Virideed
Privacy Policy
Introduction
Welcome to Virideed, a platform dedicated to empowering businesses worldwide to meet sustainability goals with precision, confidence, and clarity. At our core, we believe privacy isn’t just a rule—it’s a promise. This Privacy Policy is your guide to how we collect, use, and protect the data you share as you engage with our compliance services. Whether you’re submitting sustainability metrics, generating regulatory reports, managing your account, or exploring our tools, we’re committed to handling your information responsibly, ensuring it fuels progress without compromising security.
This policy governs all data we process—think business details like company size or emissions data, compliance records for audits, and limited personal info like your email or name. Our mission is to strike a balance: delivering powerful tools that drive environmental impact while upholding transparency and trust. We operate under the laws of the Federal Republic of Nigeria, while also aligning our data protection practices with rigorous international standards such as the Nigeria Data Protection Act (NDPA), GDPR, and other applicable global regulations. When you choose Virideed, you entrust us with your data, and we honor that trust by prioritizing its safety, giving you control, and keeping you informed every step of the way.
Here’s what you’ll find in this policy: We’ll detail how we collect your data to power our services, use it to deliver results and refine our platform, and secure it with cutting-edge measures. We explain when trusted third parties—like cloud providers or regulators—access it, how long we retain it, and the safeguards for transfers across borders. You’ll see your rights to access, edit, or erase your data, plus special protections keeping kids out of our grown-up tools. Cookies help us optimize your experience, and we’ll notify you of any policy updates. Our Data Protection Officer stands ready to assist—all reachable at support@virideed.com.
Virideed isn’t just about compliance—it’s about building a sustainable future with you. Your data plays a vital role, and this policy reflects our pledge to use it wisely, protect it fiercely, and respect your choices. Governed by Nigerian laws and global privacy frameworks including GDPR, CCPA, and ISO/IEC 27001 for data security, we invite you to explore the sections ahead for a deeper look at our practices across environmental compliance and AI governance services. Have questions or need support? Contact us anytime at support@virideed.com. Together, we’re shaping a greener world, powered by trust and protected by purpose.
Data Collection
Virideed collects compliance-related data to provide sustainability compliance and AI governance services, including dynamic form generation, centralized data management, regulatory reporting, and AI system monitoring. This section outlines the types of data we collect, how we collect it, and the purposes for which it is used. We are committed to transparency and compliance with global privacy laws and AI governance frameworks to protect your data and privacy.
1. Types of Data Collected
We collect the following categories of data to deliver our services and ensure compliance with regulatory requirements across environmental and AI governance domains. This data is essential for generating forms, managing compliance data, monitoring AI systems, and providing transparency to regulators and stakeholders.
-
Compliance Data: Industry-specific metrics, location-based regulatory requirements, and business information necessary for generating compliance forms and reports.
- Example: Manufacturing emissions data, energy usage metrics, or location-specific environmental regulations.
-
AI Governance Data: AI model information, training data metadata, algorithmic decision logs, bias detection results, and ethical compliance metrics for AI system monitoring and auditing.
- Example: AI model performance metrics, fairness assessment results, or algorithmic decision audit trails.
-
Business Information: Details about your organization, such as company name, industry, location, and contact information, to tailor compliance processes and facilitate communication.
- Example: Company address for regional compliance standards or industry classification for form generation.
-
Metadata: Technical data collected automatically, such as IP addresses, browser type, device information, platform usage patterns, and AI system interaction logs to improve platform functionality and analytics.
- Example: IP address for geolocation-based compliance requirements or AI system usage patterns for optimization.
-
Personal Data (Limited): In certain cases, we may collect limited personal data, such as contact details (e.g., email, phone number) for account management, notifications, or support.
- Example: Email address for sending regulatory updates or AI governance alerts.
2. How We Collect Data
Data is collected through various methods to ensure the accuracy and completeness of compliance and AI governance information. These methods include direct input from users, automated processes, and third-party sources, as detailed below:
Direct User Input: You provide compliance data, AI governance information, and business details through forms, dashboards, and account settings on the Virideed platform.
Automated Tracking: Metadata, AI system logs, and technical data is collected automatically when you interact with our platform, using cookies and similar technologies.
