Last updated: 27 April 2026

Privacy Policy

This policy describes how Dryve (operated in connection with Qodemorph Consulting) handles personal data when you use our website and related services. We respect your privacy and process data in line with the Nigeria Data Protection Act 2023 (NDPA), subsidiary instruments issued under it, and good industry practice.

1. Data controller

The data controller for Dryve is Qodemorph Consulting in respect of the Dryve platform ("we", "us"). Contact: support@dryve.ng.

2. What we collect

Depending on how you use Dryve, we may process:

  • Account and profile: name, email address, Nigerian phone number, password (stored using strong one-way hashing—we do not store your password in plain text), and role (rider, vendor, or administrator).
  • Vendor and business data: business name, CAC registration number, business address, application status, and related operational data.
  • Verification documents: uploads such as CAC certificates and utility bills, and vehicle listing photos, stored on our file infrastructure for review, fraud prevention, and service delivery.
  • Booking and trip data: pickup details, hire dates and duration, pricing snapshots, payment method type, bank transfer references and verification status, ratings and reviews you submit, and messages or notes entered into the booking flow.
  • Technical and usage data: IP address, device and browser type, pages viewed, and cookies or similar technologies used to keep you signed in and secure our service (see Section 7).
  • Support and communications: information you send when you contact us (for example via email or contact forms).

3. Why we use your data

We process personal data to:

  • Create and manage accounts and authenticate users;
  • Operate the marketplace (listings, search, bookings, vendor dashboards, admin moderation);
  • Verify vendors and bank payments, prevent fraud, and enforce our terms;
  • Send transactional messages (for example password reset emails when you request them);
  • Improve reliability, security, and product experience through analytics that do not require selling your personal data;
  • Comply with legal obligations and respond to lawful requests from public authorities.

Our lawful bases include contract (providing the service you asked for), legitimate interests (securing and improving the platform, except where overridden by your rights), legal obligation, and consent where we rely on it (we will make that clear at the point of collection).

4. Sharing and processors

We do not sell your personal data. We share data only as needed to run Dryve, including with:

  • Vendors — limited rider and trip information so they can fulfil confirmed bookings (for example name, contact where provided in the product, pickup, schedule, and vehicle-related details).
  • Service providers infrastructure partners who host data, run the application, store files, send transactional messages, and provide related technical services on our behalf. These processors act on our instructions and are bound by contract to protect your data.
  • Authorities — when required by law or to protect rights, safety, and integrity of users and the platform.

Some processors may store or process data outside Nigeria. Where we transfer personal data internationally, we use appropriate safeguards such as standard contractual clauses or other mechanisms recognised under Nigerian law.

5. Retention

We keep data for as long as your account is active and for a reasonable period afterwards to resolve disputes, enforce agreements, and meet legal, tax, and accounting requirements. Verification documents and booking records may be retained longer where the law or fraud prevention requires. When retention ends, we delete or anonymise data where feasible.

6. Security

We use technical and organisational measures appropriate to the risk, including encryption in transit (HTTPS), access controls, hashed passwords, and restricted admin access to sensitive documents (for example time-limited links for document review). No method of transmission or storage is 100% secure; please use a strong, unique password and protect your devices.

7. Cookies and similar technologies

We use cookies and local storage as needed for session management, authentication, preferences (such as theme), and security. You can control cookies through your browser settings; blocking essential cookies may prevent parts of the site from working.

8. Your rights

Subject to applicable law, you may have the right to access, correct, or delete your personal data; restrict or object to certain processing; withdraw consent where processing was based on consent; and request a copy of data in a portable format where technically feasible.

To exercise your rights, email support@dryve.ng. You may also lodge a complaint with the Nigeria Data Protection Commission (NDPC) if you believe we have infringed the law.

9. Children

Dryve is not directed at children under 16. We do not knowingly collect personal data from children. If you believe a child has provided us data, contact us and we will take steps to delete it.

10. Changes

We may update this policy from time to time. We will post the new version here and change the "Last updated" date. For material changes, we may provide additional notice (for example by email or a banner on the site) where appropriate.

11. Related

Use of the service is also governed by our Terms of Service.

HomeContact