Privacy Policy

1. Introduction

The Kinsmen Digital Network Ltd. ("Kinsmen", "we", "us", or "our") is committed to protecting the privacy and security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard information when you visit our website (thekinsmen.net) or use any of our services.

By accessing or using our services, you agree to the collection and use of information in accordance with this policy. If you do not agree, please discontinue use of our services.

2. Information We Collect

2.1 Personal Information You Provide

• Name and contact details (email address, phone number)
• Billing information (payment card details processed via our secure payment partners)
• Account credentials (username and encrypted password)
• Domain registration details (WHOIS contact information)
• Support communications and ticket history
• Business name and address for invoicing

2.2 Automatically Collected Information

• IP address and approximate geolocation
• Browser type and version, operating system
• Pages visited, time on page, referral URLs
• Cookie identifiers and session data
• Server access logs and error logs

3. How We Use Your Information

We use the information collected to:

• Provision and manage the services you have purchased
• Process payments and issue invoices
• Communicate with you about your account, services, and support requests
• Send service renewal notices, security alerts, and important account notifications
• Comply with legal obligations including ICANN domain registration requirements
• Investigate and prevent fraud, abuse, and security incidents
• Improve our website and services through aggregated analytics
• Send promotional communications (only with your consent, and you may opt out at any time)

4. Legal Basis for Processing

We process your personal data on the following legal grounds:

• Contract performance: Processing necessary to provide the services you have purchased
• Legal obligation: Compliance with ICANN requirements, Nigerian law, and regulatory obligations
• Legitimate interest: Fraud prevention, security monitoring, and service improvement
• Consent: Marketing communications and non-essential cookies (you may withdraw consent at any time)

5. Information Sharing and Disclosure

We do not sell, rent, or trade your personal information. We may share data with:

• Domain registries: Required WHOIS data transmitted to domain registries (e.g., Verisign, NIRA) as mandated by ICANN policy. Free WHOIS privacy is provided where available.
• Payment processors: Payment card data is handled by PCI-DSS compliant processors (Paystack, Flutterwave). We do not store card numbers.
• Infrastructure providers: Data centre and cloud infrastructure partners bound by confidentiality agreements.
• Law enforcement: When required by valid legal process or to protect rights, safety, or property.

6. Cookies and Tracking

We use cookies to:

• Maintain your session and login state
• Remember your preferences (e.g., language, theme)
• Analyse website traffic via Google Analytics (anonymised)
• Enable live chat functionality (Tawk.to)

You can control cookies through your browser settings. Disabling certain cookies may affect the functionality of some features.

7. Data Retention

We retain personal data for as long as necessary to fulfil the purposes for which it was collected, including:

• Active account data: retained for the duration of the account
• Billing records: retained for 7 years (Nigerian tax law requirements)
• Support tickets: retained for 3 years after resolution
• Server logs: retained for 90 days
• Deleted account data: purged within 30 days of account closure (except where legally required)

8. Data Security

We implement appropriate technical and organisational measures to protect your personal information including:

• TLS 1.3 encryption for all data in transit
• AES-256 encryption for sensitive data at rest
• Two-factor authentication for staff access to customer data
• Regular security audits and penetration testing
• Intrusion detection and DDoS mitigation systems

9. Your Rights

Subject to applicable law, you have the right to:

• Access: Request a copy of personal data we hold about you
• Rectification: Correct inaccurate or incomplete data
• Erasure: Request deletion of your personal data (subject to legal retention obligations)
• Portability: Receive your data in a machine-readable format
• Objection: Object to processing based on legitimate interest
• Restrict processing: Request restriction of processing in certain circumstances
• Withdraw consent: For processing based on consent, withdraw at any time

To exercise any of these rights, contact us at [email protected].

10. Third-Party Links

Our website may contain links to third-party websites. We have no control over and assume no responsibility for the content, privacy policies, or practices of third-party sites.

11. Children's Privacy

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If you believe a child has provided us personal information, please contact us immediately.

12. Changes to This Policy

We may update this Privacy Policy periodically. The "Last updated" date at the top of this page reflects the most recent revision. Continued use of our services after any changes constitutes acceptance of the updated policy.

13. Contact Us

For privacy-related enquiries, data subject requests, or abuse reports:

• Email: [email protected]
• Abuse: [email protected]
• Address: 3 Gunning Rd, Azuiyi Udene, Abakaliki 480251, Ebonyi State, Nigeria
• Support: Submit a ticket