Talk to an expert
Talk to an expert

Privacy Policy

1. INTRODUCTION

We respect your privacy. We protect your data.

At Joseph Dauda & Co., we are committed to protecting the privacy and security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, engage our services, or communicate with us.

We comply with the Nigeria Data Protection Regulation (NDPR) 2019 and other applicable privacy laws. By using our website or services, you consent to the practices described in this policy.

2. INFORMATION WE COLLECT

We may collect the following types of information:

Personal Information You Provide to Us:
– Name, job title, and company name
– Email address, phone number, and postal address
– Financial information relevant to our services (e.g., tax records, financial statements)
– Identification documents (where required for statutory or regulatory compliance)
– Any other information you voluntarily provide via forms, emails, or phone calls

Information Automatically Collected:
– IP address, browser type, and operating system
– Pages visited, time spent on pages, and referral URLs
– Cookies and similar tracking technologies (see Section 7)

3. HOW WE USE YOUR INFORMATION

We use your information for the following purposes:

– To provide our professional services (audit, tax, advisory, forensic, etc.)
– To communicate with you about your inquiries, engagements, or requests
– To comply with legal, regulatory, and professional obligations (e.g., ICAN, CITN, FIRS, CAC)
– To process payments and manage billing
– To improve our website, services, and client experience
– To send you updates, newsletters, or industry insights (with your consent)
– To detect, prevent, or investigate fraud or security breaches

4. LEGAL BASIS FOR PROCESSING (NDPR COMPLIANCE)

We process your personal data based on one or more of the following legal grounds:

– Consent – You have given clear consent for us to process your data for a specific purpose.
– Contract – Processing is necessary for the performance of a contract with you (e.g., our engagement letter).
– Legal Obligation – Processing is necessary to comply with the law (e.g., ICAN, CITN, FIRS, or court requirements).
– Legitimate Interests – Processing is necessary for our legitimate business interests (e.g., fraud prevention, service improvement), provided your rights do not override those interests.

5. HOW WE SHARE YOUR INFORMATION

We do not sell your personal information.

We may share your information only in the following circumstances:

Recipient: Regulatory Bodies
Reason: ICAN, CITN, FIRS, CAC, or courts – when required by law

Recipient: Professional Advisors
Reason: Lawyers, insurers, or auditors – for legitimate business purposes

Recipient: Service Providers
Reason: IT hosting, email services, or payment processors – under strict confidentiality agreements

Recipient: Successors
Reason: In the event of a merger, acquisition, or sale of assets – with notice to you

We require all third parties to respect the security of your data and treat it in accordance with the law.

6. DATA SECURITY

We take security seriously.

We implement appropriate technical and organizational measures to protect your personal information, including:

– Secure servers and encrypted data transmission (SSL/TLS)
– Access controls restricted to authorized personnel only
– Regular staff training on data protection and confidentiality
– Physical security measures at our office premises

However, no method of transmission over the internet is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

7. COOKIES AND TRACKING TECHNOLOGIES

Our website uses cookies to improve your experience.

Cookies are small text files stored on your device. We use:

Essential Cookies – Required for website functionality (e.g., navigation, form submission)
Analytics Cookies – To understand how visitors use our site (e.g., Google Analytics)
Preference Cookies – To remember your settings and preferences

You can control or disable cookies through your browser settings. However, disabling cookies may affect some website features.

8. DATA RETENTION

We keep your data only as long as necessary.

We retain your personal information for:

– As long as we have an ongoing relationship with you (e.g., active engagement)
– As required by law (e.g., tax records – typically 6 to 10 years under Nigerian law)
– To resolve disputes, enforce agreements, or establish legal defenses

When data is no longer needed, we securely delete or anonymize it.

9. YOUR RIGHTS (SUBJECT ACCESS REQUEST)

Under NDPR, you have the following rights:

Right to Access – Request a copy of the personal data we hold about you
Right to Rectification – Correct inaccurate or incomplete data
Right to Erasure – Request deletion of your data (where legally permitted)
Right to Restrict Processing – Limit how we use your data
Right to Data Portability – Receive your data in a structured, commonly used format
Right to Object – Object to processing based on legitimate interests
Right to Withdraw Consent – Withdraw consent at any time (where processing is based on consent)

To exercise any of these rights, please contact us at: privacy@josephdauda.com

We will respond within 30 days as required by law.

10. THIRD-PARTY LINKS

Our website may contain links to external sites.

We are not responsible for the privacy practices or content of third-party websites. We encourage you to read the privacy policies of any external sites you visit.

11. CHILDREN’S PRIVACY

Our services are not directed to children under 18.

We do not knowingly collect personal information from individuals under 18 years of age. If we become aware that we have inadvertently collected such data, we will delete it promptly.

12. CHANGES TO THIS PRIVACY POLICY

We may update this policy from time to time.

We will post any changes on this page with an updated “Last Updated” date. For material changes, we may notify you via email or a prominent notice on our website.

We encourage you to review this policy periodically.

13. CONTACT US

If you have questions about this Privacy Policy or how we handle your data, please contact us:

Data Protection Officer (DPO):
Joseph Dauda & Co.
[Insert Office Address]
Nigeria

Email: privacy@josephdauda.com
Phone: +234 (0) 802 123 4567

Alternatively, you may contact:
National Information Technology Development Agency (NITDA) – the supervisory authority for NDPR in Nigeria.

14. ACKNOWLEDGMENT

By using our website or services, you acknowledge that you have read and understood this Privacy Policy.

Joseph Dauda & Co

Blank Form (#3)