Third-Party Sources: We may collect data from trusted third-party sources, such as regulatory databases, AI model repositories, or industry partners, to ensure compliance with updated standards.
AI System Integration: Data is collected through API integrations with your AI systems for real-time governance monitoring, bias detection, and compliance auditing.
3. Purposes of Data Collection
We collect data for specific purposes to deliver our services and ensure compliance with regulatory requirements across sustainability and AI governance. These purposes include:
- Compliance Form Generation: To generate dynamic compliance forms tailored to your industry and location, ensuring accuracy and adherence to regulations.
- AI Governance Monitoring: To monitor AI systems for ethical compliance, bias detection, and performance auditing in accordance with global AI governance standards.
- Regulatory Reporting: To create and share compliance reports with regulators, investors, and stakeholders in standardized formats (e.g., PDF, dashboards, APIs).
- Platform Improvement: To analyze metadata and usage patterns to enhance platform functionality, user experience, and compliance processes.
- Account Management: To manage your account, send notifications (e.g., regulatory updates, AI governance alerts, subscription renewals), and provide support for compliance-related inquiries.
- Risk Assessment: To conduct AI system risk assessments and environmental impact evaluations for comprehensive compliance management.
4. Legal Basis for Data Collection
We collect and process data based on the following legal bases, in compliance with global privacy laws and AI governance frameworks:
- Contractual Necessity: Data collection is necessary to fulfill our contractual obligations, such as generating compliance forms, providing AI governance services, and delivering reporting services.
- Legitimate Interests: We collect metadata, usage data, and AI system information to improve platform functionality, ensure regulatory compliance, and maintain ethical AI governance standards.
- Consent: Where required (e.g., for cookies, non-essential personal data, or specific AI governance monitoring), we obtain your consent before collecting and processing data. You may withdraw consent at any time.
- Legal Obligations: We may collect and retain data to comply with legal obligations, such as audit trails, regulatory reporting, data protection laws, and emerging AI governance regulations.
- Public Interest: For AI governance and sustainability compliance, certain data processing may be necessary for reasons of substantial public interest, such as environmental protection and ethical AI development.
5. Cookies and Tracking Technologies
We use cookies and similar tracking technologies to collect metadata and improve platform functionality across both sustainability and AI governance services. These technologies include:
Details on Cookies and Tracking Technologies (Click to Expand)
- Essential Cookies: Required for platform functionality, such as session management, secure access, and AI system monitoring. These cookies cannot be disabled.
- Analytics Cookies: Used to analyze usage patterns and improve platform performance across sustainability and AI governance features. You can disable these cookies via your browser settings or our cookie banner.
- AI Governance Cookies: Specialized cookies that help monitor AI system interactions, track model performance, and ensure ethical compliance in real-time.
- Managing Preferences: You can manage cookie preferences via our cookie banner or browser settings.
6. Your Choices and Rights
You have control over the data we collect and process across both sustainability and AI governance services. Your choices and rights include:
Opt-Out of Non-Essential Data Collection: You can opt out of non-essential data collection (e.g., analytics cookies, certain AI governance monitoring) via our cookie banner or account settings.
Data Access and Deletion: You have the right to access, modify, or delete your sustainability and AI governance data. Submit requests via our in-platform form or email support@virideed.com. We will respond within 30 days, as required by GDPR.
AI System Transparency: Request explanations of AI-driven decisions and access to algorithmic impact assessments for governed AI systems.
Withdraw Consent: Where data collection is based on consent, you may withdraw consent at any time by updating your account settings or contacting us.
Note: Data collection practices are governed by the laws of Nigeria. We comply with GDPR, CCPA, and other applicable privacy laws, as well as emerging AI governance frameworks to protect your data. For more details on your rights, refer to other sections.
Data Usage
Virideed uses the data we collect—including compliance metrics, business information, AI model data, and limited personal data—to provide our sustainability compliance and AI governance services. This section explains how we use your data across both environmental and AI domains, why we use it, and the legal grounds for doing so. We're committed to using data responsibly under laws like GDPR, CCPA, Nigeria's NDPA, and other applicable regulations.
