Skip to content

privacy policy

Effective Date: 20th March 2026

Last Updated: 26th April 2026

Drych Digital Limited (RC 8992375) (“we”, “us”, or “our”), operating under the brand name Drych or Drych Digital, is a creative and digital agency that provides a range of services in web and digital design, branding and media, marketing and advertising, writing and editing, and audits and analytics.

This Privacy Policy explains how we collect, use, store, share, and protect your personal information when you use our services, including when you:

  • Visit our website at drychdigital.com
  • Purchase digital products from us
  • Use our client portal
  • Fill out forms on our website
  • Contact us or engage with us in other ways, including through our services, calls, social media, marketing, or events

This policy is compliant with Nigeria’s Data Protection Act 2023 (NDPA), the EU General Data Protection Regulation (GDPR), the UK GDPR, and the California Consumer Privacy Act (CCPA) where applicable. It applies to all visitors, prospective clients, current clients, and anyone whose personal data we handle in the course of delivering our services.

1. Information We Collect

We collect information in the following ways:

1.1 Information You Give Us Directly

When you contact us, purchase a product, register on our site, express an interest in our services and/or products, or engage our services, you may provide:

  • Your name and business name
  • Email address and phone number
  • Location (city and country)
  • Billing and payment information (processed securely via third-party payment providers)
  • Project briefs, brand assets, and business information
  • Login credentials or access to third-party platforms (such as ad accounts, website backends, or social media accounts) shared with us to deliver your project
  • CV, portfolio, or other application materials
  • Reviews, testimonials, and feedback you submit through our website
  • Any other information you choose to share with us
1.2 Information We Collect Automatically

When you visit our website, we automatically collect:

  • IP address and approximate location
  • Browser type and device information
  • Pages visited, time spent, and how you navigate our site
  • Referral source (how you found us)

This information is collected through cookies and tracking technologies including Google Analytics and Meta Pixel. See our Cookie Policy for more information.

1.3 Information From Third-Party Platforms

When you purchase a digital product such as a template or e-book, we may collect your name, email address, and transaction details through our payment and e-commerce platforms.

When you use our client portal, we collect account login details, payment records, and project activity. Payments are processed through third-party payment platforms including Paystack.

We do not store your card or banking details directly.

1.4 Information We Process on Behalf of Clients

In delivering services such as campaign management, SEO, analytics, and advertising, we may access and process data belonging to our clients’ customers or audiences. In these cases, Drych Digital acts as a data processor operating on the client’s instructions. This data is used solely to deliver the agreed service and is governed by the terms of our client agreement.

We use the information we collect to:

  • Respond to your enquiries and communicate with you
  • Process your purchases and deliver digital products
  • Onboard you and deliver the services you have engaged us for
  • Manage your account and client portal access
  • Send you project updates, invoices, and reports
  • Improve our website, products, and services
  • Send you marketing communications, newsletters, and promotional offers (only with your consent)
  • Process job applications
  • Run and optimise paid advertising campaigns on your behalf
  • Comply with our legal and regulatory obligations
  • Detect, prevent, and respond to fraud, security incidents, or misuse of our services

We do not sell your personal information to third parties.

We only process your personal information where we have a valid legal basis to do so. Depending on the nature of our interaction with you, we rely on the following:

  • Contract — to deliver services you have engaged us for, process payments, and manage your account
  • Legitimate Interest — to improve our website and services, prevent fraud, and manage our business operations
  • Consent — to send marketing communications and newsletters, and to place non-essential cookies on your device. You may withdraw your consent at any time.
  • Legal Obligation — to comply with applicable laws and regulations in Nigeria, the EU, the UK, and other jurisdictions where we operate.

We do not sell your personal information. We only share it in the following circumstances:

  • Service Providers — we share information with trusted third-party tools and platforms we use to operate our business and deliver our services, such as payment processors, project management tools, email marketing platforms, and analytics providers. All third-party providers are required to handle your data securely and in accordance with applicable data protection laws.
  • Team Members — your information may be accessed by members of the Drych Digital team strictly on a need-to-know basis to deliver your project or respond to your enquiry.
  • Legal Requirements — we may disclose your information where required to do so by law, court order, or regulatory authority, including the Nigeria Data Protection Commission (NDPC).
  • Business Transfers — in the event of a merger, acquisition, or sale of all or part of our business, your information may be transferred as part of that transaction. We will notify you if this occurs.
  • With Your Consent — we may share your information in any other circumstances where you have given us explicit consent to do so.

We do not share client data with other clients or unrelated third parties.

As a global agency, we and our third-party service providers may transfer and process your personal information outside of your country of residence, including outside the European Economic Area (EEA) and the UK.

Where we transfer personal information internationally, we ensure appropriate safeguards are in place, including:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • UK International Data Transfer Agreements (IDTAs) where applicable
  • Transfers to countries recognised as providing adequate levels of data protection

By using our services, you acknowledge that your information may be transferred to and processed in countries outside your own, including Nigeria and the United States.

