Terms, Privacy and Security Requirements

SwiftBizness is a software platform for referral management, customer relationship management, loyalty, staff checkout, order verification, branch operations, and controlled reward approvals.

By creating an account, joining a business workspace, registering as staff, or using a referral portal, you agree to use SwiftBizness lawfully, honestly, and only for legitimate business operations.

If you use SwiftBizness on behalf of a company, restaurant, shop, service provider, or other organization, you confirm that you have authority to accept these terms for that business.

SwiftBizness is designed around privacy principles recognized under the Nigeria Data Protection Act 2023, NDPC guidance, African data protection frameworks, the GDPR where applicable, and other privacy laws that may apply to a business or customer.

Personal data must be processed fairly, lawfully, transparently, and only for clear business purposes such as customer service, referral verification, loyalty rewards, fraud prevention, staff accountability, and business reporting.

Businesses must collect only data that is necessary for the service, keep it accurate, protect it from unauthorized access, and avoid retaining it longer than needed for lawful business, accounting, fraud prevention, or dispute purposes.

Each business using SwiftBizness is normally the controller of its customer, staff, referral, order, branch, and payout records because it decides why the data is collected and how it is used.

SwiftBizness acts as a service provider or processor for business data, except where we process limited platform data for security, account administration, abuse prevention, legal compliance, billing, analytics, or service improvement.

Businesses are responsible for giving customers and staff appropriate privacy notices, obtaining consent where required, honoring lawful data rights requests, and ensuring their own use of customer data complies with applicable law.

Owner and staff account data may include names, emails, phone numbers, roles, branch access, permissions, login activity, work-hour restrictions, and audit records.

Customer and referrer data may include names, phone numbers, email addresses, referral codes, QR events, WhatsApp journey events, order details, purchase amounts, receipts, loyalty status, wallet activity, payout details, notes, and fraud review information.

Technical data may include device, browser, IP, approximate location signals, logs, session events, security events, and integration metadata needed to operate and protect the platform.

Businesses must not upload, sell, scrape, rent, or misuse customer data. Customer records may only be used for legitimate relationship management, order fulfilment, referral verification, loyalty, support, fraud prevention, and lawful business communication.

Businesses must not send spam, deceptive messages, harassment, illegal offers, or unauthorized marketing through WhatsApp, SMS, email, QR campaigns, referral links, or exported customer lists.

Where consent is required for marketing, WhatsApp messaging, loyalty communication, or referral outreach, the business must obtain and record that consent and must respect opt-out requests.

Referral rewards are not automatic entitlements. A referral must satisfy the business rules, minimum purchase amount, eligibility checks, payment verification, anti-fraud checks, and staff or admin approval requirements before commission is credited.

SwiftBizness may show rejected referrals with reasons such as no purchase, purchase below threshold, existing customer, duplicate referral, duplicate receipt, self-referral, invalid code, expired referral, or fraud review.

Business owners must act faithfully and fairly toward referrers. Owners must not deliberately delay valid referral payments, manipulate purchase records, hide qualified referrals, change rules after a referral has already qualified, or use technicalities to avoid paying a commission that was honestly earned under the published campaign terms.

Owners and managers may correct referral decisions only through authorized override flows. Every override should be logged with the reason, actor, timestamp, and affected wallet or referral record.

Owners and managers are responsible for inviting only authorized staff, setting correct permissions, assigning branch access, setting work hours, and removing access when employment or authorization ends.

Staff must use only their own registered email and PIN. Staff must not share PINs, approve false orders, bypass work-hour rules, alter receipts dishonestly, or approve financial actions they are not authorized to approve.

Each branch should maintain accurate checkout records, customer lookup decisions, order verification actions, referral evidence, and staff notes so the business has a clear audit trail.

AI order capture, receipt intelligence, duplicate detection, and referral automation are assistive tools. AI may suggest order fields, customer matches, receipt details, fraud signals, or referral status, but humans remain responsible for final approval.