Environmental Data
Compliance metrics, sustainability reports, and regulatory documentation
AI Governance Data
Model performance metrics, algorithmic fairness data, and compliance records
Personal Data
Limited contact information, user preferences, and authentication data
1. How We Use Your Data
We process your data for specific purposes tied to our dual-domain services. Here's how:
Environmental Compliance
- Generate compliance forms and sustainability reports
- Track regulatory requirements and deadlines
- Calculate environmental impact metrics
AI Governance
- Monitor AI model performance and fairness metrics
- Document algorithmic decision-making processes
- Generate AI compliance and audit reports
Platform Operations
- Manage user accounts and authentication
- Provide customer support and communication
- Improve platform performance and security
2. Purposes of Data Usage
We use your data to achieve the following goals across our service domains:
- Dual-Domain Service Delivery: To provide both environmental compliance tools and AI governance solutions, generating accurate reports for both domains.
- Cross-Domain Communication: To send you updates about regulatory changes, AI governance requirements, or service enhancements.
- Platform Improvement: To analyze usage patterns and make our platform more effective for both sustainability and AI compliance needs.
- Legal & Regulatory Compliance: To meet obligations under environmental regulations, AI governance frameworks, and data protection laws.
- AI Ethics & Fairness Monitoring: To ensure algorithmic systems comply with ethical guidelines and fairness standards.
3. Legal Basis for Data Usage
We only use your data when we have a valid legal reason, with special considerations for AI governance:
- Contractual Necessity: Using your data is required to deliver the services you've signed up for, including both environmental compliance and AI governance features.
- Legitimate Interests: We use data to improve our platform, prevent fraud, and develop new features, ensuring these interests don't override your rights.
- Consent: For non-essential uses like marketing communications or certain analytics, we'll ask for your permission, which you can withdraw anytime.
- Legal Obligation: We use data when required by law, including environmental regulations, AI governance frameworks, and data protection requirements.
- Public Interest: For certain AI governance functions, processing may be necessary for reasons of substantial public interest in accordance with applicable laws.
4. AI-Specific Data Handling
For AI governance services, we implement additional safeguards:
- Algorithmic Transparency: We document data usage in AI systems to enable explainability of automated decisions.
- Bias Monitoring: We regularly test AI systems for discriminatory impacts using appropriate fairness metrics.
- Data Minimization: We collect only necessary data for AI governance functions, avoiding excessive data collection.
- Human Oversight: We maintain human review processes for significant automated decisions affecting individuals.
Transparency Note: We're governed by the laws of Nigeria. All data usage complies with GDPR, CCPA, Nigeria's NDPA, and other relevant regulations including emerging AI governance frameworks. For questions about how we use your data across environmental or AI domains, contact our Data Protection Officer at support@virideed.com.
Your Data Rights
You have rights regarding your data, including:
Data & AI Security
Virideed prioritizes the security of your compliance-related data across both environmental sustainability and AI governance domains. This section outlines the comprehensive measures we implement to protect your data, including sustainability metrics, AI model information, business data, and limited personal data. All stored data is encrypted and securely managed to ensure confidentiality, integrity, and availability across our dual-domain platform.
