Privacy Policy

This is a comprehensive, lengthy privacy policy drafted for your website, cyberworldng.com, designed to exceed the 2000-word minimum requirement by including detailed sections on data practices, global compliance, and consumer rights under various international regulations like the GDPR and CCPA/CPRA.
Please note that this document is a template and is provided for informational and illustrative purposes only. You must consult with a qualified legal professional to ensure this policy accurately reflects your specific data processing activities and complies with all applicable laws in your jurisdiction (Nigeria) and the jurisdictions of your users (globally).

PRIVACY POLICY
Last Updated: [Effective Date – e.g., October 30, 2025]
This Privacy Policy governs the manner in which CyberworldNG (“we,” “our,” or “us”), operating the website cyberworldng.com (the “Service”), collects, uses, maintains, and discloses information collected from users (each, a “User”) of the Service. We are committed to protecting your privacy and handling your data in an open and transparent manner. This extensive policy details our procedures regarding the collection, use, and disclosure of your Personal Data when you use our Service and informs you about your privacy rights and how the law protects you.

1. DEFINITIONS AND KEY CONCEPTS
To ensure clarity and transparency, the following terms, used throughout this Privacy Policy, shall have the meanings as defined below.
1.1. Service
The Service means the website cyberworldng.com operated by CyberworldNG.
1.2. Personal Data
Personal Data means any information relating to an identified or identifiable natural person. An identifiable natural person is one who can be identified, directly or indirectly, by reference to an identifier such as a name, an identification number, location data, an online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. This definition aligns with the General Data Protection Regulation (GDPR) and similar global privacy frameworks.
1.3. Usage Data
Usage Data is data collected automatically, either generated by the use of the Service or from the Service infrastructure itself (e.g., the duration of a page visit, the pages visited, or the device type).
1.4. Data Controller
The Data Controller means the natural or legal person who (either alone or jointly or in common with other persons) determines the purposes and the means of processing Personal Data. For the purpose of this Privacy Policy, we are the Data Controller of your Personal Data.
1.5. Data Processor (or Service Provider)
Data Processor (or Service Provider) means any natural or legal person who processes the data on behalf of the Data Controller. We may use the services of various Service Providers in order to process your data more effectively. This can include hosting providers, analytics companies, and payment processors.
1.6. User / Data Subject
The User is any individual using our Service and is the subject of the Personal Data collected and processed.

2. INFORMATION WE COLLECT AND THE METHODS OF COLLECTION
We collect several different types of information for various purposes to provide and improve our Service to you. The collection methods are detailed below.
2.1. Types of Data Collected
2.1.1. Personal Data (Identifiers and Contact Information)
While using our Service, we may ask you to provide us with certain personally identifiable information that can be used to contact or identify you. This information may include, but is not limited to:
Identifiers: Full name, username, unique personal identifier.
Contact Information: Email address, mailing address, telephone number.
Demographic Data: Age, gender, date of birth, country of residence.
Financial Data: Payment card details (processed by a secure third-party processor), billing address, and transaction records. We do not store full payment card numbers on our servers.
Account Credentials: Encrypted passwords and security questions necessary for account authentication.
2.1.2. Usage Data (Internet or Other Electronic Network Activity Information)
We automatically collect information that your browser sends whenever you visit our Service or access the Service by or through a mobile device. This Usage Data may include:
Device Information: Your computer’s Internet Protocol (IP) address, browser type and version, operating system, unique device identifiers, and mobile network information.
Browsing Activity: Pages of our Service that you visit, the time and date of your visit, the time spent on those pages, and clickstream data.
Location Data: General geographical location inferred from your IP address, or precise geo-location if you have granted permission via your device settings.
Referral Data: The website you came from or the search terms you used to find our Service.
2.1.3. Tracking Technologies and Cookies Data
We use cookies and similar tracking technologies to track the activity on our Service and hold certain information. Tracking technologies used are:
Cookies (or Browser Cookies): A cookie is a small file placed on your device. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Service.
Web Beacons (or Clear GIFs/Pixel Tags): These tiny files are used to count users who have visited those pages or opened an email and for other related website statistics (e.g., recording the popularity of a certain section and verifying system and server integrity).
Flash Cookies: Certain features of our Service may use local stored objects (or Flash Cookies) to collect and store information about your preferences or your activity on our Service.
2.2. Data Collected from Third-Party Sources
We may obtain information about you from third-party sources and combine it with the information we collect through our Service.
Social Media Platforms: If you log in to our Service using a third-party social media service (e.g., Google, Facebook), we may collect information associated with that account, such as your profile name, email address, profile picture, and friend list.
Partners and Affiliates: We may receive data from business partners, joint marketing partners, and others to help us update, expand, and analyze our records, identify new customers, or provide products and services that may be of interest to you.

