Privacy Policy

Introduction

Welcome to Odeka, the vibrant social commerce platform where creativity meets commerce, and community engagement brings unique value to every interaction. At Odeka, we are wholeheartedly committed to enriching your online experience, fostering a space where you can create, share, sell, buy, or simply immerse in the exploration of unique content.

Our Commitment to Privacy and Data Protection
In an era where digital privacy is paramount, we recognize the critical importance of safeguarding your personal information. Our Privacy Policy is a testament to this commitment, meticulously crafted to govern how we collect, utilize, protect, and share your information. It reflects the multifaceted nature of our platform, accommodating the diverse needs of content creators, sellers, buyers, and viewers alike. Our objective is clear: to ensure transparency and clarity in our operations, thereby empowering you to make well-informed decisions regarding your interactions with Odeka.

Transparency as Our Guiding Principle
Your trust is invaluable to us. We understand that trust is earned through unwavering dedication to your privacy and security. This Privacy Policy serves as our pledge to you, our esteemed users. It is a comprehensive guide outlining the nuances of our data handling practices, designed to provide you with a clear understanding of our approach to your personal data.

Navigating the Policy: Understanding Your Rights and Our Responsibilities
We encourage you to thoroughly read through this policy, acquainting yourself with the scope and intent of our data practices. Herein, you will find detailed explanations of how we collect data, the types of information gathered, the purpose behind the collection, and the stringent measures we take to protect it. By accessing or utilizing our platform, you consent to the collection, storage, use, and disclosure of your information as meticulously described in this policy.

Your Voice Matters: Engage with Us
Your feedback and inquiries are of utmost importance. Should you have any questions or concerns regarding this policy or your personal data, please do not hesitate to reach out. We provide multiple channels for communication at the end of this document, ensuring that your voice is heard and addressed with the attention and respect it deserves.

Legal Framework and Compliance
As we navigate the complexities of data protection, rest assured that our practices are not only designed with your privacy in mind but are also compliant with the most stringent legal standards. We are constantly updating our policies and practices to align with new regulations and global standards, ensuring that your rights are upheld and your data is secure.

Joining Hands in the Journey of Trust and Transparency
As you embark on your journey with Odeka, know that we are committed to being your trusted partner. Together, let's build a community where creativity and commerce coexist harmoniously, supported by a foundation of trust, transparency, and unwavering commitment to protecting your privacy.

Information Collection

1. Types of Information Collected: At Odeka, we gather various types of information to enhance your experience and provide you with tailored services. This includes:

Personal Information: Such as your name, email address, contact details, and payment information, which you provide when registering, making purchases, or interacting with our services.
Content Data: Information related to the content you create, share, or interact with on our platform.
Transactional Data: Details of the transactions you carry out through our platform, including purchases and sales.
Technical Data: This encompasses data such as your IP address, login information, browser type, and version, time zone setting, browser plug-in types, and versions, operating system, and platform.
Usage Data: Information about how you use our website, products, and services.
Cookies and Tracking Data: We use cookies and similar tracking technologies to track activity on our service and hold certain information.

2. How We Collect Information: Information is collected in various ways:

Directly from You: When you provide it to us, such as signing up for an account, making a purchase, or communicating with us.
Automatically as You Navigate the Site: Through cookies and other tracking technologies.
From Third Parties: Such as business partners, subcontractors in technical, payment services, advertising networks, analytics providers, and search information providers.

Use of Information

1. Account Management: We use your information to manage your account, provide customer support, and ensure the efficient operation of our platform.
2. Personalization: Your data helps us to tailor your experience, recommend content or products, and personalize our interactions.
3. Transactions: We process transactional data to complete purchases and sales made through our platform.
4. Communication: We use your information to communicate with you about your account, our services, and promotional offers.
5. Platform Improvement: By analyzing how you use our platform, we can improve and optimize our services, ensuring a better user experience.
6. Security: Your information aids in the protection of our platform, preventing fraud, and ensuring the safety of your account.

Data Sharing and Disclosure

1. Service Providers: We may share your data with third-party companies that perform services on our behalf, such as payment processing, data analysis, email delivery, hosting services, customer service, and marketing assistance.
2. Legal Requirements: Odeka may disclose your data in the good faith belief that such action is necessary to comply with a legal obligation, protect and defend the rights or property of Odeka, prevent or investigate possible wrongdoing in connection with the service, protect the personal safety of users of the service or the public, or protect against legal liability.
3. Business Transfers: If we are involved in a merger, acquisition, or asset sale, your Personal Data may be transferred.
4. With Your Consent: Other than as set out above, we will provide you with notice when your information might be shared with third parties and you will have an opportunity to choose not to have us share such information.