Infrastructure Security
Secure cloud hosting, network protection, and physical security measures
Data Protection
Encryption, access controls, and data loss prevention
AI System Security
Model protection, algorithmic integrity, and AI-specific safeguards
1. Security Measures
We employ industry-standard practices to safeguard your data against unauthorized access, loss, or alteration across both environmental and AI governance domains:
Data Protection
- Encryption: All data encrypted at rest using AES-256 and in transit using TLS 1.3
- Access Controls: Role-based access controls (RBAC) with principle of least privilege
- Data Masking: Sensitive AI model parameters and compliance data masked in non-production environments
Infrastructure Security
- Secure Infrastructure: Hosted on trusted cloud providers with robust physical and digital security
- Network Security: Firewalls, DDoS protection, and intrusion detection systems
- Regular Audits: Periodic security audits and vulnerability assessments
AI-Specific Security
- Model Integrity: Digital signatures and checksums for AI model files
- Adversarial Protection: Monitoring for model evasion attacks and data poisoning
- Secure AI Pipelines: Protected CI/CD pipelines for model deployment
2. Compliance with Standards
Our security practices align with recognized industry standards and emerging AI governance frameworks:
Information Security
- ✓ SOC 2 Type II Compliant
- ✓ NIST Cybersecurity Framework
Data Privacy
- ✓ GDPR & CCPA Compliant
- ✓ Nigeria NDPA Aligned
- ✓ Data Protection by Design
AI Governance
- ✓ NIST AI RMF Alignment
- ✓ EU AI Act Preparedness
- ✓ Algorithmic Impact Assessments
3. Incident Response
In the unlikely event of a security incident affecting environmental compliance data, AI governance systems, or personal information, we have a comprehensive response plan:
Our Incident Response Process
Immediate identification and impact assessment
Isolate affected systems and prevent spread
Notify affected parties within 72 hours as required
Eradicate threat and restore normal operations
AI-Specific Incident Handling
For AI governance incidents (model manipulation, data poisoning, etc.), we implement additional measures:
- Immediate model rollback to last verified version
- Forensic analysis of training data and model behavior
- Notification to AI ethics board and regulatory bodies as required
4. Your Responsibilities
While we take extensive measures to secure your data across both environmental and AI domains, you also play a crucial role in maintaining security:
Account Security
- Use strong, unique passwords and enable MFA
- Regularly review account access logs
- Never share credentials with third parties
Data Management
- Ensure uploaded data is accurate and malware-free
- Classify sensitive data appropriately
- Follow data retention and deletion policies
AI Governance
- Monitor AI system outputs for anomalies
- Report potential model drift or bias issues
- Maintain documentation for AI compliance
Security Reporting
If you suspect a security issue with your account, our platform, or identify potential AI system vulnerabilities:
Security Commitment: Our security measures are regularly updated to address emerging threats in both cybersecurity and AI governance. We comply with applicable laws in Nigeria and international standards. For detailed technical security information or our full Incident Response Plan, contact security@virideed.com.
Third-Party Access
Virideed may share compliance-related data with trusted third parties to deliver our sustainability compliance and AI governance services, such as form generation, regulatory reporting, AI model monitoring, and platform support. This section explains who these third parties are, why we share data with them, and how we ensure your data remains secure during these interactions. We are committed to transparency and protecting your privacy in all third-party engagements.
1. Types of Third Parties
We work with the following categories of third parties to provide our services. Data shared with them is limited to what is necessary for their specific roles:
| Third-Party Category | Purpose of Data Sharing |
|---|---|
| Cloud Service Providers | Host and store compliance data and AI model information securely (e.g., AWS, Google Cloud, Azure). |
| Regulatory Bodies | Submit environmental compliance reports and AI governance documentation as required by law or your instructions. |
| AI Model Providers | Process AI governance data for model performance monitoring, fairness assessments, and bias detection. |
| Analytics Providers | Analyze platform usage and AI system performance to improve functionality (e.g., Google Analytics, Mixpanel). |
| Support Partners | Provide customer support and resolve technical issues across both environmental and AI governance domains (e.g., Zendesk, Freshdesk). |
| Environmental Auditors | Verify sustainability compliance data and generate independent audit reports. |
2. Purposes of Sharing Data
We share data with third parties only for specific, legitimate purposes related to our services:
- Service Delivery: To host data, process compliance forms, monitor AI model performance, and generate reports efficiently.
- Legal Compliance: To meet regulatory requirements for both environmental standards and AI governance frameworks or respond to lawful requests from authorities.
- Platform Improvement: To analyze usage patterns across both service domains and enhance user experience, using aggregated or anonymized data where possible.
- AI System Operations: To monitor model performance, detect bias, and ensure algorithmic fairness through specialized third-party tools.
- Support Services: To assist with account management, technical troubleshooting, or compliance inquiries across environmental and AI governance domains.
3. Safeguards for Third-Party Access
We implement strict measures to protect your data when shared with third parties:
- Data Processing Agreements: All third parties sign agreements that enforce GDPR, NDPA, and AI governance-compliant security and confidentiality standards.
- Limited Access: Third parties receive only the data necessary for their specific purpose, with strict data minimization principles applied to AI model data.
- Encryption: Data shared with third parties is encrypted in transit (TLS 1.3) and, where applicable, at rest (AES-256), including AI model parameters and training data.
- Vendor Assessments: We evaluate third parties' security practices and AI ethics compliance before engagement and monitor compliance ongoingly.
