Arteesa Legal Center
  • Terms
  • Deletion Policy
  • Data Rights
  • Support

Legal Document

Privacy Policy

Effective date: July 1, 2026 | Last updated: July 1, 2026

This Privacy Policy explains how Arteesa collects, uses, stores, shares, and protects personal data when you use Arteesa websites, mobile apps, and related services (collectively, the "Services").

1. Data Controller and Contact

Arteesa is operated by BST CONSULTING NIGERIA LIMITED ("Arteesa", "we", "us", "our"). For privacy questions, contact hello@arteesa.app.

2. Scope

This policy applies to clients, artisans, visitors, and any person interacting with Arteesa services, including website waitlists, the artisan web portal, mobile app onboarding, booking, messaging, wallet, payment, and review flows.

3. Data We Collect

3.1 Account and profile data

  • Name, email address, phone number, account role (client/artisan/admin), password hash, OTP verification status, and account status.
  • Profile photo/avatar, biography, artisan service categories, years of experience, service radius, and availability status.

3.2 Artisan verification and trust data

  • Proof of address, resume/CV or work-history documentation, face verification photo, and related verification status.
  • Guarantor contact details submitted during artisan onboarding, including name, email, phone number, and address.
  • Admin review outcomes, requests for more information, rejection/approval decisions, and related audit records.

3.3 Location and address data

  • User-provided address text, saved addresses, city/LGA/state, and latitude/longitude for service discovery, matching, and booking fulfillment.
  • Device location data where permission is granted, including location used to set service addresses and find nearby artisans.
  • Address lookup, geocoding, distance, and map data used to support matching and operational review.

3.4 Service and booking data

  • Service categories, service requests, descriptions, urgency level, preferred time, budget, assigned artisan, and booking status history.
  • Matching, artisan interest, selection, acceptance/decline, arrival, in-progress, completion, cancellation, and dispute records.
  • Uploaded photos and notes attached to requests, bookings, completion confirmation, support requests, or profiles.

3.5 Messages, evidence, and community data

  • Conversation and message content (text/images/location/invoice messages), timestamps, read status.
  • Photos, videos, screenshots, chat history, receipts, invoices, location evidence, and other dispute or support evidence submitted by users.
  • Ratings, reviews, complaints, abuse reports, block/report activity, and moderation outcomes.

3.6 Payment and wallet data

  • Payment references, payment status, booking amounts, platform fees, escrow/hold status where enabled, transaction history.
  • Wallet balances and payout requests.
  • Artisan payout details (for example bank account metadata required for settlement).

3.7 Device, notification, technical, and security data

  • Device/app identifiers, IP address, logs, fraud signals, crash/diagnostic signals, and anti-abuse metadata.
  • Push notification tokens, platform, device name, notification delivery data, and related preferences where notifications are enabled.
  • Admin action logs, access logs, and operational metadata used to protect the platform and review marketplace decisions.

4. Data Sources

  • Directly from you (forms, profile edits, bookings, messages, support requests).
  • Automatically from your use of the Services (logs, analytics, device and security events).
  • From device permissions you grant, such as camera/photo library access, location access, and push notification permissions.
  • From payment and infrastructure partners to confirm transaction outcomes and prevent fraud.
  • From counterparties, admins, support teams, or trust/safety reviews when they submit reports, evidence, or marketplace decisions.

5. Why We Process Data

  • To create and secure accounts (authentication, OTP, account recovery).
  • To verify artisans, review onboarding documents, and assess marketplace eligibility.
  • To match clients and artisans, manage bookings, track job status, confirm completion, process payments, and settle payouts.
  • To provide in-app messaging and support interactions.
  • To send operational notifications about booking status, artisan applications, matching, and support activity.
  • To detect abuse, prevent fraud, and enforce terms and community guidelines.
  • To resolve cancellations, refunds, disputes, chargebacks, appeals, and safety incidents.
  • To comply with legal, tax, accounting, and regulatory obligations.
  • To improve product performance, reliability, and user experience.
  • To send service notices and, where permitted, marketing communications.

6. Legal Bases (Global)

Where applicable under local law (including GDPR/UK GDPR), we rely on:

  • Contract necessity (service delivery, booking, payment, support).
  • Legitimate interests (fraud prevention, quality assurance, security, analytics).
  • Consent (certain location uses, marketing preferences, optional cookies).
  • Legal obligation (financial records, tax/regulatory compliance, dispute records).

7. How We Share Data

We may share data with:

  • Payment processors and financial partners for transaction processing, settlement, escrow/hold workflows, and chargeback handling where enabled.
  • Cloud, database, storage, hosting, analytics, communication, notification, mapping, and security service providers operating on our instructions.
  • Counterparties in a transaction (for example client and artisan details needed to complete booked work).
  • Administrators, support personnel, and trust/safety reviewers who need access to verify artisans, match requests, or resolve incidents.
  • Professional advisers, auditors, law enforcement, or regulators where required.
  • Potential acquirers in a merger/acquisition scenario subject to confidentiality and lawful transition controls.

We do not sell personal data in exchange for money.

8. Cookies and Similar Technologies

Arteesa websites use cookies and similar technologies for core functionality, analytics, and optional marketing attribution. See the Cookies and Tracking Notice for details and controls.

9. Data Retention

  • Account/profile data: retained while your account is active and for a limited period after closure.
  • Booking/payment/wallet records: retained as required for legal, tax, accounting, anti-fraud, and dispute defense.
  • Verification documents, guarantor information, admin actions, completion media, support/abuse reports, and dispute evidence: retained as needed for trust, safety, verification, fraud prevention, legal defense, and marketplace integrity.
  • Push tokens and device records: retained while useful for notification delivery or until replaced, disabled, or no longer associated with an active account.
  • Where deletion is requested, we delete or anonymize data unless retention is required by law or legitimate legal defense.

10. Your Privacy Rights

Subject to local law, you may request:

  • Access to your data.
  • Correction of inaccurate data.
  • Deletion of your account/data.
  • Restriction or objection to certain processing.
  • Data portability where technically feasible.
  • Withdrawal of consent where processing relies on consent.

Use the Data Rights Request page or email hello@arteesa.app.

11. Account Deletion

If your app account can be created, you can also request deletion from within the app and through the web pathway at Delete Account Request.

12. Security Controls

  • Role-based access controls, authentication controls, and token/session handling.
  • Private storage access controls for verification documents and service media.
  • Transport security and operational logging.
  • Periodic review of third-party integrations and SDK behavior.

No method of transmission or storage is perfectly secure; use strong credentials and protect your devices.

13. International Data Transfers

Data may be processed in multiple jurisdictions. Where required, we apply safeguards such as contractual controls and equivalent security standards.

14. Age Restriction

Arteesa is intended for adults (18+). We do not knowingly allow children to create accounts. If we learn a child account was created without valid authorization, we will remove it.

15. Policy Changes

We may update this policy to reflect legal, operational, or product changes. Material updates will be posted with a revised effective date and, where required, additional notice.

16. Contact and Complaints

Contact hello@arteesa.app. If your local law grants rights to complain to a supervisory authority, you may do so.

Arteesa Privacy Policy | Legal Center