TraveliQ

Legal · Version 2026-04-v1

Data Processing Agreement

This agreement governs how TraveliQ ("we", "us") collects, processes, stores, and protects your personal data and visa documents in compliance with the EU General Data Protection Regulation (GDPR), the Nigeria Data Protection Regulation (NDPR), the Nigeria Data Protection Act 2023, and other applicable data protection laws.

1. Parties & roles

You ("Data Subject") provide personal data to TraveliQ ("Data Controller"). Where we use sub-processors (cloud hosting, AI review providers), they act as Data Processors strictly under our instructions.

2. Data we collect

  • Account data: email, password (hashed).
  • Profile: nationality, residence, trip details.
  • Visa documents you upload (passport, bank statements, invitation letters, etc.).
  • Lead contact details when you request our services.

3. Purpose & lawful basis

We process your data solely to (a) prepare and review your visa application, (b) provide AI-assisted document review when you opt in, and (c) communicate with you about your case. The lawful basis is your explicit consent (GDPR Art. 6(1)(a) / NDPR §2.2(a)) and, where applicable, performance of a contract (GDPR Art. 6(1)(b)).

4. Storage & security

Documents are stored in a private, encrypted bucket. Row-level security ensures cross-user access is impossible at the database level. Access by authorized reviewers is limited and auditable.

5. Sharing & sub-processors

We do not sell, rent, or share your data for marketing or AI model training. We use vetted sub-processors only for hosting and (when you opt in) AI document review. They are contractually bound not to retain or reuse your files.

6. Retention

We retain your data while your application is active. Upon deletion request, we remove your data from active systems within 30 days, except where retention is required by law.

7. Your rights

Under GDPR & NDPR you have the right to access, rectify, erase, restrict, port, and object to processing of your personal data, and to withdraw consent at any time without affecting the lawfulness of prior processing. Contact privacy@traveliq.io to exercise these rights.

8. International transfers

Where data is processed outside your country of residence, we rely on adequacy decisions or Standard Contractual Clauses to safeguard your information.

9. Complaints

You may lodge a complaint with your supervisory authority — e.g. your national Data Protection Authority (EU) or the Nigeria Data Protection Commission (NDPC).

10. Acceptance

By signing during registration (typing your full legal name and ticking the required boxes), you confirm you have read, understood, and agree to this Agreement, version 2026-04-v1.

A signed copy is stored on your account

We record your signature, the agreement version, and timestamp — you can request a copy any time.

Privacy policy