ellipse

Privacy Policy

Effective as of 21st April, 2026

Table of Content

1. Introduction

Mango Zest Lab Limited (“Mango Zest”, “we”, “us”, or “our”) is a company duly incorporated under the laws of the Federal Republic of Nigeria, with global operations in view. We are a technology driven enterprise providing transformative solutions across industries. We specialize in building platforms for Blockchain, Payments, eCommerce, Social Platforms, Virtual Reality/Augmented Reality, Fintech, Immersive Experiences, AI, and Large Language Models (LLMs), delivering cutting edge products and services that redefine digital interactions.

This Privacy Policy sets out in detail how we collect, use, disclose, transfer, store, and protect your personal information when you interact with our websites, mobile applications, digital platforms, APIs, blockchain services, and back-office systems (collectively, “Services”).

For emphasis, this Privacy Policy explains how we collect, use, disclose, and process your personal data when you use our website and other places where Mango Zest acts as a data controller—for example, when you interact with one of our products or platforms as a consumer for personal use, or when we operate and provide our commercial customers and their end users with access to our commercial products (“Commercial Services”).

This Privacy Policy does not apply where Mango Zest acts as a data processor and processes personal data on behalf of commercial customers using Client’s Commercial Services - for example, you’re using an app that is powered on the back-end by Mango Zest. In those cases, the commercial customer is the controller, and you can review their policies for more information about how they handle your personal data.

By accessing or using our Services, you acknowledge that you have read, understood, and agree to the terms of this Privacy Policy. Where required by law, we will seek your explicit consent before processing your personal information.

We are committed to safeguarding your personal data in line with:

  1. The Nigeria Data Protection Act 2023 (NDPA) and regulations issued by the Nigeria Data Protection Commission (NDPC).
  2. The EU General Data Protection Regulation (GDPR).
  3. And other applicable data protection frameworks globally.

This commitment reflects our recognition of the sensitive nature of financial, transactional, and blockchain-related data in the digital economy.

2. Information we collect

We collect both personal and non-personal data, depending on the nature of your interactions with our Services. Categories include:

1.1 Personal Identification Information

  • i. Full name, residential and/or business address, email address, and phone number.
  • ii. Date of birth, nationality, and gender (where required).
  • iii. Identity verification documents (international passport, driver’s licence, national ID, voter’s card, or any government-issued identification).
  • iv. Tax Identification Numbers, social security numbers, or equivalent identifiers.
  • v. Politically Exposed Person (PEP) status and related disclosures

1.2 Financial & Transactional Data

  • i. Bank account details, International Bank Account Numbers (IBAN), SWIFT/BIC codes.
  • ii. Debit/credit card numbers, expiry dates, CVV (processed securely and never stored in plain form).
  • iii. Stablecoin wallet addresses and associated balances.
  • iv. Transactional metadata such as timestamps, counterparties, payment references, and transaction hashes.
  • v. Proof of source of funds (e.g., payslips, bank statements, shareholding certificates).

1.3 Web3-Specific Data

  • i. Wallet addresses and other supported blockchain networks.
  • ii. Smart contract interactions, tokenization submissions, and validator confirmations.
  • iii. Immutable blockchain records associated with your public key.
  • iv. Decentralized identifiers (DIDs) and other cryptographic proofs used for authentication.

1.4 Technical & Usage Information

  • i. Device type, IP address, operating system, and browser information.
  • ii. Geolocation data derived from IP mapping or device settings.
  • iii. Log records capturing your interactions with our Services, including login times, duration, actions taken, and frequency.
  • iv. Metadata from cookies, beacons, SDKs, and analytics tools.

1.5 Communications & Support Data

  • i. Emails, chat messages, and recorded customer support calls.
  • ii. Complaints, dispute records, and escalation history.
  • iii. Survey responses, user feedback, and participation in beta testing or pilot programmes.

3. Information we collect

Details for section 3 would go here.

4. Information we collect

Details for section 4 would go here.