- AI-Specific Protections: For AI governance data, we implement additional safeguards including model anonymization, federated learning options, and bias prevention clauses.
4. International Data Transfers
When data is transferred around the world or outside Nigeria, we ensure adequate protection through:
- Adequacy Decisions: Transfer to countries with approved data protection standards
- Standard Contractual Clauses: EU-approved clauses for GDPR-compliant transfers
- Binding Corporate Rules: For intra-organizational transfers within corporate groups
- NDPA Compliance: All international transfers comply with Nigeria's Data Protection Act requirements
5. Your Rights and Choices
You have control over how your data is shared with third parties:
- Opt-Out Options: You can opt out of non-essential data sharing (e.g., analytics, AI model improvement) via account settings or our privacy preferences center.
- Request Information: Contact us at support@virideed.com to request details about third parties accessing your data across both service domains.
- Restrict Sharing: Where legally permitted, you may request restrictions on data sharing for specific purposes, though this may limit service functionality (e.g., regulatory reporting, AI model optimization).
- AI Governance Controls: You can manage preferences for AI model data sharing and participate in federated learning options where available.
Note: Third-party access is governed by the laws of Nigeria. We ensure all data sharing complies with GDPR, CCPA, Nigeria's NDPA, and emerging AI governance frameworks. For more details, see other sections.
User Rights
Virideed respects your rights over your data, including compliance-related information, AI governance data, and limited personal data collected through our platform. This section outlines the rights you have under applicable privacy laws, such as GDPR, CCPA, NDPA, and emerging AI governance frameworks, and how you can exercise them. We aim to empower you with control and transparency over your data across both environmental and AI governance domains.
1. Your Rights
Depending on your location and applicable laws, you may have the following rights regarding your data:
- Right to Access: You can request a copy of the data we hold about you, including compliance data, AI model interactions, and personal information.
- Right to Rectification: If your data is inaccurate or incomplete, you can request corrections to ensure it reflects accurate information.
- Right to Erasure: You can request deletion of your data, subject to legal or contractual obligations we must retain (e.g., audit trails, AI model training records).
- Right to Restrict Processing: You can request that we limit how we use your data, such as stopping non-essential processing, though this may affect service functionality.
- Right to Data Portability: You can request your data in a structured, machine-readable format (e.g., CSV, JSON) to transfer it to another provider.
- Right to Object: You can object to data processing based on legitimate interests (e.g., analytics, AI model training), and we will stop unless we have compelling reasons to continue.
- Right to Withdraw Consent: Where we rely on your consent, you can withdraw it at any time via account settings or by contacting us.
- Right to Human Review: You can request human review if an automated decision significantly affects you, including AI-driven compliance assessments.
- Right to Algorithmic Transparency: You can request meaningful explanations of AI system decisions that affect your rights or interests.
- Right to Bias Correction: You can request review and correction of potentially biased outcomes from AI systems.
2. How to Exercise Your Rights
You can exercise your rights through the following methods:
- In-Platform Requests: Use the data management tools in your account dashboard to access, edit, or delete your data directly.
- Email Requests: Send a detailed request to support@virideed.com, specifying your right and relevant details.
- AI-Specific Requests: For algorithmic transparency or bias concerns, contact support@virideed.com.
- Response Time: We will respond within 30 days (or 72 hours for urgent requests). Complex AI-related requests may take up to 90 days with prior notice.
3. Limitations and Exceptions
While we strive to honor all rights, certain limitations may apply:
- Legal Obligations: We may retain data to comply with laws (e.g., tax records, regulatory audits, AI governance requirements), even if you request erasure.
- Service Functionality: Restricting or deleting data may limit features like compliance reporting, form generation, or AI model performance.
- Verification: We may require identity verification to process requests and prevent unauthorized access.
- AI Model Integrity: Certain AI training data may be retained to ensure model accountability and audit trails.
Need Help? If you have questions about your rights or need assistance exercising them, contact our Data Protection Officer here Contact Us.
Note: Your rights are governed by the laws of Nigeria. We comply with GDPR, CCPA, Nigeria's NDPA, and emerging AI governance frameworks. To lodge a complaint, contact us or your local data protection authority.