User Rights and Data Security

1. User Rights: As a user of Odeka, you have certain rights in relation to your personal data. These rights include:

Access to Information: You have the right to access information held about you. We will provide this information within a reasonable timeframe and may charge a small fee for administrative costs.
Correction: You have the right to request correction of any inaccurate or incomplete data we hold about you.
Deletion: In certain circumstances, you have the right to request the deletion of your personal data from our systems.
Objections and Restrictions: You have the right to object to our processing of your data or to request a restriction on such processing.
Data Portability: Where applicable, you may request the transfer of your personal data to another party.

For exercising these rights, please contact us using the details provided at the end of this policy.

2. Data Security: We take the security of your data seriously. Odeka employs a variety of security technologies and procedures to help protect your personal information from unauthorized access, use, or disclosure. This includes:

Encryption: Using encryption technologies during data transmission and at rest.
Secure Server Hosting: Implementing secure server hosting environments to safeguard the data stored.
Regular Audits and Updates: Conducting regular security audits and updating our security practices in line with technological advancements.
Access Controls: Limiting access to your personal data to employees, contractors, and agents who need to know that information in order to process it for us, and who are subject to strict contractual confidentiality obligations.

3. International Data Transfers: Odeka operates globally, which means your data may be transferred to and processed in countries other than the one in which you reside. These countries may have data protection laws that are different to the laws of your country. However, we take all necessary steps to ensure that your data is treated securely and in accordance with this Privacy Policy.

4. Compliance and Cooperation with Regulatory Authorities: We regularly review our compliance with this Privacy Policy. When we receive formal written complaints, we will contact the person who made the complaint to follow up. We work with the appropriate regulatory authorities, including local data protection authorities, to resolve any complaints regarding the transfer of personal data that we cannot resolve with our users directly.

Compliance with Laws and Regulatory Requirements

1. Adherence to Legal Standards: Odeka is committed to complying with all applicable privacy laws and regulations in every jurisdiction where we operate. This includes adapting our practices to meet the requirements of:

General Data Protection Regulation (GDPR) in the European Union for handling personal data of EU residents.
California Consumer Privacy Act (CCPA) and other relevant U.S. state laws for users residing in the United States.
Data Protection Acts and similar legislation in other countries and regions around the world.

2. Legal Disclosure: Odeka may disclose your Personal Data in the good faith belief that such action is necessary to:

Comply with a legal obligation: To meet national security or law enforcement requirements or prevent illegal activities.
Protect and defend the rights or property of Odeka: This includes enforcing our terms and conditions and other agreements.
Prevent or investigate possible wrongdoing in connection with the Service: Especially in cases of suspected fraud or security threats.
Protect the personal safety of users of the Service or the public: To ensure the safety and security of our users and the public.

3. International Cooperation and Compliance: In operating a global service, Odeka may transfer information across borders for storage and processing in countries other than the one in which it was collected. In such cases, we comply with legal frameworks that establish an equivalent level of protection for data as the one in your home country. We cooperate with:

EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework (as applicable) regarding the collection, use, and retention of personal information transferred from the European Union, the United Kingdom, and Switzerland to the United States.
Data Protection Authorities (DPAs): Engaging with DPAs and other regulatory authorities to resolve any complaints regarding the transfer of personal data that cannot be resolved with our users directly.

4. Third-Party Compliance: Our commitment to privacy extends to the third parties with whom we work. We require all third parties, such as vendors, consultants, and other service providers, to adhere to strict data protection and confidentiality provisions. This includes:

Auditing and Monitoring: Regularly reviewing the privacy practices of our third parties to ensure they comply with this policy and all applicable laws.
Contracts and Agreements: Ensuring that all third-party agreements include robust data protection and privacy clauses.

5. Continuous Improvement and Monitoring: Odeka is dedicated to continuously improving our privacy practices. We monitor legislative developments and adjust our practices accordingly to ensure ongoing compliance with all relevant laws and regulations. Our dedicated team oversees our compliance efforts and implements updates to policies and procedures as necessary.

6. Governance Framework: Odeka's approach to data privacy and protection is underpinned by a comprehensive governance framework designed to ensure adherence to our privacy policy and applicable data protection laws:

Appointment of a Data Protection Officer (DPO): The DPO, a critical figure within our organizational structure, oversees compliance with privacy laws, serves as a point of contact for regulatory authorities, and provides guidance on data protection issues.
Establishment of a Privacy Team: Complementing the DPO, this team comprises individuals with expertise in various aspects of data privacy and security. Their role includes monitoring data handling practices, implementing privacy policies, and ensuring these practices align with legal and ethical standards.

7. Employee Education and Engagement: Recognizing that a well-informed workforce is key to effective privacy management, Odeka places a high priority on training and engaging its employees:

Regular Training Programs: These programs cover topics such as compliance with global privacy laws, best practices in data management, and the importance of maintaining confidentiality and integrity of user data.
Continuous Learning and Development: Beyond initial training, we provide ongoing learning opportunities to keep our staff updated on the latest developments in privacy and data protection.

Data Retention and Management

1. Data Retention Policy: Odeka adheres to a principled approach regarding the retention of personal data:

Retention Period: Personal data shall be retained only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements. The criteria used to determine the appropriate retention period include the duration of our ongoing relationship with you, the existence of a legal obligation, or whether retention is advisable in light of our legal position (such as in regard to applicable statutes of limitations, litigation, or regulatory investigations).

2. Data Deletion and Anonymization: Upon expiration of the retention period, personal data shall be:

Securely Deleted: Ensuring that your information is securely and permanently erased from our systems.
Anonymized: Where deletion is not possible, such as in cases where data is used for analytical purposes, data will be irreversibly anonymized, removing any personal identifiers.

3. Data Management Practices: Odeka employs rigorous data management practices to uphold data integrity and precision:

Data Quality: We take reasonable steps to ensure that the personal data we hold is accurate, complete, and up-to-date.
Data Minimization: Consistent with the principles of data minimization, we only collect and process the minimum amount of personal data necessary for the specified purposes.

4. Legal Basis for Processing: Processing of personal data by Odeka is grounded on several legal bases:

Consent: In certain instances, we process data based on the explicit consent of the data subject.
Contractual Necessity: Where processing is necessary for the performance of a contract with the data subject or to take steps at their request before entering into such a contract.
Legal Obligation: Processing necessary for compliance with a legal obligation to which Odeka is subject.
Legitimate Interests: Processing based on legitimate interests pursued by Odeka or a third party, provided those interests are not overridden by the interests or fundamental rights and freedoms of the data subject.

5. Handling Data Subject Requests: Odeka has established procedures for handling requests from data subjects regarding their personal data, including:

Request Fulfillment: Ensuring timely response to requests for accessing, correcting, deleting, or transferring personal data.
Verification of Identity: Implementing measures to verify the identity of the person making the request to protect user privacy.
Communication: Keeping data subjects informed about the status of their requests and any actions taken.

6. Impact Assessments and Privacy by Design: In line with our commitment to privacy by design principles, Odeka conducts:

Data Protection Impact Assessments (DPIAs): Regular assessments to evaluate the impact of processing activities on the privacy of individuals.
Proactive Privacy Measures: Incorporating data protection from the onset of the designing of systems and processes.

Children's Privacy and Special Categories of Data

1. Children's Privacy: Odeka recognizes the importance of protecting the privacy and safety of children:

Age Limitations: Our service is not intended for children under a certain age (e.g., 13 years old, or the minimum age in the relevant territory), and we do not knowingly collect personal data from children below this age limit.
Parental Consent: In cases where we need to collect personal data from children under the age limit, we will seek parental consent prior to collection, unless the request for information falls within an exception permitted by law.
Verification and Protection: We take additional steps to protect the privacy and security of children's data, including verifying the age and consent, and implementing robust data security measures.

2. Special Categories of Data: Special care is taken in handling special categories of personal data, which include details about an individual's race, ethnic origin, politics, religion, trade union membership, genetics, biometrics, health, sex life, or sexual orientation:

Restrictions on Processing: Odeka generally does not collect or process such special categories of data unless required or permitted by law, or with explicit consent.
Enhanced Safeguards: Where such data is processed, enhanced safeguards are put in place to ensure its security and confidentiality.

