DATA PROTECTION POLICY
Medikia Finance Limited
Last updated [Tuesday, June 8]
1. Introduction
Medikia Finance Limited (“Medikia”, “we”, “our”, or “us”) is committed to protecting the confidentiality, integrity, and availability of personal and business information processed through the Medikia platform.
This Data Protection Policy outlines how Medikia safeguards user data and complies with applicable data protection regulations.
2. Scope
This policy applies to all personal and business data collected, processed, stored, or transmitted through Medikia’s systems, applications, and financial services.
They help improve user experience and platform performance.
It applies to:
- healthcare providers using the Medikia platform
- employees and contractors
- service providers and partners handling Medikia data.
3. Data Protection Principles
Medikia processes personal data according to the following principles:
- Lawful and transparent processing
- Purpose limitation
- Data minimization
- Accuracy and integrity
- Storage limitation
- Confidentiality and security.
4. Data Security Measures
Medikia maintains technical and organizational safeguards designed to protect information from unauthorized access or misuse.
Security measures may include:
- encrypted data transmission
- secure server infrastructure
- role-based access control
- audit logging and monitoring
- regular security assessments.
5. Data Retention
User data will be retained only for the duration necessary to:
- provide financial services
- comply with regulatory requirements
- maintain transaction records
- prevent fraud and financial crime.
6. Data Breach Management
In the event of a data breach, Medikia will take immediate steps to:
- contain and investigate the breach
- assess potential risks
- notify affected parties and regulators where required.
7. Regulatory Compliance
Medikia processes data in compliance with applicable data protection laws including the Nigeria Data Protection Act (NDPA) and related regulations.