NyumbaUG

Privacy policy

Last updated: 2026-05-09

What we collect

  • Account details: name, email, phone, password (hashed).
  • Listing content you publish: photos, descriptions, prices, location.
  • Enquiry and message content sent through NyumbaUG.
  • Device and usage data: IP address, browser, referring page.
  • Identity-verification documents (when you opt into the KYC flow): your National ID number (NIN), photos of both sides of your National ID, a selfie with your ID held next to your face, your date of birth (optional), and — for organisations — your business-registration certificate and TIN.

How we use it

  • To run the marketplace — show listings, deliver enquiries, process payments.
  • To verify identity and reduce fraud.
  • To send service emails (welcome, payment receipts, alerts you opt into).

Identity verification (KYC)

Submitting documents to /account/verify-identity is optional. When you choose to verify your identity:

  • Storage. Your ID images and any optional business-registration certificate are stored on private filesystem paths that are never exposed publicly. They are not part of any public listing, search index, or API response.
  • Who can see them. Only the NyumbaUG identity- verification team (admins holding the identity- verification scope) can fetch the files for review. Every access is recorded in an audit log we can produce on request.
  • What we publish. Only the ID-verified badge — a green pill on your profile, listings, and agent card. We never publish your NIN, date of birth, business registration number, or any document image.
  • Retention. We retain the documents for as long as your verification is active, plus a short period afterwards to satisfy regulatory record-keeping (currently 12 months from the date the badge is revoked or your account is closed). After that we delete the files; the audit log of admin accesses is kept for 24 months.
  • Withdrawal. While a submission is pending or in review you can withdraw it from the same page — this deletes the uploaded files immediately. Approved verifications can be revoked on request from support.
  • Consent. Submitting requires you to tick the consent box — we record the timestamp of that consent against the request.
  • Your rights.You can ask us, at any time, what identity documents we hold for you, or request their deletion. Where a deletion request would force us to revoke an active verification, we'll explain that consequence first.

Who we share with

  • Payment processor (Flutterwave) — for transactions you initiate.
  • Email provider (Resend) — for transactional and alert emails.
  • Government or law enforcement when legally required.
  • We do notshare identity-verification documents with any third party today. If we ever introduce an automated identity-vendor (e.g. Smile ID), we'll update this page before the integration goes live and ask for fresh consent.

Your choices

You can edit or delete your account at any time from Settings. Email alerts can be turned off per saved search.

This is a placeholder policy. The full legal text will replace it before public launch.