Privacy Policy

Welcome to TextPoint ("we," "our," or "us"). TextPoint is a premium digital platform operating at textpoint.ng, providing users with instant access to virtual and foreign phone numbers for receiving SMS and OTP verification codes from apps and online services around the world.

We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains what information we collect, how we use it, when we share it, and the choices you have regarding your data.

2.1 Information You Provide Directly

• Full name and email address (when you register an account)
• Password (stored in hashed/encrypted form — never in plain text)
• Phone number (if provided for account recovery or verification)
• Payment information (transaction references and wallet funding details — we do not store card or bank account details directly)
• Support messages submitted through our ticketing system

2.2 Information Collected Automatically

• IP address and approximate geographic location
• Browser type, operating system, and device information
• Pages visited, session duration, and usage patterns
• Cookies and similar tracking technologies (see Section 7)

2.3 Information from Third Parties

• Payment confirmation data from our payment processing partners
• Virtual number provider data required to facilitate OTP delivery

We use the information we collect for the following purposes:

• Account creation, authentication, and management
• Processing wallet funding and service transactions
• Delivering virtual numbers and forwarding OTP messages to your account
• Sending transactional notifications (order confirmations, wallet credits, security alerts)
• Responding to support tickets and customer enquiries
• Detecting and preventing fraud, abuse, and unauthorised access
• Complying with applicable Nigerian laws and regulations
• Improving our platform through aggregated, anonymised analytics
• Sending promotional communications (with your consent — you may opt out at any time)

We process your personal data under the Nigeria Data Protection Act (NDPA) 2023 on the following legal bases:

• Contract performance: Processing is necessary to provide the services you have requested.
• Legitimate interests: We process certain data to maintain platform security, prevent fraud, and improve our services.
• Legal obligation: We may process data as required by Nigerian law, including the NDPA 2023.
• Consent: Where we rely on your consent (e.g., marketing emails), you may withdraw it at any time without affecting the lawfulness of prior processing.

5.1 Service Providers

We share data with trusted third-party providers who assist in operating our platform, including:

• Payment processing partners — for wallet funding and transactions
• Virtual number aggregators — to provision and deliver OTP services
• Web hosting and cloud infrastructure providers

These providers are contractually bound to handle your data securely and only for the purposes we specify.

5.2 Legal and Regulatory Disclosure

We may disclose your information where required by law, court order, or government authority, or where we reasonably believe disclosure is necessary to protect the rights, property, or safety of TextPoint, our users, or the public.

5.3 Business Transfers

If TextPoint is involved in a merger, acquisition, or asset sale, your personal data may be transferred as part of that transaction. We will notify you before your data becomes subject to a different privacy policy.

We retain your personal data for as long as your account is active, or as long as necessary to provide our services and comply with legal obligations.

• Account data: Retained for the lifetime of your account and up to 2 years after deletion.
• Transaction records: Retained for a minimum of 6 years in accordance with Nigerian financial record-keeping requirements.
• Support correspondence: Retained for up to 2 years after the ticket is closed.
• Usage logs: Retained for up to 12 months for security and debugging purposes.

TextPoint uses cookies and similar technologies to maintain your session, remember your preferences, and analyse platform usage.

• Essential cookies: Required for the platform to function (e.g., session authentication).
• Analytical cookies: Used to understand how users interact with the platform.
• Security cookies: Used to detect and prevent fraudulent activity.

You can manage cookies through your browser settings. Disabling essential cookies may prevent certain features from working correctly.

We implement appropriate technical and organisational security measures, including:

• Password hashing using industry-standard algorithms
• Two-factor authentication (2FA) options
• Email alerts for sensitive account actions
• HTTPS encryption for all data in transit
• Strict access controls to limit employee access to personal data

Under the Nigeria Data Protection Act (NDPA) 2023, you have the following rights regarding your personal data:

• Right of access: Request a copy of the personal data we hold about you.
• Right to rectification: Request correction of inaccurate or incomplete data.
• Right to erasure: Request deletion of your personal data, subject to legal retention requirements.
• Right to data portability: Request your data in a structured, machine-readable format.
• Right to object: Object to processing based on legitimate interests or for direct marketing.
• Right to withdraw consent: Where processing is based on consent, you may withdraw it at any time.

To exercise any of these rights, please contact us using the details in Section 13. We will respond within 30 days.

TextPoint is not intended for use by persons under the age of 18. We do not knowingly collect personal data from minors. If you believe we have inadvertently collected data from a person under 18, please contact us immediately and we will promptly delete it.

Our platform may contain links to third-party websites or services. This Privacy Policy applies only to TextPoint. We are not responsible for the privacy practices of third parties and encourage you to review their privacy policies independently.

We may update this Privacy Policy from time to time to reflect changes in our services, legal requirements, or business practices. When we make material changes, we will notify you by email or by posting a prominent notice on the platform, at least 14 days before the changes take effect.

Continued use of TextPoint after the effective date of any update constitutes your acceptance of the revised policy.

If you have questions about this Privacy Policy, wish to exercise your data rights, or want to report a privacy concern, please reach out: