RVETH Logo

RVETH – Privacy Policy

Effective Date: July 2, 2025

Black and white photo of a heart

1. Introduction and Agreement

Welcome to RVETH ("RVETH," "we," "our," or "us"). We provide TALA, an AI business assistant, and related services (collectively, the "Services") accessible via WhatsApp and other messaging interfaces.

This Privacy Policy explains how we collect, use, store, protect, and share your information. It forms a legally binding agreement between you (the "User," "you," or "your") and RVETH.

By accessing, registering for, or using our Services, you agree to the data practices described in this Privacy Policy. If you do not agree, you must not use our Services.

2. Information We Collect

We collect information necessary to provide, improve, and protect our Services.

(a) Information You Provide (Your "Content")

Registration & Business Data: Your name, phone number, business name, industry, size, and operational details you provide during setup.

Content and Communications: This includes all messages, queries, voice notes, images (like receipts or ledgers), documents, financial data (income, expenses, invoices), and feedback you send to or through TALA. Our systems store and process this content to provide the Service.

Contact Information: Your phone number (from WhatsApp/messaging) and any optional contact details like an email address.

(b) Information Collected Automatically

Service Metadata: We collect metadata about your interactions, such as the timestamp, device type, operating system, IP address, and platform (e.g., WhatsApp).

Usage Data: We log how you interact with our Services, including features used, query frequency, response times, and error data.

(c) Information from Third-Party Integrations

If you connect TALA to third-party accounts (like banks, payment processors, or accounting software), we will collect information from those services as authorized by you. This may include transaction summaries, account balances, and business reports. We never receive or store your login credentials for these third-party services.

3. How We Use Your Information

We use your information for several purposes, underpinned by specific legal bases (like "Performance of Contract" and "Legitimate Interest").

(a) To Provide and Maintain the Services (Legal Basis: Performance of a Contract)

  • To operate the TALA assistant and respond to your queries.
  • To generate the business analytics, financial summaries, and insights you request.
  • To facilitate your authorized third-party integrations.
  • To provide you with customer support and technical assistance.
  • To send you service-related announcements and administrative messages.

(b) To Improve and Develop Our Services (AI Training) (Legal Basis: Legitimate Interest)

This is a core part of our Service. To build a smarter and more accurate AI, we use your data:

  • To train, validate, and improve our artificial intelligence models, algorithms, and machine learning systems.
  • This training process uses your Content and Communications (your queries, uploaded documents, financial data, and the conversations themselves) to help our AI understand business language, financial records, and user intent more effectively.
  • To analyze usage patterns to develop new features and products.

All data used for AI training is subject to strict security and access controls.

(c) To Create Anonymized & Aggregated Data (Legal Basis: Legitimate Interest)

We process your Personal Data and Business Data to create de-identified, anonymized, and/or aggregated data (collectively, "Anonymized Data"). This is data from which all personal and business identifiers (like your name, phone number, or specific business name) have been permanently removed, so it cannot be linked back to you.

RVETH owns all Anonymized Data created from data on our platform.

We use this Anonymized Data for any lawful business purpose, including:

  • Selling, licensing, or sharing aggregated market trend reports with partners, banks, MFIs, and government agencies.
  • Providing benchmarking insights to our clients (e.g., "how your expense rate compares to other businesses in your industry").
  • Conducting industry research and analysis.
  • Further improving our services and products.

(d) For Security and Compliance (Legal Basis: Legitimate Interest / Legal Obligation)

  • To secure our platform, prevent fraud, and detect and stop abuse.
  • To enforce our Terms of Service.
  • To comply with applicable laws, regulations, and legal requests.

4. Data Sharing and Disclosure

We are not in the business of selling your personally identifiable data. We share it only in the following, limited circumstances:

With Service Providers: We use third-party vendors to help us operate (e.g., cloud hosting like AWS, messaging infrastructure like Meta/WhatsApp). These providers are bound by strict confidentiality and data protection agreements and are only permitted to use the data to perform services for us.

With Anonymized Data Partners: As stated in Section 3(c), we may share, sell, or license Anonymized Data with third parties for research, analysis, and to provide aggregated market insights.

With Your Explicit Consent: We will not share your personally identifiable business data (e.g., your specific profit/loss statement linked to your business name) with a partner (like a specific bank for a loan application) without your direct, opt-in consent.

For Legal Reasons: We may disclose your information if required by law, subpoena, or if we believe in good faith that such action is necessary to (a) comply with a legal obligation, (b) protect our rights or property, or (c) protect the safety of our users or the public.

Business Transfers: In the event of a merger, acquisition, or sale of all or a portion of our assets, your information may be transferred as part of that transaction.

5. Data Security

We implement industry-standard technical and organizational measures to protect your data. This includes:

  • Encryption: Data is encrypted in transit (using SSL/TLS) and at rest (using AES-256).
  • Secure Infrastructure: We use secure cloud infrastructure (e.g., Amazon Web Services).
  • Access Controls: Access to your personal data is strictly limited to authorized RVETH personnel who require it to perform their jobs and are bound by confidentiality.

Disclaimer: While we take data security seriously, no system is 100% impenetrable. We cannot guarantee the absolute security of your information, and you acknowledge this risk by using our Services.

6. Your Rights and Choices

In accordance with Nigeria's Data Protection Regulation (NDPR) and other international applicable laws, you have the following rights:

Right to Access & Correct: You can request a copy of the personal data we hold about you and request correction of any inaccuracies.

Right to Deletion (Right to be Forgotten): You can request the deletion of your personal data. Please note: Fulfilling this request will require the deletion of your account and will terminate your access to our Services. We may retain certain data for legal or regulatory compliance (see Section 7).

Right to Withdraw Consent: Where we rely on consent for processing, you may withdraw it at any time. This does not affect processing that occurred before withdrawal.

Right to Object: You may object to our processing of your data based on "Legitimate Interest" (like AI training). However, as this processing is fundamental to the functioning and improvement of our AI-based Service, the only way to fully object may be to cease using the Service and request data deletion.

To exercise these rights, please contact us at privacy@rveth.in.

7. Data Retention

We retain your personal and business data for as long as your account is active or as needed to provide you with the Services.

Account Deletion: If you request to delete your account, we will delete or anonymize your personally identifiable information within 90 days, unless we are required to retain it for a longer period to comply with legal obligations, resolve disputes, or enforce our agreements.

Anonymized Data: We may retain Anonymized and Aggregated Data indefinitely for our business purposes as described in Section 3(c).

8. Children's Privacy

Our Services are not intended for or directed at individuals under the age of 18. We do not knowingly collect personal information from children.

9. International Data Transfers

Your information may be stored and processed in Nigeria or any other country where RVETH or its service providers maintain facilities. By using the Services, you consent to the transfer, storage, and processing of your information outside of your country of residence, which may have different data protection laws.

10. Updates to This Policy

We may update this Privacy Policy from time to time to reflect changes in our products, technology, or the law. We will notify you of any material changes by posting the new policy on our website or through the Service (e.g., via a WhatsApp message).

Your continued use of the Services after such changes constitutes your acceptance of the new Privacy Policy.

11. Contact Us

If you have any questions, requests, or concerns about this Privacy Policy or our data practices, please contact us:

RVETH Email: privacy@rveth.in

Website: www.rveth.in

Home