Privacy Policy

We collect personal information that you provide directly to us:

• Identity Information: Name, date of birth, government-issued ID, selfie verification
• Contact Information: Email address, phone number, residential address
• Authentication Data: Username, password, two-factor authentication settings
• Financial Goals: Savings targets, ROSCA participation preferences

With your explicit consent, we collect financial data through regulated Third-Party Providers (TPPs):

• Transaction History: Income, expenses, and spending patterns
• Account Information: Bank account details, balance data
• Payment Data: Recurring payments, bill payment history
• Read-Only Access: We only access data you authorize; we cannot initiate transactions without your permission

• Device Information: IP address, browser type, operating system, device identifiers
• Usage Data: Pages viewed, features used, time spent on platform
• Location Data: Approximate location based on IP address (not GPS)
• Cookies and Tracking: We use cookies and similar technologies to enhance user experience

• PlentiScore Calculation: Analyzing your financial behavior to generate your community trust score
• Income Smoothing: Calculating your Safe Surplus for automated savings
• ROSCA Matching: Connecting you with compatible savings groups
• Payment Routing: Finding the best transfer rates across providers
• Investment Recommendations: Providing AI-powered investment insights

We use aggregated and de-identified data to:

• Train and improve our machine learning algorithms
• Enhance the accuracy of financial predictions
• Develop new features and services
• Identify patterns that benefit the broader Plenti community

Note: Enterprise users can opt out of data training in their settings.

• Sending account notifications and updates
• Providing customer support
• Alerting you to important service changes or security issues
• Marketing communications (with your consent)

• Preventing fraud and unauthorized access
• Complying with legal obligations
• Enforcing our Terms of Service
• Protecting the rights and safety of our users

We share information with third parties only when you explicitly authorize us to do so, such as when linking your bank account via Open Banking.

We work with trusted third-party providers who help us deliver our services:

• Open Banking TPPs: Regulated providers for secure financial data access
• Payment Processors: Services like Flutterwave, Paystack, Stripe
• Cloud Infrastructure: Secure hosting and data storage providers
• Identity Verification: KYC/AML compliance services
• Analytics Providers: Services that help us understand usage patterns

All service providers are contractually bound to protect your data and use it only for specified purposes.

When you join a ROSCA group, limited information is shared with other members:

• Your first name and PlentiScore
• Payment status (on-time, late, or missed contributions)
• General commitment to the group cycle

We do not share your full transaction history, income details, or other sensitive financial information with group members.

We may disclose your information if required by law, court order, or government regulation, or to protect the rights, property, or safety of Plenti, our users, or the public.

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity, subject to the same privacy protections.

We implement industry-standard security measures to protect your data:

• Encryption: All data is encrypted in transit (TLS/SSL) and at rest (AES-256)
• Access Controls: Strict role-based access limits within our organization
• Regular Audits: Periodic security assessments and penetration testing
• Secure Authentication: Multi-factor authentication options
• Monitoring: Real-time threat detection and incident response systems

You are responsible for maintaining the confidentiality of your account credentials. Never share your password with anyone, and notify us immediately if you suspect unauthorized access.

In the unlikely event of a data breach affecting your personal information, we will notify you and relevant authorities in accordance with applicable laws.

• Right to Access: Request a copy of your personal data
• Right to Rectification: Correct inaccurate or incomplete data
• Right to Erasure: Request deletion of your data ("right to be forgotten")
• Right to Restrict Processing: Limit how we use your data
• Right to Data Portability: Receive your data in a machine-readable format
• Right to Object: Opt out of certain data processing activities
• Right to Withdraw Consent: Revoke consent at any time

• Right to Know: Request information about data collection and use
• Right to Delete: Request deletion of your personal information
• Right to Opt-Out: Opt out of the "sale" of personal information (Note: We do not sell your data)
• Right to Non-Discrimination: Equal service regardless of privacy choices

• Right to access and correct your personal information
• Right to object to data processing
• Right to request deletion of your data
• Right to lodge a complaint with data protection authorities

To exercise any of these rights, contact us at:

We retain your personal data for as long as your account is active and as necessary to provide you with our services.

After you close your account, we retain certain data for:

• Legal Compliance: 6 years for financial records (UK, US requirements)
• Fraud Prevention: Up to 7 years for security purposes
• ROSCA Records: Transaction records retained for accountability

De-identified, aggregated data may be retained indefinitely for research and service improvement.

Plenti operates globally. Your data may be transferred to and processed in countries outside your residence, including the UK, US, and EU.

We ensure adequate protection through:

• Standard Contractual Clauses (SCCs)
• Privacy Shield certification (where applicable)
• Adequacy decisions by relevant authorities
• Your explicit consent where required

• Essential Cookies: Required for platform functionality
• Performance Cookies: Help us understand how users interact with the platform
• Functional Cookies: Remember your preferences
• Marketing Cookies: Deliver relevant ads (with consent)

You can control cookies through your browser settings. Note that disabling essential cookies may affect platform functionality.