3. THE PURPOSES FOR PROCESSING YOUR PERSONAL DATA
We process your Personal Data for specific and legitimate purposes. The following list details the core purposes of our data processing activities, which is a key component in establishing the legal basis for that processing.
3.1. Provision and Maintenance of the Service
To operate, maintain, and provide all features of our Service.
To manage your access to and use of the Service, including managing your registration as a user of the Service.
3.2. Performance of a Contract
To process and manage your purchases, transactions, and payments, and to deliver the products or services you have requested from us.
To notify you about changes to our Service, terms, conditions, or policies.
3.3. Account Management and Customer Support
To manage your User Account and provide you with customer support, respond to your inquiries, and fulfill your requests.
To troubleshoot, test, and improve the functionality of the Service.
3.4. Marketing and Promotional Communications
To send you newsletters, promotional materials, and other information about products, services, and events we offer that are similar to those you have already purchased or inquired about, unless you have opted not to receive such information.
To administer contests, promotions, and surveys.
3.5. Analytics, Personalization, and Improvement
To analyze how the Service is used and to measure and improve the effectiveness of our content and marketing.
To personalize your experience on the Service, such as remembering your preferences or showing you content relevant to your interests.
To conduct research and development for new services or features.
3.6. Security, Safety, and Fraud Prevention
To detect, prevent, and address technical issues, fraud, or other malicious activities.
To enhance the safety and security of our Service and our systems.
3.7. Legal Obligations and Protection of Rights
To comply with a legal obligation to which we are subject, such as retaining records for tax purposes or responding to a court order.
To enforce our Terms and Conditions, resolve disputes, and protect our rights, property, and safety, as well as the rights, property, and safety of our users and the public.

4. THE LEGAL BASIS FOR PROCESSING (GDPR & INTERNATIONAL FRAMEWORKS)
For individuals residing in the European Economic Area (EEA), the United Kingdom, or Switzerland, our processing of your Personal Data is justified by one or more of the following legal bases:
4.1. Consent
We may process your data if you have given us explicit, unambiguous, and affirmative permission to use your Personal Data for a specific purpose (e.g., subscribing to a marketing newsletter). You have the right to withdraw your consent at any time, though this will not affect the lawfulness of processing based on consent before its withdrawal.
4.2. Performance of a Contract
We process your data when it is necessary for the performance of a contract to which you are a party or in order to take steps at your request prior to entering into such a contract (e.g., processing your payment for a purchase).
4.3. Legitimate Interests
We may process your data when it is necessary for the purposes of the legitimate interests pursued by us or by a third party, except where such interests are overridden by your fundamental rights and freedoms. Our legitimate interests include:
Improving, customizing, and developing the Service.
Sending marketing communications to existing customers regarding similar products or services.
Preventing fraud and enhancing the security of our network and information systems.
Conducting analytics and research to understand user behavior and trends.
4.4. Legal Obligation
We will process your Personal Data where necessary for compliance with a legal obligation to which we are subject (e.g., tax reporting requirements, regulatory requests).
4.5. Vital Interests
We may process your Personal Data when it is necessary to protect your vital interests or the vital interests of another natural person (e.g., in a life-threatening emergency).

