information.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

 Posting the updated policy in the App  Sending you a notification

  Displaying a prominent notice within the App

Your continued use of the App after such modifications constitutes your acceptance of the updated Privacy Policy.

 

Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Triple A Microfinance Bank Limited

  Email: support@tripleamfb.com

 Phone: 08073991230 – 51, 08090315702

 Address: Strong Tower Plaza, Plot 826, Solomon Lar Way, Utako District, Abuja

 Data Protection Officer: DPO@tripleamfb.com

Consent

By downloading, installing, and using this App, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree with any part of this Privacy Policy, please do not use the App.

Regulatory Information

This App and its services are regulated by:

  Central Bank of Nigeria (CBN)

 Nigeria Data Protection Commission (NDPC)

License Number: 869754

This Privacy Policy is effective as of January 23, 2026.