Last Updated: January 1, 2026
Privacy Notice
Last Updated: January 1, 2026
Cleva Technologies Inc, including our affiliates and subsidiaries, such as Cleva Payments, Inc. (“Cleva”, “we”, “us”, “our”) is a technology platform that enables our users to carry out payout and remittance services (“Services”) on or through our website, mobile application or other digital platforms (“Platform”). Cleva recognizes that you care about how your information is used, and your privacy is important to us. This Privacy Policy explains how we may collect and use your information, particularly your personal information, including information that can be used to identify you, directly or indirectly, as defined by applicable laws (“Personal Information”), and the choices you can make about what information you share. We are committed to protecting the privacy and security of the personal information of our users (“you”, “your”, “user”)when using our Platform or any of our Services.
We recommend that you read this Privacy Policy and our Financial Privacy Notice before using or submitting information through the Platform or the Services, and to understand your rights and our duties towards the management of your information. By accessing and using our Platform and any of our Services, you acknowledge that you have reviewed this Privacy Policy and agree to its terms. This also means that you agree to the collection and processing of your data and have accepted the applicable disclosures. If you do not agree with any aspect of this Privacy Policy, our Financial Privacy Notice, or the applicable Terms of Service, you should immediately discontinue access to use of our Services.
This Privacy Policy incorporates the privacy policy of the App available here.
This Privacy Policy is incorporated by reference into the terms and conditions applicable to you. See here for the Cleva Technologies Terms of Service USA, and here for the general Terms of Service.
You can also find our GLBA Privacy Notice here.
If you have any questions, requests, or concerns regarding this Privacy Policy, our Financial Privacy Notice or our data practices, please contact us at legal@getcleva.com.
We may make changes to this Privacy Policy from time to time and when we do, we will update the “Last Updated” date given above. We may notify you through your registered email address on the Platform of the revisions made to this Privacy Policy. However, you understand that this may not always be practicable and when that occurs, you agree to waive your right to notification.
It is your responsibility to review this Privacy Policy frequently and to stay informed of all changes which may be made to it. The current version of this Privacy Policy will supersede all earlier versions from time to time. By using our Platform or our Services after a revision has been made to this Privacy Policy, you consent to be bound by the changes we made.
We will only collect and process your data based on consent and for each information we indicate that we collect under the Privacy Policy, you agree to have consented to their collection, processing, storage, use and disclosures.
For other information we may require which are not expressly stated under this Privacy Policy, we will request for your consent and authorisation before collection, storage and use;
We provide you with the option to accept this Privacy Policy by clicking on the “Accept” button on our Platform. When you withdraw your consent after using our Platform or Services, information collected prior to your withdrawal will be processed in accordance with the version of this Notice that was in place when you used our services
All data collected by us in your use of our services, will only be used for the purposes disclosed to you at the time of collection. Your information will not be used for any undisclosed or misrepresented purpose.
Because we are a financial institution regulated under the Gramm-Leach-Bliley Act, the Personal Information that we collect in connection with your request for consumer financial products and services constitutes “nonpublic personal information” subject to our Financial Privacy Notice, and we may be exempt from certain state privacy laws.
We collect your information to provide you with our Platform and suite of Services, and to enhance your experience on our platform.
This information may be directly provided by you, sourced from identity verification and fraud prevention partners or public databases, collected from our affiliates and unaffiliated third-party partners, pulled from any external accounts that you may link, or as otherwise appropriate where there is a legitimate business need in a connection with a transaction initiated by you, in each case in accordance with your instructions.
When registering, transacting, or contacting us, you may provide the following information, which may include certain information collected to enable us to fulfil Customer Due Diligence (“CDD”) requirements while onboarding you on our Platform.
You understand that it is your responsibility to obtain the consent of any third parties whose information you are passing to us (including those of business owners and Recipients) before disclosure.
When you interact with us through a social media site or third-party service, such as when you like, follow, or share Cleva content on Facebook, Twitter, Instagram, or similar sites, we may receive information from the social network, including your profile information, picture, user ID associated with your social media account, and any other information you permit the social network to share with third parties.