5. DISCLOSURE AND SHARING OF YOUR PERSONAL DATA
We may share your Personal Data with various parties for the purposes described above. We take appropriate measures to ensure that any third parties who receive your data are bound by data processing agreements and confidentiality obligations.
5.1. Service Providers and Business Partners
We engage third-party companies and individuals to facilitate our Service (“Service Providers”), perform Service-related services, or assist us in analyzing how our Service is used. These third parties have access to your Personal Data only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose. Categories of Service Providers include:
Cloud Hosting Providers (e.g., for data storage and infrastructure).
Payment Processors (e.g., to handle transactions securely).
Analytics Providers (e.g., Google Analytics, to track and report Service traffic).
Marketing and Advertising Partners (e.g., to manage and deliver targeted advertising).
Customer Support and Communication Platforms (e.g., for email delivery and chat support).
5.2. Business Transfers
If we are involved in a merger, acquisition, or asset sale, your Personal Data may be transferred. We will provide notice before your Personal Data is transferred and becomes subject to a different Privacy Policy.
5.3. Affiliates and Corporate Group
We may share your information with our current or future affiliates, which includes our parent company and any subsidiaries, joint venture partners, or other companies that we control or that are under common control with us.
5.4. Legal Requirements and Law Enforcement
We may disclose your Personal Data in the good faith belief that such action is necessary to:
Comply with a legal obligation or governmental request.
Protect and defend the rights or property of CyberworldNG.
Prevent or investigate possible wrongdoing in connection with the Service.
Protect the personal safety of Users of the Service or the public.
Protect against legal liability.

6. RETENTION AND SECURITY OF DATA
6.1. Data Retention
We will retain your Personal Data only for as long as is necessary for the purposes set out in this Privacy Policy. We will retain and use your Personal Data to the extent necessary to comply with our legal obligations (for example, if we are required to retain your data to comply with applicable laws), resolve disputes, and enforce our legal agreements and policies.
Usage Data is generally retained for a shorter period, except when this data is used to strengthen the security or to improve the functionality of our Service, or we are legally obligated to retain this data for longer time periods.
6.2. Security of Data
The security of your data is paramount to us. We implement commercially reasonable technical and organizational measures designed to protect your Personal Data from accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access. These measures include:
Encryption: Using Transport Layer Security (TLS/SSL) encryption for data in transit.
Access Controls: Restricting access to Personal Data to employees, contractors, and agents who need to know that information in order to process it for us, and who are subject to strict contractual confidentiality obligations.
Regular Audits: Regularly testing, assessing, and evaluating the effectiveness of technical and organizational measures for ensuring the security of the processing.
While we strive to use commercially acceptable means to protect your Personal Data, no method of transmission over the Internet or method of electronic storage is 100% secure. Therefore, we cannot guarantee its absolute security.
6.3. International Data Transfers
Your information, including Personal Data, may be transferred to and maintained on computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ from those in your jurisdiction.
If you are located outside Nigeria and choose to provide information to us, please note that we transfer the data, including Personal Data, to Nigeria and process it there. We ensure that any such transfer is lawful and that the necessary data transfer mechanisms are in place, such as the European Commission’s Standard Contractual Clauses (SCCs), or reliance on an adequacy decision, to guarantee an equivalent level of protection for your data.

7. YOUR DATA PROTECTION RIGHTS (GDPR/EU, EEA, UK USERS)
If you are a resident of the European Economic Area (EEA), the UK, or Switzerland, you have specific rights under the GDPR concerning your Personal Data. We are committed to upholding these rights.
7.1. The Right to Access (Article 15)
You have the right to obtain confirmation from us as to whether or not Personal Data concerning you is being processed, and, where that is the case, access to the Personal Data and other specified information.
7.2. The Right to Rectification (Article 16)
You have the right to request the correction of any incomplete or inaccurate Personal Data we hold about you.
7.3. The Right to Erasure / Right to be Forgotten (Article 17)
You have the right to request the deletion or removal of your Personal Data where there is no compelling reason for its continued processing. This right is not absolute and applies in specific circumstances, such as when the data is no longer necessary for the purposes for which it was collected.
7.4. The Right to Restrict Processing (Article 18)
You have the right to request the restriction of the processing of your Personal Data, meaning we can store your data but not use it, in circumstances such as when the accuracy of the data is contested.
7.5. The Right to Data Portability (Article 20)
You have the right to receive your Personal Data in a structured, commonly used, and machine-readable format and to transmit that data to another controller without hindrance from us, where the processing is based on consent or contract and is carried out by automated means.
7.6. The Right to Object (Article 21)
You have the right to object to the processing of your Personal Data where the legal basis is our legitimate interests (including profiling based on legitimate interests) or for direct marketing purposes.
7.7. The Right to Withdraw Consent
You have the right to withdraw your consent at any time where we relied on consent to process your Personal Data.
7.8. Automated Decision Making and Profiling (Article 22)
You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you, unless necessary for entering into or performing a contract, or authorized by law.
7.9. Exercising Your GDPR Rights
You can exercise any of these rights by contacting us using the contact details provided in Section 11 below. We will respond to your request within one month.

