Draft — not legal advice

Privacy Policy

Describing how FarHub collects, uses, and protects your personal data.


1.Introduction

This Privacy Policy explains how FarHub (“we”, “us”, “FarHub”) collects, uses, and protects personal data when you use our authenticated dashboard and related services (“the Service”). By creating an account, you agree to the collection and use of information as described here.

2.Information We Collect

We collect the minimum personal data needed to operate your account:

  • Account information — the email address you register with, and a one-way bcrypt hash of your password. We never store your password in plain text.
  • Role information — whether your account is a reader, writer, or author, used to control access within the dashboard.
  • Login activity — the email address, timestamp, and outcome (success or failure) of sign-in attempts, kept for account security and abuse prevention.
  • Session data — an encrypted session cookie used to keep you signed in, containing no more than your account identifier and an expiry time.

3.How We Use Your Information

  • To create and maintain your account and authenticate your sign-ins.
  • To keep the Service secure, including detecting repeated failed login attempts.
  • To operate features of the dashboard, such as role-based access to content.
  • To communicate with you about your account when necessary.

4.Cookies

We use a single essential cookie to store your encrypted session. This cookie is required for the Service to function and is not used for advertising or cross-site tracking. It is removed when you sign out or when it expires.

5.Data Sharing

We do not sell your personal data. We share data only with:

  • Infrastructure providers that host our database and application (for example, our Postgres and hosting providers), solely to operate the Service.
  • Authorities, where required by law or to protect the rights, safety, or property of FarHub or its users.

6.Data Retention

We retain your account information for as long as your account remains active. Login attempt records are kept for a limited period for security purposes and are periodically purged. If you delete your account, we remove your personal data within a reasonable time, except where retention is required by law.

7.Data Security

Passwords are stored as one-way bcrypt hashes and are never visible to us in plain text. Session cookies are encrypted. While we take reasonable technical and organisational measures to protect your data, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

8.Your Rights

Under the Nigeria Data Protection Act 2023 and other applicable data protection laws, you may have the right to:

  • Access the personal data we hold about you;
  • Request correction of inaccurate personal data;
  • Request deletion of your account and associated personal data;
  • Object to or restrict certain processing of your personal data.

To exercise any of these rights, contact us at the address below.

9.Children’s Privacy

The Service is not directed to individuals under the age of 18, and we do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us so we can remove it.

10.Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will update the effective date above and, where practical, notify you through the Service. Continued use of the Service after changes take effect constitutes acceptance of the revised policy.

11.Contact

Questions about this Privacy Policy or requests regarding your personal data can be sent to aoubah@gmail.com.

Back to sign in