We are also working closely with third parties (including, for example, service providers, business partners, sub-contractors in technical, payment and delivery service providers, advertising networks, analytics providers, search information providers, credit reference agencies) and may receive information about you from them.
including the Internet protocol (IP) address used to connect your computer to the Internet, your login information, browser type and version, time zone setting, browser plug-in types and versions, operating system, activity logs, and other usage information.
including the full Uniform Resource Locators (URL) clickstream to, through and from the website or other parts of the Platform (including date and time); products you viewed or searched for; page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs), and methods used to browse away from the page and any phone number used to call our customer service number.
In operating the Services, we may use cookies, web beacons, fingerprinting, and similar technologies to collect and use Personal Information about you, including for analytics purposes, and to serve you interest-based advertising. This Privacy Policy covers the use of these technologies by Cleva only. Uses of these technologies by third-party advertisers or websites linked from the Services, including third parties with which we partner, are governed by each such third party’s privacy policy.
To use our services, users must be individuals who pass our CDD checks or corporate entities duly incorporated under their local laws. Consequently, we collect corporate information (including details of control persons and beneficial owners) to verify that these entities are legally established, operational, and meet our eligibility requirements. Additionally, we verify the identities of the individuals behind these corporate entities.
As participants in the financial services industry, we uphold stringent measures to prevent the misuse of our services for fraudulent purposes such as money laundering, terrorism financial, proliferation financing and other unlawful activities. For this purpose, we collect information relating to your business, personal information of your Beneficial Owners (BOs) and beneficiaries for screening against various public records and sanctions lists. Additionally, we retain transaction records as required by law to serve as vital support for law enforcement agencies during investigations.
To the extent permitted under the Nigeria Data Protection Regulation and the Data Protection Act, and any other applicable laws and regulations, we rely on our legitimate business interests to process your data for the following reasons:
In order to deliver and improve our Services, we may share your Personal Information :
With our partner banks or any other third-party payout and payment providers (“Third-Party Partners”) in order to comply with laws and regulations and the Third-Party Partner’s regulatory obligations;
With third parties party service providers that performs services on our behalf as needed to carry out their work for us, which may include providing the following services: tax and accounting, fraud prevention services, identity verification, services, web hosting, customer and support services or analytics services;
When needed to provide Services to you, e.g., to card networks in case you are issued a card by our partner banks, to other third parties when processing your transactions or maintaining your accounts;
When required by law or if reasonably necessary with regulators, law enforcement agencies or authorities: (1) to comply with a legal process, such as a court order, subpoena or search warrant, (2) to assist in the prevention or detection of a crime (subject in each case to applicable law), (3) to protect the health and safety of us, our users, or any person; or (4) as otherwise required by applicable law;
To independent external auditors, law firms or other service providers to us to support our audit, compliance and corporate governance functions;
In connection with change of ownership or control of all or part of our business, such as a merger, acquisition, reorganization or bankruptcy;
In order to enforce our legal rights, which may include: (1) to protect the security or integrity of our Platform or Services; (2) to exercise or protect the rights, property or personal safety of Cleva or other user; (3) to enforce our agreements with you; (4) protect against or mitigate legal liability;
With other entities within the Cleva group where it is necessary for operational reasons and for any administrative purposes to organize, develop and deliver our Platform and Services, run our organization and decide on future strategies;
With third parties or with entities within the Cleva group for marketing purposes or to provide you with their own products or services, which we shall do only with your consent (see below for opt out procedures); or
At your request;
We do not sell your Personal Information. Where consent is required, we will seek it in advance and provide opt-out options.
Cookies are text files with small pieces of data sent to your device to enable us to store information about you when you browse on our website if you agree.
We employ cookies to monitor your local computer settings so as to detect unauthorized access. We may also expand our use of cookies to include the collection of additional data such as passwords, preferences, and other details as improvements are made on our services.
We shall grant you an opportunity to either accept or reject cookies used on our browsers. However, if you choose to reject the cookies, you may not be able to access some functionalities and web pages on our site or mobile applications. You may also be able to disable or reject cookies through your browser’s settings.
Google Analytics: Please note that we use Google Analytics cookies for data analytics purposes. You can find more information on how Google uses data from these cookies at google.com/policies/privacy/partners. You may choose to opt-out of Google Analytics by installing their opt-out browser add-on https://tools.google.com/dlpage/gaoptout/.