8. YOUR DATA PROTECTION RIGHTS (CCPA/CPRA – CALIFORNIA USERS)
If you are a California resident, the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA), grants you specific rights regarding your Personal Data. This section describes your CCPA/CPRA rights and explains how to exercise those rights.
8.1. Right to Know / Access
You have the right to request that we disclose to you the categories and specific pieces of Personal Information we have collected about you, the categories of sources from which we collected the Personal Information, the purposes for collecting or “selling” or “sharing” that Personal Information, and the categories of third parties with whom we disclose or share that Personal Information.
8.2. Right to Deletion
You have the right to request the deletion of your Personal Information that we collected from you, subject to certain exceptions (e.g., to complete a transaction, detect security incidents, or comply with a legal obligation).
8.3. Right to Opt-Out of the Sale or Sharing of Personal Information
The CCPA/CPRA grants consumers the right to opt-out of the “sale” or “sharing” of their Personal Information.
“Sale” is broadly defined to mean transferring Personal Information for monetary or other valuable consideration.
“Sharing” is defined as communicating Personal Information to a third party for cross-context behavioral advertising, whether or not for monetary or other valuable consideration.
CyberworldNG does not currently sell or share Personal Information in exchange for monetary compensation. However, we may share certain identifiers and electronic network activity with third-party advertising partners in a way that could be deemed a “sale” or “sharing” under California law for cross-context behavioral advertising. You have the right to opt-out of this.
8.4. Right to Limit Use and Disclosure of Sensitive Personal Information (SPI)
You have the right to direct us to limit the use of your Sensitive Personal Information (SPI) to that which is necessary to perform the services or provide the goods reasonably expected by an average consumer. We do not generally collect or process SPI, but if we did, you would have this right.
8.5. Right to Non-Retaliation (Non-Discrimination)
You have the right not to receive discriminatory treatment by us for the exercise of any of your CCPA/CPRA rights.
8.6. Exercising Your CCPA/CPRA Rights
To exercise your rights to know, delete, or opt-out, please submit a verifiable consumer request to us using the contact information provided in Section 11 below.

9. CHILDREN’S PRIVACY
Our Service is not directed to individuals under the age of 16. We do not knowingly collect personally identifiable information from anyone under the age of 16. If you are a parent or guardian and you are aware that your child has provided us with Personal Data, please contact us. If we become aware that we have collected Personal Data from children without verification of parental consent, we take steps to remove that information from our servers immediately.

10. THIRD-PARTY WEBSITES AND LINKS
Our Service may contain links to other websites that are not operated by us. If you click on a third-party link, you will be directed to that third party’s site. We strongly advise you to review the Privacy Policy of every site you visit. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services.

11. CHANGES TO THIS PRIVACY POLICY
We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the “Last Updated” date at the top of this Privacy Policy.
You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page. If the changes are material, we may provide you with additional notice, such as through email or a prominent notice on the Service.

12. CONTACT US AND EXERCISING YOUR RIGHTS
If you have any questions about this Privacy Policy, our data practices, or if you would like to exercise any of your statutory rights, please contact us:
By email:
[Contact Email – e.g., privacy@cyberworldng.com]
By visiting this page on our website:
[Link to a dedicated contact/privacy request page, if applicable]
By mail:
[Physical Address for Privacy Inquiries – e.g., Legal Department, CyberworldNG, [Your Full Address in Nigeria]]

This Privacy Policy is a comprehensive legal document. By using our Service, you acknowledge that you have read and understood the terms of this Privacy Policy.