Legal

Privacy Policy

Last updated: 13 July 2026

This Privacy Policy explains how TXD Agency ("we", "us", "our"), based in Croydon, United Kingdom, collects and uses data when you use SalesCenta. It covers two different things, and it's important to keep them separate: the data we collect about you as a Merchant using the Service, and the data your own customers give you through your storefront.

1. Two roles: platform data vs. your customers' data

When it comes to your account data — your name, business details, billing information, and how you use SalesCenta — TXD Agency is the data controller. We decide why and how that data is processed, as described below.

When it comes to your customers' data — anyone who buys from your storefront, messages you on WhatsApp through the Service, or is added to your customer list — you, the Merchant, are the data controller. You decide what you collect from your customers and what you do with it. SalesCenta acts as your data processor in this case: we store and process that data on your behalf, using it only to provide the Service to you, not for our own purposes.

In practice, this means: if a customer wants their data deleted, corrected, or exported from your store, that request goes to you as the merchant, and we provide the tools to act on it. If you have questions about your own obligations to your customers under applicable data protection law, we'd encourage you to seek your own legal advice — we can't give legal advice on your business specifically.

2. Information we collect about you as a Merchant

  • Account information: name, email, phone number, business name, and address you provide when signing up.
  • Billing information: subscription plan, billing history, and payment method details, processed through Paystack (and, once available, Stripe or Fincra) rather than stored directly by us.
  • Store configuration: your product catalogue, storefront theme settings, staff accounts and roles, and integration settings (such as Google Analytics, Meta Pixel, or Zoho, where you choose to connect them).
  • Usage data: how you interact with the dashboard, which features you use, device and browser information, and diagnostic logs, used to keep the Service reliable and improve it.

3. How we use your data

  • To provide, maintain, and improve the Service.
  • To process billing and communicate about your subscription.
  • To provide customer support when you contact us.
  • To send you service updates, security notices, and, where you've agreed to it, product updates.
  • To detect and prevent fraud, abuse, or violations of our Terms of Service.

We do not sell your data or your customers' data to third parties.

4. Who we share data with

We share data only where necessary to operate the Service:

  • Payment processors (Paystack, and in future Stripe/Fincra) to process transactions.
  • Infrastructure and email/SMS providers we use to host the Service and deliver notifications, campaigns, and transactional messages on your behalf.
  • Integrations you choose to enable, such as Google Analytics, Meta Pixel, or Zoho — data only flows to these if you connect them yourself.
  • Legal or regulatory authorities, where we're required to disclose information by law.

5. Cookies

We use cookies to keep you signed in, remember your preferences, and understand how the Service is used. If you connect analytics or advertising integrations (like Google Analytics or Meta Pixel) to your own storefront, those tools may set their own cookies on your customers' devices — that is governed by your own use of those tools and their respective privacy policies.

6. Data retention

We keep your account data for as long as your account is active. Depending on your plan, revenue reports and staff activity logs are retained for 90 or 365 days as described on our pricing page. If you close your account, we delete or anonymise your data within a reasonable period, except where we're required to keep records for legal or tax purposes.

7. Your rights

If you're in the UK or EU, you have rights under UK GDPR and the EU GDPR — including the right to access, correct, delete, or export your account data, and to object to certain processing. If you're in Nigeria, similar rights apply under the Nigeria Data Protection Act (NDPA). To exercise these rights over your own account data, contact us using the details below. If your request concerns data collected by a merchant's storefront, we'll direct you to that merchant, since they are the controller of that data.

8. International data transfers

We operate from the UK and serve merchants mainly in Nigeria. Where data crosses borders, we protect it to a standard consistent with UK data protection law.

9. Changes to this policy

We may update this Privacy Policy from time to time. If we make material changes, we'll make reasonable efforts to notify you before they take effect.

10. Contact

Questions about this policy, or requests relating to your own account data, can be sent to hello@salescenta.com or via our contact page.