How we collect, process, and safeguard your information under ICPC compliance and applicable data protection laws.
R.E.D.F.I.N.F.R.A.U.D. (registered address: 14 Ehigiator Street) is the data controller for personal information collected through this website. For any privacy-related requests, you may contact us via email at info@redfinfraud.com or by phone at 0903 671 3288. Our designated compliance officer handles all data subject inquiries within 30 calendar days.
We collect only the data necessary for B2B vendor due diligence and corporate counterparty verification. This includes: (a) contact details you provide via forms — full name, business email, phone number, and company name; (b) technical data automatically collected — IP address, browser type, operating system, and page interaction timestamps; (c) documents uploaded during vendor onboarding — incorporation certificates, tax identification numbers, and beneficial ownership declarations. We do not collect personal financial account numbers, consumer credit data, or bank login credentials.
Your data is processed exclusively for: (i) verifying corporate counterparties and logistics vendors against ICPC compliance guidelines; (ii) maintaining audit trails for regulatory reporting; (iii) communicating due diligence findings and compliance updates; (iv) improving our screening tools and website functionality. We never use personal data for automated decision-making that produces legal effects concerning individuals, nor for marketing to consumers.
Processing is based on our legitimate interest in preventing corruption and ensuring supply chain integrity, as well as compliance with legal obligations under Nigerian anti-corruption statutes (ICPC Act, 2000). Where we rely on consent (e.g., for non-essential cookies), you may withdraw it at any time by contacting info@redfinfraud.com. Consent withdrawal does not affect the lawfulness of processing carried out before such withdrawal.
We share personal data only with: (a) trusted processors who provide hosting, email delivery, and document verification services — each bound by a data processing agreement that prohibits independent use; (b) regulatory authorities such as the ICPC or EFCC when required by law or in response to a valid legal request. We do not sell, rent, or trade personal information to any third party. No data is transferred to countries without adequate data protection safeguards unless standard contractual clauses are in place.
Our website uses session cookies for essential functionality (e.g., form security, language preference) and analytics cookies (Google Analytics with IP anonymisation) to understand aggregate usage patterns. You can manage cookie preferences through your browser settings. Disabling non-essential cookies will not affect core compliance services. We do not use advertising cookies, cross-site tracking, or fingerprinting techniques.
Personal data collected during vendor due diligence is retained for the duration of the business relationship plus five years to satisfy ICPC record-keeping requirements. Technical logs are kept for 12 months. After the retention period, data is securely deleted or anonymised. You may request earlier deletion unless we are legally required to retain the data.
Under applicable data protection law (including GDPR and CCPA where relevant), you have the right to: access your personal data; request correction of inaccurate information; object to or restrict processing; request data portability; withdraw consent at any time; and lodge a complaint with the National Information Technology Development Agency (NITDA) if you believe your rights have been violated. To exercise these rights, email info@redfinfraud.com with the subject line “Data Subject Request”. We will respond within 30 days.
We implement technical and organisational measures to protect your data, including TLS encryption for all data in transit, role-based access controls, regular security audits, and staff training on data handling. Despite these measures, no online transmission is completely secure; you share information at your own risk. We will notify you and the relevant authority within 72 hours of becoming aware of a data breach that poses a risk to your rights.
R.E.D.F.I.N.F.R.A.U.D. does not make false, misleading, or deceptive claims. We do not use fake urgency, counterfeit endorsements, or unauthorised brand references. All vendor verification results are based on documented evidence and publicly available records. We do not guarantee specific outcomes (e.g., “100% fraud elimination”) and clearly distinguish between verified facts and professional opinions. Our compliance services are not affiliated with any government agency unless explicitly stated in a signed agreement.
This privacy policy was last updated on 15 March 2025. We may revise it to reflect changes in legal requirements or our data practices. Material changes will be notified via a prominent notice on our website or by email. Continued use of the site after changes constitutes acceptance of the updated policy.