Data Retention
Virideed retains compliance-related data, AI governance data, business information, and limited personal data only as long as necessary to provide our services, meet legal obligations, or fulfill legitimate business purposes. This section outlines our retention periods, the factors determining them, and how you can request data deletion across both environmental and AI governance domains.
1. Retention Periods
We retain different types of data for varying periods based on their purpose and legal requirements:
- Compliance Data: Retained for the duration of your subscription or token exhaustion plus 7 years to comply with regulatory audit requirements for both environmental and AI governance frameworks.
- AI Model Data: Training data and model performance metrics retained for 5 years to ensure algorithmic accountability and audit trails.
- Business Information: Kept for the duration of your account's active use and up to 2 years after account closure for record-keeping and support purposes.
- Personal Data: Limited personal data (e.g., email) is retained while your account is active and deleted within 30 days of account closure, unless legally required otherwise.
- Metadata: Usage data (e.g., IP addresses, analytics) is retained for up to 12 months for platform improvement, then anonymized or deleted.
2. Criteria for Retention
We determine how long to retain data based on the following factors:
- Service Delivery: Data is kept as long as needed to generate compliance forms, AI governance reports, and provide platform functionality.
- Legal Obligations: Retention aligns with laws requiring record-keeping for environmental compliance and emerging AI governance frameworks.
- AI Accountability: Model training data and performance metrics retained to ensure algorithmic transparency and bias monitoring.
- Legitimate Interests: Data may be retained to resolve disputes, enforce agreements, or improve services, unless you object.
- User Requests: We adjust retention based on your requests (e.g., erasure), subject to legal exceptions.
3. Data Deletion and Anonymization
When data is no longer needed, we take the following steps:
- Deletion: Data is securely deleted from our systems and backups within 30 days of the retention period ending or your request, unless legally required to retain it.
- AI Model Sanitization: AI training data is purged from models through retraining processes when deletion requests are received.
- Anonymization: Metadata or aggregated data may be anonymized for analytics purposes, removing identifiable information.
- Secure Methods: We use industry-standard techniques (e.g., data shredding, overwriting) to ensure deleted data cannot be recovered.
Request Deletion: You can request data deletion at any time via your account dashboard or by emailing support@virideed.com.
Note: Retention practices are governed by the laws of Nigeria. We comply with GDPR, CCPA, Nigeria's NDPA, and emerging AI governance frameworks to ensure data is not kept longer than necessary.
International Data Transfers
Virideed operates a global platform to deliver sustainability compliance and AI governance services, which may involve transferring your data—such as compliance metrics, AI model data, business information, or limited personal data—across international borders. This section explains where your data may be transferred, the safeguards we use to protect it, and your rights regarding these transfers. We ensure all transfers comply with applicable privacy laws, including GDPR, CCPA, NDPA, and other regional regulations.
1. Where Your Data May Be Transferred
To provide our services, we may transfer data to the following regions, depending on your location and our operational needs:
| Region | Purpose of Transfer |
|---|---|
| United States | Hosting data on secure cloud servers (e.g., AWS) and processing compliance reports and AI model operations. |
| European Economic Area (EEA) | Supporting EEA-based users and complying with GDPR reporting requirements for both environmental and AI governance. |
| Nigeria | Primary operations and compliance with Nigeria's NDPA for local users and regulatory requirements. |
| Other Regions | Transfers to regulators, AI model providers, or partners as required by your location or industry standards. |
2. Safeguards for International Transfers
We implement robust measures to protect your data during international transfers, ensuring compliance with privacy laws:
- Standard Contractual Clauses (SCCs): For transfers outside the EEA, we incorporate the European Commission's pre-approved contractual clauses into our data processing agreements to ensure adequate protection.
- NDPA Compliance: All transfers involving Nigerian data comply with Nigeria's Data Protection Act requirements and safeguards.
- Encryption: Data is encrypted in transit using TLS 1.3 and at rest using AES-256, preventing unauthorized access during transfer.
- Adequacy Decisions: Where applicable, we rely on adequacy rulings (e.g., EU-US Data Privacy Framework) to transfer data to regions with recognized protection standards.
- Vendor Compliance: Third parties receiving transferred data are bound by agreements enforcing GDPR, NDPA, and CCPA-compliant security practices.
