Need NDPR/NDPC Compliance Assistance?
Is your company NDPR/NDPC certified?
Our experts can help you achieve and maintain NDPR compliance with our comprehensive review services.
Last updated: June 6, 2026
ComplianceAssess ("we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website, services, and tools (collectively, the "Services"). Our Services include the NDPR & GDPR Compliance Self-Assessment Tool and Website Scanner.
This policy complies with the Nigeria Data Protection Regulation (NDPR) 2019 and the General Data Protection Regulation (GDPR) (EU) 2016/679.
The data controller responsible for your personal data is:
9jaoncloud NDPR/NDPC GDPR ComplianceAssess
Email: info@9jaoncloud.com.ng
Data Protection Officer: info@9jaoncloud.com.ng
Address: Oyo State Nigeria
Phone: +234(0)8144878297
We collect several types of information from and about users of our Services:
We use images, logos, and other media on our website. When you interact with these elements, we may collect usage data to understand how users engage with our content.
We use the information we collect for various purposes in accordance with applicable data protection laws:
We process your personal data based on the following legal bases under GDPR and NDPR:
We process your personal data with your explicit consent when you:
We process your personal data necessary to perform our contract with you when you use our Services to receive compliance assessments and website scans.
We process your personal data when necessary for our legitimate interests or those of third parties, provided that your interests and fundamental rights do not override those interests. This includes:
We process your personal data when necessary to comply with legal obligations, such as retaining records for regulatory purposes.
We do not sell your personal data. We share your information only in the following circumstances:
We share your information with third-party service providers who perform services on our behalf, such as:
These service providers have access to your personal data only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose.
We may disclose your information if required by law, court order, or other government authority, or if we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or respond to a government request.
If we are involved in a merger, acquisition, or sale of all or a portion of our assets, your information may be transferred as part of that transaction. We will notify you of any such transfer and provide you with choices regarding your information.
Your information may be transferred to and maintained on computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ from those of your jurisdiction.
If you are located in the European Economic Area (EEA) or Nigeria, your information may be transferred to countries that do not have the same data protection laws as your home country. We ensure that appropriate safeguards are in place to protect your personal data in accordance with applicable data protection laws when transferred internationally.
We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include:
However, no method of transmission over the Internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal data, we cannot guarantee its absolute security.
We retain your personal data only for as long as necessary to fulfill the purposes for which we collected it, including for the purposes of satisfying any legal, accounting, or reporting requirements.
When we delete your personal data, we take reasonable steps to erase it from our systems and ensure it cannot be reconstructed. However, some residual copies may remain in our backup systems for a limited period for security and integrity purposes.
Under GDPR and NDPR, you have the following rights regarding your personal data:
You have the right to request a copy of the personal data we hold about you. We will provide you with information about the categories of data we process, the purposes of processing, the categories of recipients, and the retention period.
You have the right to request that we correct any inaccurate or incomplete personal data we hold about you.
You have the right to request that we delete your personal data in certain circumstances, such as when the data is no longer necessary for the purposes for which it was collected, or when you withdraw your consent.
You have the right to request that we restrict the processing of your personal data in certain circumstances, such as when you contest the accuracy of the data or when the processing is unlawful.
You have the right to receive the personal data you provided to us in a structured, commonly used, and machine-readable format, and to transmit that data to another controller where technically feasible.
You have the right to object to the processing of your personal data, particularly for direct marketing purposes.
You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you.
To exercise any of these rights, please contact us at info@complianceassess.com. We will respond to your request within 30 days in accordance with applicable data protection laws.
We use cookies and similar tracking technologies to collect information about your browsing activities and preferences. Our use of cookies includes:
These cookies are necessary for the operation of our website and cannot be disabled. They include cookies that enable you to log in, use our Services, and ensure security.
We use Google Analytics and other analytics services to understand how users interact with our website and Services. These cookies help us improve our Services and user experience.
We use advertising cookies to display relevant advertisements to you on third-party websites and to measure the effectiveness of our advertising campaigns.
When you first visit our website, we will ask for your consent to use non-essential cookies. You can manage your cookie preferences at any time through our cookie consent banner or your browser settings.
Our Services are not intended for children under the age of 18. We do not knowingly collect personal data from children under 18. If we become aware that we have collected personal data from children under 18, we will take steps to delete that information.
We may update this Privacy Policy from time to time. The updated version will be indicated by a revised "Last updated" date and the updated version will be effective as soon as it is accessible. We encourage you to review this Privacy Policy frequently to stay informed about how we are protecting your personal data.
If you have any questions about this Privacy Policy, please contact us:
Email: info@9jaoncloud.com.ng
Data Protection Officer: info@9jaoncloud.com.ng
Address: Oyo State Nigeria
Phone: +234(0)8144878297
If you have concerns about how we handle your personal data, you have the right to lodge a complaint with the relevant data protection authority:
Nigeria: National Information Technology Development Agency (NITDA) / Nigeria Data Protection Commission. (NDPC)
European Union: Relevant data protection authority in your member state