3. Sensitive Information: Sensitive information, such as financial data, is subject to heightened security and confidentiality measures:

Encryption and Security Protocols: Financial data is encrypted and processed through secure channels.
Limited Access: Access to sensitive information is restricted to authorized personnel only, and is subject to stringent confidentiality obligations.

Third-Party Privacy Practices

Odeka's interaction with third-party services is a crucial aspect of our operations, especially in areas like payment processing, analytics, and advertising. Understanding the importance of privacy in these interactions, we implement stringent policies and practices to ensure the protection of our users' data.

1. Selection and Vetting of Third Parties:

Rigorous Vetting Process: Before engaging with any third-party service provider, Odeka conducts a thorough vetting process. This includes assessing their privacy policies, data security measures, and compliance with relevant data protection regulations.
Privacy and Security Standards: We only partner with third parties that demonstrate a strong commitment to privacy and security, aligning with our own standards and values.

2. Data Sharing Agreements:

Contractual Obligations: Each third-party service provider is bound by a contractual agreement that strictly governs how they can use, store, and handle user data. These agreements stipulate adherence to privacy laws and the responsibility to protect user data.
Limitation on Data Use: Contracts with third parties explicitly limit the use of Odeka user data to the specific purposes for which it was shared, prohibiting its use for any unrelated purposes.

3. Compliance with Privacy Laws:

Global Standards Compliance: Third parties are required to comply with international privacy standards such as GDPR, CCPA, and other regional data protection laws, ensuring a consistent level of data protection regardless of geographical location.
Regular Compliance Audits: Odeka conducts regular audits of third-party service providers to verify their compliance with data protection laws and the terms of our agreements.

4. Data Security Measures:

Security Protocols: Third parties are obligated to implement robust security measures, including data encryption, secure data storage, and regular security audits.
Breach Notification Requirements: In the event of a data breach, third-party service providers must promptly notify Odeka and take immediate steps to mitigate any potential harm to users.

5. Transparency with Users:

Disclosure of Third-Party Involvement: Odeka maintains transparency with users regarding the involvement of third-party services in our operations. This includes providing information on what data is shared and for what purposes.
User Consent: Where necessary, we obtain explicit consent from users before sharing their data with third parties.

6. User Data Control:

User Data Access and Deletion Requests: In line with user rights under data protection laws, Odeka facilitates the fulfillment of user requests for access to, or deletion of, their data held by third parties.
Data Portability: Users have the right to request the portability of their data, and Odeka works with third parties to ensure these requests are honored.

7. Continuous Monitoring and Review:

Ongoing Evaluation: Our relationships with third-party service providers are subject to ongoing evaluation and review. This ensures that they continue to meet our high standards for privacy and data protection.
Updating Agreements: As laws and standards evolve, we regularly update our agreements with third parties to reflect new requirements and best practices.

By maintaining strict oversight and transparency in our interactions with third-party service providers, Odeka ensures the ongoing protection and respect of our users' privacy and personal data, in line with our commitment to trust and security.

Financial Transactions and Data Security

1. Comprehensive Financial Transaction Capabilities: Odeka's platform is designed to support a wide range of financial activities, catering to the diverse needs of our users. This includes:

Deposits: Enabling users to add funds to their Odeka accounts for seamless purchases or to participate in platform-specific activities.
Purchases: Facilitating transactions for buying products, accessing premium content, or participating in paid events hosted on the platform.
Withdrawals: Allowing content creators and sellers to withdraw their earnings via their preferred payment methods.

These transactions are supported through integrated payment services like Stripe, PayPal, and various mobile money options, each offering a secure and convenient way to manage finances on Odeka.

2. Detailed Data Collection in Financial Transactions: In managing these financial transactions, Odeka collects a range of data to ensure security and efficiency:

Personal and Financial Information: This encompasses a user’s full name, contact details, billing address, and payment method details, including credit/debit card numbers, bank account information, and mobile money accounts. This data is crucial for processing transactions and providing receipts.
Verification Data: In compliance with global KYC regulations, we collect data such as government-issued ID numbers, tax identification numbers, and other verification documents. This ensures the legitimacy of transactions and helps prevent financial fraud.