3. Legal Basis for Transfers
We transfer data internationally based on the following legal grounds:
- Contractual Necessity: Transfers are necessary to deliver services (e.g., hosting, AI model processing, reporting) under our agreement with you.
- Consent: Where required, we obtain your consent for transfers (e.g., non-essential analytics), which you can withdraw at any time.
- Legal Obligations: Data may be transferred to comply with regulatory requirements for both environmental compliance and AI governance frameworks.
- Legitimate Interests: Transfers for AI model improvement and platform optimization, balanced with your privacy rights.
4. Your Rights Regarding Transfers
You have control over international data transfers and can exercise the following rights:
- Request Information: Ask for details about where your data is transferred and the safeguards in place by emailing support@virideed.com.
- Withdraw Consent: Opt out of consent-based transfers (e.g., analytics, AI model training) via account settings or by contacting us.
- Restrict Transfers: Request restrictions on transfers, though this may limit services like global reporting or AI model performance, subject to legal obligations.
- AI-Specific Controls: Manage preferences for AI model data transfers through dedicated settings in your account.
We'll respond to your request within 30 days, as required by GDPR, NDPA, and other applicable laws.
Note: International transfers are governed by the laws of Nigeria. We comply with GDPR, CCPA, Nigeria's NDPA, and emerging AI governance frameworks. For concerns, contact us or your local data protection authority.
Children's Privacy
Virideed is committed to protecting children's privacy while delivering our sustainability compliance and AI governance services. Our platform is designed for business professionals and organizations—not for children. We strictly comply with privacy laws including COPPA, GDPR-K, and Nigeria's NDPA to ensure young people's data remains protected.
Our platform is for grown-up sustainability work!
1. Age Requirements
We maintain strict age guidelines to protect young users:
- Business-Focused Platform: You must be at least 16 years old (or 13 in the US with parental consent) to use Virideed.
- No Child Data Collection: We do not knowingly collect personal information from anyone under 16 without verified parental consent.
- Professional Environment: Our services are designed for corporate sustainability and AI governance—not for personal or educational use by minors.
2. Our Protective Measures
We've built multiple safeguards to prevent accidental data collection from children:
We regularly screen for underage accounts
Quick deletion of any underage data found
Verified consent required for young users
3. Parent & Guardian Rights
Parents and guardians have full control over their children's information:
- Review Data: Request to see any information we may have about your child
- Request Deletion: Ask us to permanently remove your child's data
- Withdraw Consent: Revoke previously granted permissions at any time
- Report Concerns: Contact us immediately if you believe a child's data has been collected
Keeping Kids Safe Together
If you're a parent, guardian, or just someone who cares about children's privacy, we're here to help!
Our Promise: While we're busy helping businesses become more sustainable, we're equally committed to protecting the next generation. Governed by Nigerian law and compliant with global children's privacy standards.
Cookies and Tracking Technologies
Virideed uses cookies and similar tracking technologies to make our platform work smoothly, improve your experience, and analyze how our services are used across both environmental compliance and AI governance domains. This section explains what these technologies are, how we use them, and how you can manage them. We're committed to transparency and respecting your privacy under laws like GDPR, CCPA, NDPA, and the ePrivacy Directive.
1. What We Use
We employ the following technologies to collect data like usage patterns, device info, and AI system interactions:
- Cookies: Small text files stored on your device to remember settings, track activity, or authenticate your session across both service domains.
- Web Beacons: Tiny images or scripts in our pages or emails that help us track engagement and system performance.
- Device Identifiers: Data like IP addresses or browser fingerprints to recognize your device and ensure secure access.
- AI Performance Trackers: Monitor AI system interactions and model performance to improve governance tools.
2. Types of Cookies
We use different kinds of cookies for specific purposes:
Essential Cookies
Required for basic platform functions like logging in, form saving, and AI system operations. Cannot be disabled.
Analytics Cookies
Help us understand platform usage and AI system performance to enhance your experience.
Preference Cookies
Remember your settings for dashboard layouts, compliance views, and AI tool preferences.
3. Purposes of Use
These technologies serve the following goals across our dual-domain services:
- Platform Functionality: Ensure core features work properly, including AI governance tools and compliance reporting.