AI must not be treated as the final authority for payments, refunds, commissions, customer deletion, referral approval, or disciplinary decisions. Authorized staff or owners must review high-impact actions.

Businesses should review AI outputs, correct errors, and avoid entering sensitive information that is not necessary for order, customer, referral, or loyalty operations.

Accounts should use strong passwords, private devices where possible, secure email accounts, and prompt password changes if compromise is suspected. Owners should enable stronger authentication controls when available.

SwiftBizness uses role-based access, branch-aware permissions, staff PIN validation, work-hour restrictions, audit logs, protected server routes, row-level data separation, and provider security controls to reduce unauthorized access risk.

Businesses must protect exported data, restrict who can view customer and payout records, avoid sharing screenshots containing personal data, and report suspected misuse or unauthorized access promptly.

If a business suspects unauthorized access, data loss, credential compromise, fraudulent payout activity, duplicate receipt abuse, or staff misuse, it should preserve evidence and notify SwiftBizness support as soon as possible.

SwiftBizness will investigate credible reports, restrict access where needed, preserve relevant logs, support containment, and help the affected business assess notification obligations under applicable law.

Where a law requires notice to a regulator, affected person, partner, bank, payment provider, or law enforcement agency, the responsible business must make that notice within the required timeframe.

Businesses operating in Nigeria, Africa, the European Union, the United Kingdom, the United States, or other regions may have additional privacy, consumer protection, tax, employment, financial, marketing, or recordkeeping duties.

Where data is transferred across borders through hosting, infrastructure, support, payment, WhatsApp, email, analytics, or backup providers, SwiftBizness and the business should use appropriate safeguards required by applicable law.

A business must not use SwiftBizness in a country, sector, or campaign where the use would violate local law, sanctions rules, anti-bribery rules, consumer protection rules, or payment regulations.

Users must not upload false receipts, create fake customers, run self-referral schemes, manipulate referral codes, approve ineligible commissions, bypass fraud controls, attack the platform, scrape data, reverse engineer protected systems, or attempt unauthorized access.

Users must not use SwiftBizness for illegal sales, discriminatory practices, harassment, identity theft, phishing, malware, spam, unlawful surveillance, or activities that violate customer rights.

SwiftBizness may suspend access, block suspicious activity, preserve records, or terminate accounts where there is credible evidence of fraud, abuse, legal risk, platform attack, or serious policy violation.

Depending on applicable law, individuals may have rights to access, correct, delete, restrict, object to, or receive a copy of their personal data. Some rights may be limited by fraud prevention, accounting, legal, security, or dispute obligations.

Customer requests should normally be handled by the business that collected the customer relationship data. SwiftBizness may assist the business in locating, exporting, correcting, or deleting data where legally appropriate.

Requests involving identity, payments, fraud records, staff discipline, or third-party data may require verification before any action is taken.

SwiftBizness aims to provide reliable service, but no software service can guarantee uninterrupted availability, perfect AI extraction, error-free integrations, or complete prevention of fraud or misuse.

SwiftBizness provides software tools, records, workflows, and audit trails, but it does not become a party to the commercial relationship between a business, customer, staff member, referrer, bank, payment provider, or delivery partner unless expressly agreed in writing.

Businesses remain responsible for their own reward promises, customer communications, taxes, accounting, employment decisions, payout timing, payment disputes, refunds, regulatory filings, and compliance with laws that apply to their industry and location.

SwiftBizness does not provide legal, tax, accounting, banking, insurance, employment, financial, or investment advice. Information in the platform and these terms is a product operating baseline and should be reviewed with qualified professionals before major commercial, legal, or regulated use.

We may update these terms, privacy commitments, and security requirements to reflect product changes, legal updates, infrastructure changes, or improved operating practices.

To the fullest extent permitted by law, SwiftBizness is not liable for dishonest payout decisions by a business owner, inaccurate records entered by a user, offline cash disputes, third-party service failures, unauthorized use caused by shared credentials, or losses caused by a business ignoring security, privacy, or referral fairness requirements.