1. Purpose of this policy

This Privacy Policy explains how Ospery collects, uses, shares, and protects personal information across the Ospery website, mobile applications, partner program, support flows, and related services.

2. Data controller

The Ospery platform is operated by Styps Ltd, a company registered in England and Wales. References to "Ospery", "we", "our", or "us" refer to Styps Ltd as the platform operator.

3. Information we collect from users

We may collect account and profile information such as names, phone numbers, email addresses, profile details, device information, support communications, and activity related to orders, messaging, ratings, and feature usage.

4. Seller and business information

For sellers and businesses we may collect business names, business locations, product or service listings, verification details, payment-account onboarding information, and operational records needed to support the platform.

5. Partner application and territory data

When you apply to become an Ospery partner, we may collect your full name, email, phone number, operating country, business or organization name, years in operation, promotion strategy, proof of local presence, application status, territory allocation records, and communications about approval or decline.

Because the partner program is manually reviewed and territory-based, we may also keep records needed to check country capacity, duplicate submissions, local presence, and partner performance.

6. Transaction, payment, and referral data

We collect transaction-related metadata such as order details, timestamps, payment references, provider status updates, and commission records. Payments are processed by third-party providers including pawaPay for supported African payment flows and Stripe for global card and digital wallet flows.

Depending on the transaction flow, funds may be collected into a platform account within the payment provider environment and later settled to sellers through provider payout systems.

All funds remain within licensed payment provider infrastructure at all times.

Ospery does not store full card numbers, mobile wallet PINs, or equivalent payment credentials. Ospery does not independently store or custody funds and does not provide stored value accounts.

For the partner program we may collect referral attribution records, assigned territory, earnings ledger entries, payout status, and performance metrics tied to subscriptions, AI credit packs, and transaction commissions.

We may receive transaction status updates, payout confirmations, and verification signals from payment providers to support transaction processing, fraud prevention, reconciliation, and compliance.

6A. Payment data responsibility

Payment providers are responsible for processing payments, managing funds, and handling sensitive financial credentials such as card details and mobile money authentication data.

Ospery only processes transaction-related metadata necessary to operate the platform, including order records, payment references, payout status, and commission tracking.

7. Messaging, location, support, and AI data

We may process message history, uploaded media, approximate or device location data where enabled, customer-support communications, and prompts or usage data related to AI-powered tools so we can operate, secure, and improve the platform.

8. How we use information

We use personal information to provide the platform, create and manage accounts, process partner applications, allocate territories, measure partner earnings, respond to support requests, prevent fraud, enforce policies, improve features, comply with legal obligations, and communicate important service or policy updates.

9. How we share information

We may share information with payment providers (such as pawaPay and Stripe), cloud and infrastructure vendors, analytics providers, professional advisers, and authorities where required by law or necessary to operate and protect the platform.

Partner application and earnings information may also be visible to authorized Ospery personnel who review applications, allocate territories, investigate fraud, and manage partner operations.

We do not sell personal data to third parties.

10. Partner privacy and security responsibilities

Partners must use lead, referral, seller, and customer information only for approved Ospery-related activities. Partners must not scrape the platform, buy or sell personal data, share information with unauthorized parties, or use personal data for unrelated marketing or unlawful outreach.

Partners are expected to secure devices, accounts, and referral materials, and must promptly notify Ospery if they suspect unauthorized access, a security incident, or misuse of personal information.

11. Data retention

We retain information for as long as reasonably necessary to provide services, maintain ledgers and audit trails, review partner applications, manage territories, resolve disputes, detect abuse, and comply with legal or regulatory obligations.

12. International data transfers

Ospery may process personal information in multiple countries depending on infrastructure providers, operational support, and payment flows. Where required, we take reasonable steps to ensure appropriate safeguards are in place.

13. Your rights

Depending on your location, you may have the right to request access to personal data, correction of inaccurate data, deletion, restriction, portability, or objection to certain processing. We may need to verify your identity before acting on a request.

14. Security

We use reasonable technical and organizational measures to help protect personal information, including secure infrastructure, access controls, and encrypted connections where appropriate. No system can guarantee absolute security.

15. Children's privacy

Ospery is not intended for children under 13. If we become aware that personal information has been collected from a child in violation of applicable law, we will take steps to delete it.

16. Updates to this policy

We may update this Privacy Policy periodically. Where required, we will post the revised version or provide notice of material changes before they take effect.

17. Contact

For privacy or data-protection inquiries: support@ospery.app.