Legal

Privacy Policy

Effective date: 1 June 2026 ย ยทย  Last updated: 1 June 2026

DARE Technologies Ltd("DARE", "we", "us", or "our") is committed to protecting your personal data. This Privacy Policy explains what data we collect, why we collect it, how we use it, and your rights under applicable data protection law, including the Nigeria Data Protection Act 2023 (NDPA) and the Kenya Data Protection Act 2019 (KDPA).

By using the DARE Platform you confirm that you have read and understood this Policy.

1. Data We Collect

1.1 Account and Registration Data

When you create an account: name, email address, phone number, username, date of birth, and country of residence.

1.2 Identity Verification (KYC) Data

To comply with our regulatory obligations we collect: government-issued ID (passport, national ID, or driver's licence), a live selfie, and proof of address where required. This data is processed by our third-party KYC provider and stored in accordance with their security standards.

1.3 Financial Data

Deposit and withdrawal transaction records, payment method details (managed by our payment processor โ€” we do not store full card numbers), and wallet balances. All financial data is processed in compliance with PCI DSS standards via our payment partner.

1.4 Challenge and Activity Data

Challenges you create or accept, evidence you submit, jury votes you cast, your win/loss record, and in-app communications related to a challenge.

1.5 Device and Technical Data

IP address, device type, operating system, app version, session timestamps, crash reports, and analytics events (e.g. features used, screens viewed). We use this data solely to operate, debug, and improve the Platform.

1.6 Communications

Messages you send to our support team, feedback submissions, and waitlist sign-ups. If you opt in to SMS alerts, your phone number is used for that purpose only.

2. How We Use Your Data

PurposeLegal basis
Create and manage your accountContract performance
Verify your identity and age (KYC)Legal obligation
Process deposits, withdrawals, and escrowContract performance
Facilitate challenges and settle disputesContract performance
Detect fraud, collusion, and AML violationsLegal obligation / Legitimate interest
Send transactional notifications (challenge updates, settlement)Contract performance
Send marketing communications (with consent)Consent
Improve Platform features and fix bugsLegitimate interest
Comply with regulatory reporting requirementsLegal obligation

3. Data Sharing

We do not sell your personal data. We share it only with:

  • Payment processors (e.g. Paystack) โ€” to process transactions.
  • KYC providers โ€” to verify your identity as required by law.
  • Cloud infrastructure providers (e.g. Supabase / AWS) โ€” to host and operate the Platform.
  • Analytics providers โ€” for aggregated, anonymised usage analytics, including Google Analytics where enabled.
  • Regulatory authorities โ€” where disclosure is required by law (e.g. EFCC, CBN, or their Kenyan equivalents).
  • Other challenge parties โ€” your username and challenge evidence are shared with the other participant and, in disputes, with the Jury.

All third-party processors are contractually bound to handle your data only as directed by DARE and in accordance with applicable data protection law.

4. Data Retention

We retain your data for as long as your account is active and for a minimum of:

  • KYC and financial records โ€” 7 years after account closure, as required by AML regulations.
  • Challenge records โ€” 3 years after settlement.
  • Support communications โ€” 2 years.
  • Marketing preferences and waitlist data โ€” until you withdraw consent or request deletion.

Where retention is required by law we cannot delete data earlier even if you request it; we will inform you if this applies.

5. Your Rights

Under the NDPA and KDPA you have the right to:

  • Access โ€” request a copy of the personal data we hold about you.
  • Rectification โ€” ask us to correct inaccurate data.
  • Erasure โ€” request deletion of data we are not legally required to retain.
  • Restriction โ€” ask us to limit processing in certain circumstances.
  • Portability โ€” receive your account data in a machine-readable format.
  • Objection โ€” object to processing based on legitimate interest.
  • Withdraw consent โ€” withdraw any consent-based processing (e.g. marketing emails) at any time.

To exercise any of these rights, email info@daregamesapp.com. We will respond within 30 days. We may need to verify your identity before processing your request.

6. Cookies and Tracking

The DARE web Platform uses essential cookies for session management and security. We do not use advertising cookies, and all ad-related tracking signals (ad storage, ad user data, ad personalisation) are permanently blocked.

We use Google Analytics (via Google Tag Manager) to understand aggregate website usage โ€” pages viewed, traffic sources, device type, and general engagement. Analytics measurement defaults to denieduntil you explicitly accept via the consent banner shown on your first visit. You can change your preference at any time by clearing your browser's local storage for this site.

You can also opt out globally using Google's Analytics opt-out browser add-on. Disabling essential cookies may prevent you from logging in or using certain platform features.

7. Data Security

We apply industry-standard security measures including: TLS encryption in transit, AES-256 encryption at rest for sensitive fields, row-level access controls on our database, regular security audits, and staff access restricted to minimum necessary data.

If we become aware of a data breach that is likely to result in risk to your rights or freedoms, we will notify affected users and the relevant data protection authority within 72 hours of becoming aware.

8. Children

The Platform is not intended for persons under 18. We do not knowingly collect data from minors. If you believe a minor has created an account, contact us immediately at info@daregamesapp.com and we will delete the account.

9. International Transfers

Your data is primarily stored and processed in the European Union (Supabase infrastructure). Where data is transferred outside your country, we ensure appropriate safeguards are in place in accordance with NDPA and KDPA requirements, including standard contractual clauses with our processors.

10. Changes to This Policy

We may update this Policy to reflect changes in our practices or applicable law. Material changes will be communicated via in-app notification or email at least 14 days before they take effect. The "Last updated" date at the top of this page reflects the most recent revision.

11. Contact and Data Protection Officer

For privacy questions or to exercise your rights:

You also have the right to lodge a complaint with the Nigeria Data Protection Commission (NDPC) or the Office of the Data Protection Commissioner (ODPC), Kenya.