Skip to main content
Legal

Privacy Policy

Last updated: January 28, 2026

1. Introduction

Welcome to Monigo ("we," "our," or "us"). Monigo is a financial operating system for African platforms that automates usage-based billing and event-driven payouts. We are committed to protecting your privacy and ensuring the security of your personal information.

This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform, website, and services (collectively, the "Services"). Please read this policy carefully. By accessing or using our Services, you agree to this Privacy Policy.

2. Information We Collect

2.1 Information You Provide

We collect information that you voluntarily provide to us, including:

  • Account Information: Name, email address, password, and organization details when you register for an account
  • Payment Provider Credentials: API keys and credentials for Paystack, Flutterwave, or Monnify (encrypted and securely stored)
  • Business Information: Company name, business type, tax information, and billing details
  • Customer Data: Information about your customers that you upload to our platform for billing and payout purposes
  • Communications: Information you provide when you contact our support team or communicate with us

2.2 Information Collected Automatically

When you use our Services, we automatically collect certain information, including:

  • Usage Data: Events ingested, API calls made, features used, and interaction patterns
  • Device Information: IP address, browser type, operating system, device identifiers
  • Log Data: Access times, pages viewed, error logs, and other system activity
  • Cookies and Tracking: We use cookies and similar technologies to maintain sessions and improve user experience

2.3 Information from Third Parties

We may receive information from:

  • Payment Providers: Transaction data and verification information from Paystack, Flutterwave, or Monnify
  • Analytics Services: Aggregated usage statistics and performance metrics

3. How We Use Your Information

We use the collected information for the following purposes:

  • Service Delivery: To provide, maintain, and improve our billing and payout automation services
  • Event Processing: To meter usage, calculate billing, generate invoices, and process payouts
  • Payment Processing: To facilitate transactions through your connected payment providers
  • Account Management: To create and manage your account, authenticate users, and provide customer support
  • Communications: To send service updates, security alerts, billing notifications, and respond to inquiries
  • Security: To detect, prevent, and address fraud, security issues, and technical problems
  • Analytics: To understand usage patterns, improve our Services, and develop new features
  • Compliance: To comply with legal obligations, including tax reporting and regulatory requirements
  • Marketing: To send promotional materials (with your consent, where required)

4. Data Security

We implement industry-standard security measures to protect your information:

  • Encryption: All payment provider API keys and sensitive data are encrypted at rest and in transit using AES-256 encryption
  • Access Controls: Role-based access control (RBAC) ensures only authorized personnel can access sensitive data
  • Secure Infrastructure: Our systems are hosted on secure servers with regular security audits and penetration testing
  • Authentication: Multi-factor authentication (MFA) and secure session management using JWT tokens
  • Monitoring: Continuous monitoring for suspicious activity and automated threat detection
  • Data Isolation: Customer data is logically isolated using multi-tenancy architecture

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

5. Data Sharing and Disclosure

We do not sell your personal information. We may share your information in the following circumstances:

5.1 Service Providers

We share data with third-party service providers who perform services on our behalf, including:

  • Payment processors (Paystack, Flutterwave, Monnify) for transaction processing
  • Cloud infrastructure providers for hosting and storage
  • Email service providers for transactional communications
  • Analytics providers for service improvement

5.2 Legal Requirements

We may disclose your information if required by law or in response to:

  • Legal processes, court orders, or government requests
  • Enforcement of our Terms of Service
  • Protection of our rights, property, or safety, or that of our users
  • Investigation of fraud, security issues, or technical problems

5.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity.

6. Data Retention

We retain your information for as long as necessary to provide our Services and comply with legal obligations:

  • Account Data: Retained while your account is active and for a reasonable period after closure
  • Transaction Data: Retained for at least 7 years to comply with financial regulations and tax requirements
  • Event Data: Retained according to your plan and data retention settings
  • Log Data: Typically retained for 90 days for security and troubleshooting purposes

You may request deletion of your data, subject to our legal and regulatory obligations.

7. Your Rights and Choices

Depending on your location, you may have the following rights:

  • Access: Request access to the personal information we hold about you
  • Correction: Request correction of inaccurate or incomplete information
  • Deletion: Request deletion of your personal information (subject to legal requirements)
  • Portability: Request a copy of your data in a structured, machine-readable format
  • Objection: Object to processing of your information for certain purposes
  • Restriction: Request restriction of processing in certain circumstances
  • Withdraw Consent: Withdraw consent for processing where we rely on consent

To exercise these rights, please contact us at privacy@monigo.co. We will respond to your request within 30 days.

8. Nigeria Data Protection Regulation (NDPR)

As a company operating in Nigeria, we comply with the Nigeria Data Protection Regulation (NDPR) 2019. We are committed to:

  • Processing personal data lawfully, fairly, and in a transparent manner
  • Collecting data for specified, explicit, and legitimate purposes
  • Ensuring data is adequate, relevant, and limited to what is necessary
  • Maintaining accurate and up-to-date data
  • Retaining data only as long as necessary
  • Processing data securely with appropriate technical and organizational measures

For NDPR-related inquiries or to exercise your rights under NDPR, please contact our Data Protection Officer at dpo@monigo.co.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure that such transfers comply with applicable data protection laws and implement appropriate safeguards, including standard contractual clauses and encryption.

10. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to:

  • Essential Cookies: Required for authentication and session management
  • Functional Cookies: Remember your preferences and settings
  • Analytics Cookies: Understand how you use our Services
  • Security Cookies: Detect and prevent security threats

You can control cookies through your browser settings. However, disabling certain cookies may affect the functionality of our Services. For more information, see our Cookie Policy.

11. Children's Privacy

Our Services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately, and we will take steps to delete such information.

12. Third-Party Links and Services

Our Services may contain links to third-party websites or integrate with third-party services (such as Paystack, Flutterwave, and Monnify). We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies before providing any information.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of material changes by posting the updated policy on our website and updating the "Last updated" date. Your continued use of our Services after such changes constitutes acceptance of the updated policy.

14. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Monigo

Email: privacy@monigo.co

Data Protection Officer: dpo@monigo.co

Support: support@monigo.co

By using Monigo's Services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy.

Back to Home

Stop building billing. Start shipping features.

Most platforms spend weeks building billing logic that should take hours. Monigo gives you that time back — and keeps giving it back every billing cycle.