Privacy Policy

This Privacy Policy describes your privacy rights regarding Hypernova Company Limited’s (“we”, “us” or “our”) collection, use, storage, sharing, and protection of your personal information. It applies to our website, POS devices, and all related sites, applications, services, and tools, regardless of how you access or use them (“Sites”). This Privacy Policy will help you understand how we use your information and what we do with it.

We respect the privacy of our online visitors and registered users (“Users”); as such, we take reasonable steps to protect your information.

1. About Us
   Hypernova Company Limited provides payment services enabling people and businesses to make digital payments through its brands Cashi, MyCashi, and CashiMobile. Hypernova Company Limited also provides an online classifieds platform and marketplace through its brand, alsoug.com.

2. Updates, Modifications & Amendments
   We may need to update, modify or amend our privacy policy as our technology evolves. We reserve the right to make changes to this privacy policy at any time by giving notice to Users on this page.
   We advise that you check this page often, referring to the date of the last modification on the page. If a User objects to any of the changes to the Policy, the User must cease using any Site or terminate any Account (as defined below) in the event an Account has been created.

3. Age Restriction
   Our Sites are not directed to children under 18. We do not knowingly collect information from children under 18. If, as a parent or guardian, you become aware that your child or ward child has provided us with any information without your consent, please contact us through details on this Privacy Policy.

4. The Information we Collect and how we use it

1. To gain full access to our Sites, in many cases, you must register for a Cashi or MyCashi,or Alsoug account (an “Account”). When you register for an Account, we collect Personal Information (as defined below) you voluntarily provide “Personal Information” refers to the personal biodata information you submit when you sign up or any information that can be used to identify or contact you (e.g., email address, address, password, name, telephone number, and business name). It may also include anonymous information that is linked to you specifically, (e.g., IP Address). Personal Information may also include national ID documents where a User is required to pass KYC checks. Personal Information does not include payment card information or mobile wallet information.
   
2. We may use your Personal Information to=>
1. provide you with Cashi, CashiMobile, MyCashi, or alsoug.com services (the “Services”);
2. assess your eligibility for new Service;
3. respond to your questions or requests;
4. improve Our operations;
5. address inappropriate use of our Sites;
6. prevent, detect, and manage risk against fraud and illegal activities; 
7. target advertisements, newsletter, and Service updates; 
8. verify the information that you provide with third parties;
9. update our database, improve content and Site layouts; and
10. resolve disputes that may arise.
    
3. We may retrieve additional Personal Information about you from third parties and other identification/verification services such as your financial institution, payment processor, a non-governmental organization providing humanitarian or social services, and verification services. We may also collect additional Personal Information in other ways, including sms messages, push notifications, emails, surveys, and other forms of communication. Once you begin using our Services through your account or on the Sites, we will keep records of your transactions and collect information about your other activities related to our Services.
   
4. We will not share or disclose your Personal Information with a third party (other than the third party who shared the Personal Informationwith us) without your consent unless as required by law or regulation or to provide you financial services, in which case such information will be shared with trusted third parties (such as a bank) who have the same or similar privacy policies in place.
   
5. We use cookies to identify you as a User and make your user experience easier, customise our services, content, and advertising; help you ensure that your account security is not compromised, mitigate risk and prevent fraud; and to promote trust and safety on our Sites. Cookies allow our servers to remember your account log-in information when you visit our website, IP addresses, date and time of visits, monitor web traffic and prevent fraudulent activities. If your browser or browser add-on permits, you may disable cookies on our Sites; however, this may limit your ability to use our Sites.
   
6. When you pay through our Sites, we may collect and store your payment card or wallet information (“Payment Method Information”). We do not share your Payment Method Information with merchants or other third parties except as required by Sudanese law or in an encrypted format.

5. Safeguarding information that we collect from Users
   
1. To ensure your payment card and wallet information is kept safe and secure on our servers, we implement access control measures (physical and virtual), security protocols, policies, and standards, including the use of encryption and firewall technologies in compliance with international standards. We implement periodic security updates to ensure that our security infrastructures comply with reasonable industry standards as applicable in Sudan.
   
2. Weensure that our personnel engaged in the processing of Personal Information are informed of the confidential nature of the Personal Information, have received appropriate training on their responsibilities, and have executed written confidentiality agreements.
   
3. Wetake commercially reasonable steps to ensure the reliability of any of our personnel engaged in the processing of Personal Information.
   
4. Weensure that our access to Personal Information is limited to those personnel who need to access that information for us to deliver the Site services to the User.
   