- Performance Optimization: Analyze usage patterns to improve speed and reliability across both service domains.
- AI System Enhancement: Monitor model performance and user interactions to refine our AI governance capabilities.
- User Experience: Personalize your dashboard and tool preferences based on your usage patterns.
4. Your Choices
You have control over how we use cookies and tracking technologies:
- Cookie Consent Manager: Customize your preferences through our cookie banner and account settings.
- Browser Controls: Manage cookies through your browser settings, though this may affect platform functionality.
- AI Tracking Preferences: Adjust AI performance tracking through dedicated privacy settings.
- Contact Support: Email support@virideed.com for assistance with cookie management.
Note: Essential cookies for platform operations and AI system functionality cannot be disabled.
Compliance Note: Our use of cookies complies with the laws of Nigeria, including GDPR, CCPA, NDPA, and emerging digital governance frameworks.
Policy Changes
Virideed may update this Privacy Policy from time to time to reflect changes in our services, legal requirements, or business practices across both environmental compliance and AI governance domains. This section explains how we handle updates, how we notify you, and what you can do if you're affected. We're committed to keeping you informed and respecting your rights under laws like GDPR, CCPA, and Nigeria's NDPA.
1. How We Update the Policy
We revise this Privacy Policy when needed to accommodate new features, regulatory changes, or evolving data processing practices:
- Updates to reflect new AI governance frameworks or environmental compliance requirements
- Changes to data processing activities across our dual-domain services
- Adaptations to new privacy regulations in Nigeria and internationally
Changes take effect immediately upon posting unless otherwise specified.
2. How You're Notified
We ensure transparent communication about policy changes through multiple channels:
Website Updates
Updated policy posted at virideed.com/legal/privacy with clear revision dates
Direct Notifications
Email alerts for significant changes affecting your data rights or service usage
Platform Alerts
In-app notifications when you log in to ensure awareness of important updates
3. Your Options
You maintain control when policy changes occur:
- Review Changes: Access the updated policy on our website with highlighted revisions
- Seek Clarification: Contact us at support@virideed.com for questions about changes
- Manage Consent: Update your preferences for new data processing activities
- Exercise Rights: Continue using services to accept changes or discontinue use if you disagree
Legal Framework: Policy changes are governed by Nigerian law. All updates comply with GDPR, CCPA, Nigeria's NDPA, and emerging AI governance requirements. Where changes require additional consent, we will seek your explicit approval.
Contact Information
Virideed wants you to feel comfortable reaching out with any questions, concerns, or requests about your data across both environmental compliance and AI governance services. This section provides our contact details and information about our Data Protection Officer (DPO), who oversees our privacy practices. We're here to help you under laws like GDPR, CCPA, NDPA, and other applicable regulations.
1. How to Contact Us
You can get in touch with us for any privacy-related matters using these methods:
- Email us at support@virideed.com for questions, data requests, or support.
- For AI governance-specific concerns: support@virideed.com
- Write to us at Virideed, 504 Udumukwu Street, WorksLayout, Owerri, Imo State, Nigeria.
- Submit inquiries through our support portal on the Virideed website at virideed.com/contact-us.
We'll respond to your email or written requests within 30 days, or sooner if required by law (e.g., 72 hours for breach notifications).
2. Data Protection Officer
Our Data Protection Officer (DPO) is responsible for ensuring we handle your data properly across all service domains. Here's how to reach them:
- Name: Chidi Ejike
- Email: support@virideed.com
- Mail: Data Protection Officer, Virideed, 504 Udumukwu Street, WorksLayout, Owerri, Imo State, Nigeria
The DPO handles privacy compliance, oversees data practices across environmental and AI governance domains, and is your point of contact for escalated concerns or rights requests under GDPR, NDPA, or similar laws.
We're governed by the laws of Nigeria. If you're not satisfied with our response, you can contact your local data protection authority. We're committed to addressing your needs promptly and fairly.
Quick Links
View more policies.
Terms of Use Compliance Policy GDPR PolicyNeed to get in touch?
We are here to assist you with any questions or issues related to sustainability compliance.
Contact UsNeed to get in touch?
We are here to assist you with any questions or issues related to sustainability compliance.
Contact Us