Gaskiya.ng
FeaturesHow it worksReviewsPricing
Sign inStart free trial

Legal

Privacy Policy

Last updated: April 2026

1. Who We Are

Gaskiya.ng is a legal practice management platform for Nigerian law firms, operated by Gaskiya Technologies. We are committed to protecting the privacy of your firm and your clients. This policy explains what data we collect, how we use it, and your rights.

2. Data We Collect

We collect the following categories of data:

  • Account data — firm name, subdomain, email addresses, phone numbers, and hashed passwords
  • Practice data — cases, clients, hearings, documents, and invoices that you enter into the Platform
  • Payment data — subscription and transaction records processed by Paystack (we do not store card details)
  • Usage data — log data, IP addresses, and browser/device information used to maintain security and improve the service

3. How We Use Your Data

We use your data solely to:

  • Provide and maintain the Platform
  • Send transactional emails (verification, password reset, hearing reminders)
  • Process subscription payments via Paystack
  • Diagnose technical issues and ensure platform security
  • Comply with legal obligations

We do not sell your data, use it for advertising, or share it with third parties except as described in section 4.

4. Third-Party Services

We use the following third-party services to operate the Platform:

  • Paystack — payment processing
  • Resend — transactional email delivery
  • Termii — SMS and WhatsApp notifications
  • Bunny.net — document and file storage
  • Railway / cloud infrastructure — hosting and database

Each provider is bound by their own privacy policies and data processing agreements. We only share the minimum data necessary for each service to function.

5. Client Data and Confidentiality

The personal data of your firm's clients (names, contact details, case information) is entered by you and belongs to your firm. As a law firm, you are the data controller for your clients' data. We act as a data processor on your behalf. We do not access client data except to provide technical support when authorised by your firm.

6. Data Security

All data is encrypted in transit using TLS. Passwords are hashed using bcrypt and never stored in plain text. Access tokens expire after 15 minutes. We use industry-standard security practices and conduct regular security reviews. However, no system is perfectly secure and we cannot guarantee absolute security.

7. Data Retention

We retain your data for as long as your subscription is active. If you cancel, your data is retained for 30 days to allow you to export it. After 30 days, your data is permanently deleted. Anonymised usage statistics may be retained indefinitely.

8. Your Rights

As a registered firm, you have the right to:

  • Access all data stored about your firm
  • Request correction of inaccurate data
  • Request deletion of your account and all associated data
  • Export your data in a machine-readable format

To exercise any of these rights, email us at hello@gaskiya.ng.

9. Cookies

We use a single session cookie (gsk_session) to maintain your login state. This cookie is strictly necessary for the Platform to function and does not track you across other websites. We do not use advertising or analytics cookies.

10. Changes to This Policy

We may update this policy from time to time. We will notify registered users by email before material changes take effect. The "last updated" date at the top of this page reflects the most recent revision.

11. Contact

For privacy-related questions or requests, contact us at hello@gaskiya.ng.