Privacy Policy

1. Who we are

Kerdos Analytics Limited ("Kerdos Analytics", "we", "us") is the technology arm of the Cedar Group, incorporated in Nigeria [RC number to be completed], with its registered office at [registered office address]. We are the data controller for personal data processed through this website (kerdosanalytics.ng).

Our products (such as FloatInvest, operated by Kerdos Credit Capital) are governed by their own separate privacy notices provided at the point of use. This policy covers the website only.

Questions, or to exercise your rights: privacy@kerdosanalytics.ng. Data Protection Officer: [to be appointed; contactable at privacy@kerdosanalytics.ng].

2. What we collect

We collect only what we need:

• Information you give us through a contact or enquiry form: your name, email, organisation, and the content of your message.
• Recruitment information, if you use our careers tools: the CV text and experience summary you submit, and the role or track you select. Please do not include sensitive personal data you are not comfortable sharing.
• Technical and usage data collected automatically: IP address, device and browser type, pages viewed, and similar server-log data, used to keep the site secure and working.
• Cookie data, as described in our Cookie Policy — strictly necessary cookies always, optional cookies only with your consent.

3. Why we use it, and our lawful basis

Under the NDPA and (where it applies) the GDPR, we rely on the following bases:

• To respond to your enquiry or take steps at your request before any engagement — performance of, or steps prior to, a contract, and our legitimate interest in responding to you.
• To assess applications and run our recruitment and Institute admissions — steps prior to a contract and our legitimate interest in hiring and training fairly.
• To operate, secure and improve the website — our legitimate interest in a safe, functioning site.
• For optional analytics and preference cookies — your consent, which you may withdraw at any time.
• To comply with legal and regulatory obligations — legal obligation.

4. Recruitment and AI-assisted screening

If you use our careers screening tool, the text you submit is processed to produce an indicative assessment (a fit score, strengths, gaps and a suggested next stage). This output is decision-support for our team; it is not an automated final decision, an offer, or a rejection, and a human reviews any meaningful step.

Where an AI service processes your text on our behalf, it acts as our processor under contract. We do not permit your submission to be used to train third-party models.

You can ask us not to process your application by AI, and to have it reviewed manually instead — email privacy@kerdosanalytics.ng.

5. Sharing and processors

We do not sell your personal data, and we do not allow advertisers to target you through this site.

We share data only with a small number of service providers who process it on our behalf under contract — for example, infrastructure and hosting, communications, and the screening service that powers our careers tool. A current list of categories of processors is available on request at privacy@kerdosanalytics.ng.

We may disclose data where required by law, regulation, or valid legal process, or to protect our rights, users, or the public.

6. International transfers

We are based in Nigeria and some of our providers process data outside Nigeria and outside your country (for example, in the European Union). Where we transfer personal data across borders, we apply appropriate safeguards required by the NDPA and, where relevant, the GDPR — such as transfers to jurisdictions with adequate protection or contractual protections (e.g. standard contractual clauses).

You may request information about the safeguards we use at privacy@kerdosanalytics.ng.

7. How long we keep it

• Enquiry data: for as long as needed to handle your enquiry and a reasonable period afterwards [retention period to be confirmed], then deleted or anonymised.
• Recruitment data: for the duration of the process and, if you are not engaged, for [period — e.g. 6–12 months] so we can consider you for future roles, unless you ask us to delete it sooner.
• Cookie-consent records: up to 180 days, after which we ask again.
• Server logs and security data: a limited period for security and troubleshooting.

8. Your rights

Subject to the conditions in applicable law, you have the right to access your data; to correct it; to have it erased; to restrict or object to processing; to data portability; and to withdraw consent at any time (without affecting prior processing).

If you are in California, the CCPA/CPRA gives you rights to know, delete, and correct, and to opt out of the "sale" or "sharing" of personal information — we do not sell or share your personal information in that sense — and the right not to be discriminated against for exercising your rights.

To exercise any right, email privacy@kerdosanalytics.ng. We may need to verify your identity. We respond within the timeframes set by the NDPA and, where it applies, within one month under the GDPR.

You may also complain to the Nigeria Data Protection Commission (NDPC) or, if you are in the EEA/UK, to your local supervisory authority. We would appreciate the chance to address your concern first.

9. How we protect it

We apply organisational and technical measures appropriate to the risk — encryption in transit, access controls and single sign-on, least-privilege access, logging, and regular review. No method of transmission or storage is perfectly secure, but we work to protect your data and to respond promptly to any incident in line with our legal obligations.

10. Children

This website is not directed to children under 18, and we do not knowingly collect their personal data. If you believe a child has provided us data, contact privacy@kerdosanalytics.ng and we will delete it.

11. Changes and contact

We may update this policy; the "last updated" date above shows when. Material changes will be flagged on this page.

Contact: privacy@kerdosanalytics.ng · Kerdos Analytics Limited, Lagos, Nigeria.