5. Two Factor Authentication (“2FA”) 2FAis an additional layer of security we have added to some of your A When 2FA is enabled, you will be required to enter a One Time Password (OTP) (a verification code we send you for authentication purposes) when you do specific actions on the Sites. 2FA helps secure your Personal Information and any Payment Method Information you provide.
   
6. Merchants, billers (such as telecom companies or the national electricity company), NGOs, UN Agencies,and other Users you buy from, transact with, or receive money or services from via the Sites, have their own privacy policies, and we are not responsible for their actions, including their information protection practices. Any such third party's use of your information will be subject to their applicable privacy policy, which you should carefully review. We take no responsibility for any harm or loss resulting from any action or inaction by any such third party.
   
7. Further, it is important to note that no security measures are 100% effective. We cannot guarantee the complete security of your Personal Information. We shall not be held responsible or liable for unauthorised access, hacking, or other security intrusions or failure to store or the theft, deletion, corruption, destruction, damage, or loss of any Personal Information.
   
8. We do not take any responsibility for any loss of or unauthorised access to any Personal Information as a result of negligence by the User, including, without limitation, through the use by the User of insecure hardware or as a result of weak password management.

6. The Personal Information that we Retain
   1. We will retain your Personal Information, Payment Method Information, and cookiesfor as long as your Account is active or as needed to (1) provide you with our Services, (2) comply with our legal and statutory obligations, or (3) verify your information with a financial institution. 
      
   2. We are obligated to retain certain Payment Method Information and Personal Information you provide toprocess transactions, ensure settlements, make refunds, identify fraud, and comply with laws and regulatory guidelines applicable to us, our banking providers, and card processors. Therefore, even after closing your Account or after the Service is complete, we will retain certain data to comply with these obligations.
      
   3. Subject to the above, you may request that we delete or remove any Personal Information, Payment Method Information, or cookies held about you. To make such a request, please email [email protected].

7. Terms of Use
   This Privacy Policy is incorporated by reference into all Sites' terms and conditions.

8. Disclaimers
   

   WE TRY TO KEEP OUR SITES AVAILABLE AT ALL TIMES, BUG-FREE, FRAUD-FREE, AND SAFE. HOWEVER, YOU USE THEM AT YOUR OWN RISK.
   OUR SITES AND SERVICES ARE PROVIDED “AS IS” WITHOUT ANY EXPRESS, IMPLIED, AND/OR STATUTORY WARRANTIES (INCLUDING, BUT NOT LIMITED TO, ANY IMPLIED OR STATUTORY WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR USE OR PURPOSE, TITLE, AND NON-INFRINGEMENT OF INTELLECTUAL PROPERTY RIGHTS). WITHOUT LIMITING THE GENERALITY OF THE FOREGOING, WE MAKE NO WARRANTY THAT OUR SITES AND SERVICES WILL MEET YOUR REQUIREMENTS OR THAT SITES OR SERVICES WILL BE UNINTERRUPTED, TIMELY, SECURE, OR ERROR-FREE. NO ADVICE OR INFORMATION, WHETHER ORAL OR WRITTEN, OBTAINED BY YOU THROUGH OUR SITES OR FROM HYPERNOVA COMPANY LTD, ITS PARENTS, SUBSIDIARIES, OR OTHER AFFILIATED COMPANIES, OR ITS OR THEIR SUPPLIERS (OR THE RESPECTIVE OFFICERS, DIRECTORS, EMPLOYEES, OR AGENTS OF ANY SUCH ENTITIES) SHALL CREATE ANY WARRANTY. 

9. Exclusions
   Some jurisdictions do not allow the exclusion of certain warranties or the limitation or exclusion of liability for certain damages. Accordingly, some of the above disclaimers and limitations of liability may not apply to you. To the extent that we may not, as a matter of applicable law, disclaim any implied warranty or limit our liabilities, the scope and duration of such warranty and the extent of our liability shall be the minimum permitted under such applicable law.

10. Applicable Law 
    This Privacy Policy shall be interpreted and governed by the laws currently in force in the Republic of Sudan.

11. Legal Disputes
    We shall make an effort to settle all disputes amicably. Any dispute arising out of this Privacy Policy, which cannot be settled by mutual agreement/negotiation within 1 (one) month, shall be referred to the Khartoum District Court for settlement.

12. Severability
    If any portion of this Privacy Policy is held by any court or tribunal to be invalid or unenforceable, either in whole or in part, then that part shall be severed from this Privacy Policy and shall not affect the validity or enforceability of any other part in this Privacy Policy.