moraCommerce← Home

Privacy Policy

Last updated: 18 June 2026

Introduction

moraCommerce is operated by DaboLinux Technologies (Business Reg. No. BN3238495), No. 03 Ummita Plaza, Sharada, Jaen, Kano State, Nigeria ("moraCommerce", "we", "us"). This policy explains how we handle personal information when you use moracommerce.com and the moraCommerce platform. We process personal data in line with the Nigeria Data Protection Act 2023 / NDPR and, where it applies, the EU General Data Protection Regulation (GDPR).

Our role: controller and processor

For data about platform accounts, billing, and our own marketing, moraCommerce is the data controller. For the shopper/customer data a store owner ("tenant") collects through their storefront, the tenant is the controller and moraCommerce acts as their processor, handling that data only on their instructions under our Data Processing Addendum.

Information we collect

  • Account data: your name, email, phone, hashed password, and business details.
  • Store and operational data: products, orders, inventory, transactions, and staff records you create.
  • Customer data processed for tenants: shopper accounts, orders, and contact details, processed on the tenant’s behalf.
  • Payment metadata: transaction references and status from our payment partners — we do not store full card numbers.
  • Usage and device data: log data, IP address, and limited analytics needed to operate and secure the service.

Lawful bases for processing

We rely on the following lawful bases:

  • Performance of a contract — to create and run your account and store.
  • Legitimate interests — to secure, maintain, and improve the service (balanced against your rights).
  • Consent — for marketing communications, which you can withdraw at any time.
  • Legal obligation — to meet tax, accounting, and other legal requirements.

How we use information

To provide and maintain the service; process orders and payments; send transactional and account notifications; provide support; bill for subscriptions; prevent fraud and abuse; comply with the law; and improve the product. We do not sell personal information.

Sharing and sub-processors

We share data with service providers that help us run the platform, under contracts requiring appropriate safeguards:

  • Payments — Paystack and Flutterwave.
  • Email delivery — Resend.
  • Hosting and file storage — Hosting on GCP, file storage on Cloudflare.
  • We may also disclose data where required by law or to protect rights and safety.

International data transfers

Some providers may process data outside Nigeria or the EEA. Where they do, we rely on an adequacy decision or appropriate safeguards such as standard contractual clauses.

Data retention

We keep personal data while your account is active and as needed to provide the service, then delete or anonymise it, except where a longer period is required by law (for example, financial records).

Security

We use measures including encryption in transit, hashed passwords, role-based access control, and per-tenant data isolation. No system is perfectly secure, but we work to protect your data.

Your rights (NDPR & GDPR)

Subject to applicable law, you have the right to:

  • Access the personal data we hold about you.
  • Rectify inaccurate or incomplete data.
  • Erase your data ("right to be forgotten").
  • Restrict or object to certain processing.
  • Receive your data in a portable format.
  • Withdraw consent at any time, without affecting prior processing.

Exercising your rights

To exercise any of these rights, contact privacy@dabolinux.com. If you are a shopper on a store built with moraCommerce, please contact that store directly for data it controls; we will support the store as its processor.

Data breaches

If a personal data breach occurs that is likely to pose a risk to individuals, we will notify the relevant supervisory authority and, where required, affected individuals without undue delay and within the timeframes set by applicable law (generally within 72 hours).

Complaints and supervisory authority

You can lodge a complaint with the Nigeria Data Protection Commission (NDPC). If you are in the EEA, you may also complain to your local data protection supervisory authority. We ask that you contact us first so we can try to resolve your concern.

EU representative

[If moraCommerce offers services to individuals in the EEA, name the appointed Article 27 EU representative and contact here.]

Cookies

We use essential cookies and local storage for authentication and security (such as session and CSRF tokens) and limited analytics. You can control cookies in your browser; disabling essential cookies may prevent sign-in.

Children

The platform is intended for businesses and is not directed to children. We do not knowingly collect data from children.

Changes to this policy

We may update this policy and will post the revised version here with a new "last updated" date; we will communicate material changes by email or in-product notice.

Contact us

Data protection enquiries: privacy@dabolinux.com. Postal: DaboLinux Technologies, No. 03 Ummita Plaza, Sharada, Jaen, Kano State, Nigeria.