We shall, as much as reasonably within our abilities, not collect any Personal Information from visitors to our website unless they become a user on our Platform or otherwise creates a Cleva Account, or otherwise provides us with Personal Information directly.
We maintain organisational, technical and administrative measures designed to protect your personal data against unauthorised access, disclosures, alteration, misuse and destruction.
We use secured web services that have been configured to run within a virtual private connection and an SSL certificate to make sure that all communications are made over HTTPs SFTP using SSL. We shall also use our best endeavors to safeguard the confidentiality and security of your Personal Information; however, please note that no method of transmission over the internet is completely secure therefore, we cannot assure you of an absolute security of your Personal Information.
We will retain your Personal Information for as long as you use our Services and access our Platform, if required by law and regulations, for the minimum amount of time as required under those laws and regulations.
We may transfer your Personal Information to our partners in other jurisdictions for the purpose of providing the Services to you, including those located in the United States or the United Kingdom. This transfer will only be made after we have ascertained that our partners have implemented adequate security measures to ensure the protection of your Personal Information to the same level of standards as we are providing in our Terms and Privacy Policy.
You have the following rights in relation to your Personal Information held by us:
The right to have access to your Personal Information;
The right to be informed about the processing of your Personal Information by maintaining this Privacy Policy or the Financial Privacy Notice, or as otherwise required by applicable laws and regulations;
The right to correct any inaccurate Personal Information or any information about you; and
The right to limit the use of sensitive Personal Information (such as government ID, financial account information or geolocation data) to what is necessary for providing the requested service, unless we obtain your consent to use it for other purposes.
In addition, if you are one of our customers outside of the United States, you also have the following rights:
The right to request the deletion of Personal Information we have collected, subject to certain limitations under applicable law (e.g., for compliance with legal compliance or internal business needs);
The right to restrict the processing of your personal data;
The right to block the processing of your Personal Information that is done in violation of any applicable law or regulations;
The right to be informed about any erasure or rectification of your personal data or restriction of any processing carried out;
The right to the portability of your personal data; and
The right to lodge a complaint to a supervisory authority within your country of residence.
At your request, we will provide the personal data held by us in a structured manner, commonly used and machine-readable format. We will restrict you from transmitting those data in our database to another company where the processing is based on consent, on a contract, and processing is carried out by automated means.
To exercise any of your rights under this Privacy Policy, please email legal@getcleva.com. We may request that you complete a form and provide suitable identifications to verify your identity. Once the form is completed where required, we will provide you with the requested information within a period not exceeding two months. However, where permitted under applicable laws, we have a right to refuse your request where we notice that the request is repetitive or excessive.
Please note that your data access rights is subject to limitations provided by applicable laws and regulations, and that we may have the right to deny your request.
At your request, we will provide the personal data held by us in a structured manner, commonly used and machine-readable format;
We will restrict you from transmitting those data in our database to another company where the processing is based on consent, on a contract, and processing is carried out by automated means;
To exercise any of your rights under this Notice, you may contact us through the email address provided under this Notice. However, please note that we may request that you complete a form and provide suitable identifications to verify your identity. Once the form is completed where required, we will provide you with the requested information within a period not exceeding two months. However, we have a right to refuse your request where we notice that the request is repetitive or excessive;
Please note that your right to the erasure of your data does not apply to legal necessities like invoices, audit logs, subscription information, and the data archived on our backup systems. For such data, we shall securely isolate and protect their users from any further processing;
Where any of the rights as provided for under this Notice is breached, the resolution shall be in accordance with the dispute resolution mechanism in our Terms of use.
Our Platform and our Services are not intended for children under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have inadvertently collected Personal Information from a child, we will take prompt steps to delete such information from our records.
You may opt out of marketing emails from us at any time by contacting us at contact@getcleva.com, or by clicking the “unsubscribe” link located in the footer of the emails you receive
This Privacy Policy is made pursuant to applicable privacy and data protection laws and regulations, including but not limited to the United Kingdom's General Data Protection Regulation (UK GDPR), Nigeria Data Protection Regulations (NDPR), and the Nigeria Data Protection Act, and any relevant privacy and data protection laws existing under the laws of the United States.