This Privacy Policy explains how Purpledot Ltd ("we", "us", "our") collects, uses, and protects information when you use the QNotify platform. We are committed to protecting your privacy and handling your data responsibly.
Who This Policy Applies To
Business users
Organizations and staff who use QNotify to manage queues and serve customers.
End customers
People who scan QR codes to join queues and receive notifications.
What We Collect
From business users
Name, email address, and organization name (at registration)
Payment information (processed securely via Paystack or Stripe — we do not store card numbers)
Device and browser information for security and support
From end customers
Name (optional — customers can join as "Guest")
Phone number (optional — only if SMS notifications are requested)
Push notification subscription token (if alerts are enabled)
Queue position and status data
Browser and device type (for notification delivery)
End customers do not need to create an account, provide an email, or download an app. Data collection is minimal by design.
How We Use Your Data
Operate the Service
Managing queues, sending notifications, tracking positions, and displaying queue status.
Process payments
Billing, invoicing, and subscription management via secure payment providers.
Improve the Service
Analytics on queue patterns, wait times, and feature usage (aggregated, not individual).
Communicate
Service updates, billing notifications, and support responses.
SMS & Push Notifications
When a business uses QNotify to notify their customers:
SMS messages are sent via third-party providers (e.g., mNotify for Ghana, Twilio for international)
Push notifications use the Web Push API with VAPID encryption
Notification content is limited to queue status updates (e.g., "It's your turn, please proceed to Counter 3")
We do not send marketing messages to end customers
End customers can disable notifications at any time by closing their browser tab or revoking push permissions
Data Sharing
We do not sell your data. Ever.
We share data only with:
Payment processors
Paystack, Stripe — to process subscription payments
SMS providers
mNotify, Twilio — to deliver SMS notifications on behalf of businesses
Hosting infrastructure
Cloud servers — to operate the Service
Law enforcement
Only when legally required by a valid court order
Data Retention
B
Business accounts
Retained for the life of the account + 30 days after cancellation
Q
Queue entries
Customer data retained for 90 days for analytics, then automatically purged
P
Push subscriptions
Tokens deleted when the queue entry completes or after 7 days
P
Payment records
Retained as required by applicable tax and financial regulations
Data Security
We implement appropriate technical measures to protect your data:
All data in transit is encrypted via TLS/HTTPS
Multi-tenant data isolation ensures organizations cannot access each other's data
Push notifications use VAPID-signed encryption
Database access is restricted and audited
Staff access to customer data is limited to what is necessary for support
Your Rights
Depending on your jurisdiction, you may have the right to:
Access
Request a copy of the data we hold about you
Correction
Update or correct inaccurate data
Deletion
Request deletion of your data (subject to legal retention)
Export
Receive your data in a portable format
Business users can exercise these rights from account settings. End customers can contact the business or reach us directly.
Cookies
The QNotify application uses:
Session cookies
Required for authentication and CSRF protection. Essential — cannot be disabled.
Preference cookies
To remember settings like dark/light mode preference.
We do not use advertising or third-party tracking cookies. Public queue status pages set no cookies for end customers.
Children's Privacy
The Service is designed for business use and is not directed at children under 18. We do not knowingly collect personal data from children. End customers who join queues as "Guest" provide no personal data.
International Data Transfers
Our servers are located in regions that serve our customer base. If your data is transferred to a jurisdiction with different data protection laws, we ensure appropriate safeguards are in place, including contractual protections with our service providers.
Ghana Data Protection Act
For users in Ghana, we comply with the Data Protection Act, 2012 (Act 843). The Data Protection Commission of Ghana oversees data protection compliance. You may contact them at dataprotection.org.gh for any concerns.
Changes to This Policy
We may update this Privacy Policy from time to time. We will notify business users of material changes via email. The "Last updated" date at the top indicates when the policy was most recently revised.
Contact Us
For privacy-related questions or to exercise your rights, email
privacy@qnotifi.com
