GSLEYDigital Book a Discovery Call
Home › Legal › Privacy

Privacy Policy

Last updated: 30 May 2026 · Aligned to NDPA 2023 (Nigeria) & GDPR (EU/UK)

On this page

  1. Who we are
  2. Data we collect
  3. How and why we use it
  4. Diagnostic tools & emailed reports
  5. Cookies & analytics
  6. Sharing & processors
  7. International transfers
  8. Retention
  9. Your rights
  10. Security
  11. Changes
  12. Contact

01Who we are

GSLEY Digital (“GSLEY”, “we”, “us”) is the data controller responsible for the personal data described in this policy. Registered office: [REGISTERED ADDRESS]. For any privacy matter, contact brief@gsleydigital.com or +234 902 476 7079.

02Data we collect

We collect only what we need to respond to you and deliver our services:

  • Contact and brief data — name, work email, organisation, and the message you send via our contact form or WhatsApp.
  • Diagnostic inputs — the answers you provide to our online tools, and the email address you give to receive a report.
  • Technical data — IP address, device and browser type, and pages visited, collected through cookies and analytics.

We do not knowingly collect special-category data and ask that you do not submit it through our forms.

03How and why we use it

Under the NDPA 2023 and GDPR we rely on the following lawful bases:

  • Consent — to send you a diagnostic report or marketing communications you have asked for.
  • Legitimate interests — to respond to enquiries, operate and secure the website, and understand how it is used.
  • Contract — to deliver services you have engaged us for.

04Diagnostic tools & emailed reports

When you complete a diagnostic and request a report, your answers and email are used to generate and send that report. Transactional emails are delivered through our email provider, Resend. We retain diagnostic results to provide the report and, where you have consented, to follow up. You can withdraw consent at any time using the unsubscribe link in any email or by contacting us.

05Cookies & analytics

We use essential cookies to operate the site and, with your consent, analytics cookies to understand usage. You can manage preferences through the cookie banner or your browser settings. [CONFIRM analytics provider and cookie list before publication.]

06Sharing & processors

We do not sell personal data. We share it only with service providers (“processors”) who act on our instructions under appropriate agreements, including: [HOSTING PROVIDER], Resend (email delivery), and [ANALYTICS PROVIDER]. [CONFIRM full processor list.]

07International transfers

Some processors may store or process data outside Nigeria or the EEA. Where they do, we put in place a lawful transfer mechanism — such as standard contractual clauses or an adequacy decision — consistent with the NDPA 2023 and GDPR. [CONFIRM mechanisms per processor.]

08Retention

We keep personal data only as long as necessary for the purpose it was collected, then delete or anonymise it. Indicative periods: enquiry data [PERIOD]; diagnostic results [PERIOD]; analytics data [PERIOD]. [CONFIRM actual retention schedule.]

09Your rights

Subject to applicable law, you have the right to access, rectify, erase, restrict, or object to the processing of your personal data, to data portability, and to withdraw consent. You may also lodge a complaint with the Nigeria Data Protection Commission (NDPC) or, in the EU/UK, your local supervisory authority. To exercise any right, contact us at brief@gsleydigital.com.

10Security

We apply appropriate technical and organisational measures to protect personal data against loss, misuse, and unauthorised access. No method of transmission over the internet is fully secure, and we cannot guarantee absolute security.

11Changes

We may update this policy from time to time. Material changes will be posted on this page with a revised “last updated” date.

12Contact

Questions about this policy or your data: brief@gsleydigital.com · +234 902 476 7079 · Lagos, Nigeria. [APPOINT and name a Data Protection Officer / contact if required under the NDPA 2023.]