Utopie Pay Concierge

Cookie Policy

Effective Date: January 1, 2026 | Last Updated: January 7, 2026

This Cookie Policy explains how Utopie Pay Concierge uses cookies and similar tracking technologies in compliance with NDPR 2019, GDPR, ePrivacy Directive, and international data protection standards governing cross-border trade and payment processing.

1. What Are Cookies and Tracking Technologies

Cookies are small text files stored on your device when you access our platform. We use them to authenticate users, remember preferences, analyze usage patterns, and ensure platform security - all critical for international trade operations.

1.1 Types of Technologies

  • HTTP Cookies: Standard browser cookies for session management
  • Authentication Tokens: Secure JWT tokens for user authentication
  • Local Storage: Browser storage for offline capabilities
  • Web Beacons: Tracking pixels for email delivery confirmation
  • Device Fingerprinting: Security measure to detect fraudulent access

2. Categories of Cookies We Use

2.1 Strictly Necessary Cookies (Cannot Be Disabled)

Essential for platform functionality under contractual necessity:

Cookie Purpose Duration
auth_token User authentication and session management 7 days
csrf_token Security protection against cross-site attacks Session
session_id Maintain continuous session across platform Session
user_role Store user role (CLIENT, ADMIN, SUPER_ADMIN) 7 days

2.2 Security and Fraud Prevention Cookies

Required for CBN AML/CFT compliance and customs security:

  • Device Fingerprinting: Detect suspicious login attempts from unknown devices
  • Rate Limiting Tokens: Prevent API abuse and DDoS attacks
  • Transaction Monitoring: Track patterns for anti-money laundering as required by CBN Regulations 2022
  • Bot Detection: Distinguish legitimate users from automated bots
  • 2FA State: Two-factor authentication session management

2.3 Functional Cookies (Consent-Based)

Enhance user experience and remember preferences:

  • Currency Preference: NGN, USD, EUR, CNY, GBP selection
  • Language: English or other supported languages
  • Dashboard Layout: Widget positions and preferences
  • Notification Settings: Email, SMS, push notification preferences
  • Recent Activity: Quick access to recent shipments

2.4 Analytics and Performance Cookies (Legitimate Interest)

Help us improve platform performance:

  • Page Load Times: Monitor and optimize performance
  • Feature Usage: Understand which features are most valuable
  • Error Tracking: Identify and fix technical issues
  • Navigation Patterns: Improve user interface and workflows
  • A/B Testing: Test improvements before full deployment

3. Third-Party Cookies and Service Providers

3.1 Payment Processing (PCI-DSS Compliant)

Stripe: International card payments, fraud detection - Privacy Policy

Paystack: Nigerian payment gateway - Privacy Policy

Flutterwave: African payment methods - Privacy Policy

3.2 Infrastructure and Hosting

Vercel: Platform hosting and edge network - Privacy Policy

Supabase: Database and authentication - Privacy Policy

Cloudflare: Security and CDN - Privacy Policy

3.3 Communication Services

WhatsApp Business API: Customer support messaging

Twilio: SMS and voice communications

SendGrid: Transactional email delivery

4. Managing Your Cookie Preferences

4.1 Browser-Level Controls

All major browsers allow cookie management:

  • Google Chrome: Settings → Privacy and Security → Cookies
  • Mozilla Firefox: Options → Privacy & Security → Cookies
  • Safari: Preferences → Privacy → Manage Website Data
  • Microsoft Edge: Settings → Privacy → Cookies

Note: Blocking essential cookies will prevent you from using our customs clearance services.

4.2 Platform Cookie Settings

Manage cookie preferences directly in your account settings at any time. You can:

  • Enable/disable analytics cookies
  • Opt out of marketing cookies
  • Clear all non-essential cookies
  • Download your cookie data under NDPR data portability rights

5. Data Retention and Cookie Lifespan

Session Cookies: Automatically deleted when you close your browser

Short-term Persistent: 7-30 days for authentication and preferences

Long-term Persistent: Up to 1 year for user preferences (with consent)

Maximum Retention: No cookie stored longer than 2 years (NDPR compliance)

6. International Data Transfers via Cookies

Some cookies may transfer data internationally to service providers in USA, EU, and Canada. We ensure adequate safeguards through:

  • Standard Contractual Clauses (SCCs) approved by NITDA
  • Binding Corporate Rules for multinational providers
  • Privacy Shield Framework compliance where applicable
  • Encryption in transit using TLS 1.3

7. Your Rights Under NDPR and GDPR

You have the following rights regarding cookies and tracking:

  • Right to Object: Opt-out of non-essential cookies at any time
  • Right to Access: Request information about cookies placed on your device
  • Right to Erasure: Request deletion of cookie data (except where legally required)
  • Right to Withdraw Consent: Change cookie preferences in account settings
  • Right to Lodge Complaint: Contact NITDA or your local data protection authority

8. Updates to This Cookie Policy

We may update this Cookie Policy to reflect changes in technology, regulations, or our services. Material changes will be communicated via:

  • Prominent notice on our platform homepage
  • Email notification to registered users
  • In-app notification upon next login

Continued use after notification constitutes acceptance of updated terms.

9. Contact Information

Data Protection Officer:

Email: dpo@utopiepay.com

Phone: +234 816 919 6841

Privacy Inquiries:

Email: privacy@utopiepay.com

Address: No. 7 Awofeso Street, Lagos, Nigeria

Regulatory Authority:

National Information Technology Development Agency (NITDA)

Email: info@nitda.gov.ng