3. Utilization of Financial Information: The collected financial data serves multiple essential functions on the platform:

Transaction Processing: This is the primary use, where user data is employed to process deposits, purchases, and withdrawals smoothly and efficiently.
Fraud Prevention and Security Measures: Utilizing advanced algorithms and security protocols, the data helps in identifying and preventing unauthorized or fraudulent transactions.
Customer Support and Dispute Resolution: In cases of transaction disputes or queries, this data is critical in providing timely and effective support to users.

4. Information Sharing with Payment Service Providers: Collaboration with third-party payment processors is vital for financial operations:

Selective Information Sharing: When a user selects a payment method like Stripe, PayPal, or a mobile money service, only the necessary information is shared with these providers to process the transactions.
Ensuring Data Protection Compliance: Agreements with these providers include clauses that obligate them to maintain the confidentiality and security of user data and to use it only for the intended transaction processing.

5. Enhanced Security Measures for Financial Data: To safeguard user financial data, Odeka implements several security measures:

Encryption Protocols: Utilizing industry-standard encryption methods, both during data transmission and storage, to protect sensitive financial information.
Access Control Mechanisms: Implementing stringent access controls to ensure that only authorized personnel can access and process financial data.
Ongoing Monitoring and Auditing: Regularly monitoring financial transactions and conducting audits to swiftly identify and rectify any security vulnerabilities.

6. Rigorous Compliance with Financial Regulations: Adhering to global financial standards and regulations is a priority for Odeka:

PCI DSS Compliance: Ensuring that all credit and debit card transactions meet the standards set by the Payment Card Industry Data Security Standard.
AML and KYC Regulation Adherence: Following strict Anti-Money Laundering procedures and Know Your Customer guidelines to prevent financial misconduct.

7. Proactive User Responsibilities and Education: Odeka encourages users to actively participate in securing their financial information:

Secure Account Management: Users are advised to use strong, unique passwords for their Odeka accounts and to regularly update these passwords.
Vigilant Transaction Monitoring: Users are encouraged to regularly review their transaction histories and immediately report any unrecognized or suspicious transactions.

8. Transparent and User-Controlled Financial Transactions: Transparency and user control are key aspects of financial transactions on Odeka:

Clear Transaction Records: Users have access to detailed records of all their financial activities on the platform, including timestamps, amounts, and transaction statuses.
Consent-Based Transactions: All financial transactions are processed based on explicit user consent, with users having the ability to choose and modify their preferred payment methods.

9. Advance Notification of Changes in Financial Services: Odeka is committed to keeping users informed about any changes to its financial services:

Timely Updates: Any introduction of new payment methods, adjustments in processing fees, or changes in financial policies will be communicated to users well in advance through emails, platform notifications, or updates to the website.

User-Centric Communication: Recognizing the importance of clear and transparent communication, Odeka ensures that all notifications regarding changes in financial services are presented in an easily understandable format. This helps users make informed decisions about their continued use of our financial services.
Feedback and Consultation: Prior to implementing significant changes, Odeka may seek feedback from a representative segment of our user base. This consultative approach allows us to gauge user response and make adjustments that align with the needs and preferences of our community.
Comprehensive Details on Changes: When announcing changes, we provide comprehensive details, including the effective date of changes, reasons for the changes, and any potential impact on users. This might include changes in transaction fees, introduction of new payment methods, or alterations in withdrawal limits.
Flexible Adaptation Period: Whenever possible, Odeka offers a grace period after announcing changes, allowing users time to adapt to the new financial conditions. This period is also utilized to address any concerns or questions from users, ensuring a smooth transition.
Continuous Monitoring and Evaluation: Following the implementation of changes, Odeka closely monitors the impact on user experience and transaction processes. This ongoing evaluation helps us to quickly identify and address any issues, ensuring that our financial services remain efficient, secure, and user-friendly.
Regulatory Compliance: All changes are made in strict adherence to regulatory requirements. We ensure that any modifications to our financial services comply with legal standards and industry best practices. This commitment to regulatory compliance not only protects our users but also reinforces the integrity of our platform.
Accessibility of Updated Information: All updated information regarding financial services will be made accessible on our website and through our user interfaces. Users can easily access the latest information on our financial policies, transaction procedures, and any other relevant details at any time.

By maintaining a user-focused approach and adhering to regulatory standards, Odeka ensures that all changes to its financial services are implemented with the utmost consideration for user needs and legal compliance. This commitment to transparency, communication, and continuous improvement underpins our dedication to providing a secure and trustworthy financial environment for all our users.