Privacy policy

Naija Finder is the operating company behind our products, including Find Care (live now) and other apps or sites we may release from time to time. This Privacy Policy describes our overall privacy architecture; a specific product may show additional notices when you use sensitive features (for example trip sharing or voice input). We are not a medical advice service, a financial advisor, or a property lawyer — we are a directory and discovery tool. Always seek qualified professional services where needed.

Accounts later. Find Care today does not require sign-up. We may introduce optional or required sign-in on some products; section 2 describes anonymous use today and what we may collect if you sign up (for example name, mobile number, email, or device information). We will always update this policy and in-app or store disclosures when that happens.

Contact for privacy matters: privacy@findingnaija.com.

For Find Care and our other consumer products today, we do not require sign-up or login to use core discovery features. We do not ask for your name, phone number, email, or government ID in the app for those features — by design. The main exception is when you choose to contact us via the contact form (see below), which collects what you type so we can reply.

Later products and accounts. If we add accounts or sign-in on a product, we may collect personal information you provide or that the product needs — for example your name, email address, mobile phone number, business or host details, and device or technical information (such as device model, OS version, or app build) for security, support, fraud prevention, or service delivery. We will tell you exactly what we ask for at sign-up or in-product, update this Privacy Policy, and only use that data for the purposes we describe there.

What we DO use (anonymous-first mode and optional features):

Reporting data (anonymous mode). We also store anonymous usage events in our backend (see Supabase below) so we can run the product and understand aggregates — for example: searches, hospital detail views, in-app navigation starts, phone or WhatsApp taps on a listing, state selection, session starts, optional app-install signals, and non-personal ad-slot impressions or clicks when advertising is enabled. While you use the app without an account, each row is tied only to the rotating anonymous id and small technical fields (such as which Nigerian state the session was using); we do not attach your real-world identity to those events, and internal reporting is built from counts and trends, not from following individual users. If we later tie usage to a signed-in account, we will describe that in an updated policy and at sign-up.

Naija Finder products use the following third-party services. Each has its own privacy policy that governs the data it receives.

We use the information described in section 2 for the purposes below:

• Operating the product you’re using — finding hospitals near you, drawing a route, etc.
• Aggregate, anonymous usage analytics — how many devices opened the app this month, how many searches were run, which states are most active. We do not profile individual users.
• Running trusted service providers — where needed, sharing relevant data with third-party processors that help us operate core app features (for example maps, infrastructure, messaging, support tools, security, fraud prevention, payments, or account services if introduced later). We require those providers to process data only for agreed purposes and under contractual and legal safeguards.
• Legal, safety, and compliance uses — preventing abuse, enforcing our terms, handling lawful requests, and meeting obligations under applicable law.

We may share, license, or sell certain data to third-party companies where permitted or required by law, for disclosed business purposes, or with your consent where required. We may also disclose data to service providers acting on our instructions, and where required by law or to protect users and the service. Where advertising is enabled, any partner data use is governed by applicable law, contractual safeguards, and the disclosures in this policy.

• Location data: never stored on our servers. Held only in device memory while the app is open.
• Trip-share data: auto-expires 4 hours after start.
• Anonymous analytics events: may be retained for a long period to support longitudinal reporting, product planning, fraud or abuse analysis, and legal or audit needs. We retain raw and derived analytics data for as long as reasonably necessary for these purposes, and may keep fully aggregated or de-identified trend datasets longer.
• Device-stored preferences + saved items: stay on your device until you uninstall the app or clear its storage.
• Contact form submissions: retained for as long as your inquiry is open + 12 months for legal / audit purposes, then deleted.

Under the Nigeria Data Protection Act 2023 you have the right to:

• Access any personal data we hold about you (today, that is primarily your contact-form submissions — see section 2.6; if we introduce accounts, this will include account and profile data tied to you as described when you sign up).
• Request correction of any inaccurate personal data.
• Request deletion of your data (uninstalling removes everything device-stored; for contact-form submissions, email privacy@findingnaija.com).
• Withdraw consent for location, microphone, or other permissions at any time via your device’s app permissions settings.
• Lodge a complaint with the Nigeria Data Protection Commission (NDPC) if you believe we have mishandled your data.

Naija Finder products are not directed at children under 13. We do not knowingly collect any data from children under 13. If a parent or guardian believes we have inadvertently received data from a child under 13, please contact us at privacy@findingnaija.com and we will delete it.

Our backend (Supabase) is hosted in the European Union. Map tiles (Mapbox) are served from a global CDN. When advertising is enabled, AdMob services may transmit data to Google servers globally. All transfers comply with the relevant adequacy and contractual safeguards under Nigerian and EU data protection law.

Connections to our backend, Mapbox, and any third-party SDK are encrypted in transit (HTTPS / WSS / TLS 1.2+). Trip-share IDs are random 16-character strings generated on your device (where the platform supports a strong generator); the share link itself is the bearer token, with auto-expiry (4 hours) limiting exposure if a link is leaked. Our admin systems require multi-factor authentication.

We may update this policy as Naija Finder grows. Material changes will be communicated via an in-app notice on first launch after the update plus a notice on this page. The “Last updated” date at the top reflects the most recent revision.

For questions about this policy or how we handle your data:

Email: privacy@findingnaija.com

General contact: findingnaija.com/contact

Find Care provides location-based hospital information for convenience only. It does not provide medical advice, diagnosis, or treatment. Always seek professional medical care when needed.

Hospital information shown in the app (phone numbers, addresses, services) is provided for convenience and may be out of date. Always call ahead to confirm before relying on any listed detail in an emergency.