We retain your personal information only for as long as necessary to fulfil the purposes for which it was collected, including to satisfy legal, accounting, or reporting requirements.

  • Active client data — retained for the duration of our engagement and for 2 years after the contract ends
  • Prospective client enquiries — retained for 12 months if no contract is formed
  • Digital product purchases — retained for 2 years for customer support and legal purposes
  • Financial and billing records — retained for 7 years in accordance with Nigerian tax and accounting regulations
  • Marketing and newsletter data — retained until you unsubscribe or withdraw consent
  • Job applications — retained for 6 months if unsuccessful, unless you consent to us keeping your details for future opportunities
  • Website analytics data — retained in accordance with the settings of our analytics platforms

When your data is no longer required, we will securely delete or anonymise it.

Depending on your location, you have the following rights regarding your personal information:

  • Right to Access — you have the right to request a copy of the personal information we hold about you
  • Right to Rectification — you have the right to request that we correct any inaccurate or incomplete information we hold about you
  • Right to Erasure — you have the right to request that we delete your personal information where there is no legitimate reason for us to continue processing it
  • Right to Restrict Processing — you have the right to request that we limit how we use your personal information
  • Right to Data Portability — you have the right to request that we provide your personal information in a structured, commonly used, and machine-readable format
  • Right to Object — you have the right to object to our processing of your personal information where we rely on legitimate interest as our legal basis
  • Right to Withdraw Consent — where we process your information based on consent, you may withdraw that consent at any time without affecting the lawfulness of processing carried out before withdrawal
  • Right to Lodge a Complaint — you have the right to lodge a complaint with your local data protection authority at any time

To exercise any of these rights, please contact us at privacy@drychdigital.com. We will respond within 30 days.

If you are based in California, you also have the right to know what personal information we collect, request deletion of your personal information, and opt out of the sale of your personal information. We do not sell personal information.

We take the security of your personal information seriously and implement appropriate technical and organisational measures to protect it against unauthorised access, loss, misuse, alteration, or disclosure. These measures include:

  • Encrypted credential storage — passwords are never stored in plain text
  • Access controls — only authorised members of the Drych Digital team can access your data, strictly on a need-to-know basis
  • Secure file transfer protocols for project assets and sensitive materials
  • Use of reputable third-party platforms that maintain their own security certifications and data protection obligations
  • Regular reviews of our tools, processes, and access permissions

Payments are processed exclusively through trusted third-party payment processors. We do not store your card or banking details directly.

While we take every reasonable precaution to protect your information, no method of transmission over the internet or electronic storage is completely secure. We cannot guarantee absolute security but we are committed to addressing any vulnerabilities promptly.

In the event of a data breach that affects your personal information, we will notify the relevant data protection authorities within 72 hours of becoming aware of the breach, and will inform affected individuals without undue delay, in accordance with applicable law.

We use cookies and similar tracking technologies on our website to enhance your experience, analyse website traffic, and deliver relevant advertising.

The cookies we use include those from Google Analytics and may in the future come from Meta Pixel, and our live chat and email marketing platforms. When we effect those changes, we will update this page.

You will be presented with a cookie consent banner when you first visit our website. Non-essential cookies are only placed on your device with your permission. You can update or withdraw your cookie preferences at any time through the banner or your browser settings.

For full details on the cookies we use, what they do, and how to manage them, please see our Cookie Policy.

Our website may contain links to third-party websites, platforms, or services that are not operated by us. If you click a third-party link, you will be directed to their site. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites.

We encourage you to review the privacy policy of every site you visit.

Our website and services are not directed at individuals under the age of 18. We do not knowingly collect personal information from children. If you believe a child has submitted personal information to us, please contact us immediately at privacy@drychdigital.com and we will delete it promptly.

We encourage you to review the privacy policy of every site you visit.

We may update this Privacy Policy from time to time to reflect changes in our practices, services, or legal obligations. The updated version will always be available on our website with a revised effective date. For material changes, we will notify active clients directly by email.

If you have any questions, requests, or concerns about this Privacy Policy or how we handle your personal information, please contact us at:

Email: privacy@drychdigital.com
Website: www.drychdigital.com
Address: Gwarinpa, FCT Abuja, Nigeria

If you are unhappy with how we have handled your personal information, we would appreciate the opportunity to address your concerns directly before you approach a regulatory authority.

This Privacy Policy is governed by the laws of the Federal Republic of Nigeria. Where applicable, it is also subject to the EU GDPR, the UK GDPR, and other relevant data protection legislation in the jurisdictions in which we operate.

×
Select Consultation
Choose Service *
User e-mail *
Name *
Mobile Number
Notes
Price
0.00

×
Hello There!

The official global website for Drych Digital.

CONTACT US

+234 902 102 2653

hello@drychdigital.com

drych@drychdigital.com

FOLLOW US
Linkedin Tiktok Whatsapp Instagram Facebook X-twitter