Privacy Policy

Last reviewed: June 2026

Effective: 1 June 2026

Plain English summary: We collect the minimum data needed to run your account. We never sell your data. Your client data belongs to you. You can request deletion at any time.

1. Who We Are

Ngozi CRM is operated by A-One Global Resourcing Ltd (AOGRL), a company incorporated in Mauritius (Business Registration No. C23014789). References to "we", "us", or "our" mean AOGRL.

For data protection purposes, AOGRL is the data controller for account and billing data. You (the clinic owner) are the data controller for your clients' personal data stored within the platform.

Contact: privacy@ngozi-crm.beauty

2. What Data We Collect

2.1 Account Data (you provide this)

2.2 Billing Data

2.3 Clinic Client Data (your data, not ours)

Data you enter about your own clients — names, contact details, treatment notes, appointment history, invoices, photos — is your data. We process it on your behalf as a data processor, not a data controller. We do not access, analyse, or share it except to provide the service.

2.4 Usage and Technical Data

2.5 Marketing Enquiries

If you submit a contact or trial request form on our website, we collect your name, email, phone, and clinic name to follow up with you about Ngozi CRM.


3. How We Use Your Data

4. Legal Basis for Processing (GDPR)

5. Data Storage and Security

Your data is stored on:

All data is encrypted in transit (TLS 1.2+) and at rest. Access is role-based — staff members only see data belonging to their own organisation. We perform regular backups.

Payment data never touches our servers. PayPal processes all card and payment information directly under their own PCI-DSS compliance programme.

6. Data Sharing

We do not sell, rent, or trade your personal data. We share it only with:

All sub-processors are bound by data processing agreements and operate under equivalent data protection standards.

7. International Transfers

Your data may be processed in the EU, UK, and USA (via our infrastructure providers). Where transfers occur outside the EEA, we rely on Standard Contractual Clauses (SCCs) or equivalent safeguards as required by UK and EU GDPR.

8. Data Retention

9. Your Rights

Under UK GDPR, EU GDPR, and applicable data protection laws, you have the right to:

To exercise any of these rights, email privacy@ngozi-crm.beauty. We will respond within 30 days.

You also have the right to lodge a complaint with your local supervisory authority:

10. Cookies

We use essential cookies only for session management and authentication. No advertising or tracking cookies. See our Cookie Policy for full details.

11. Children's Privacy

Ngozi CRM is a B2B platform for business owners. We do not knowingly collect data from anyone under 18. If you believe a minor has submitted data to us, please contact us immediately.

12. Changes to This Policy

We will notify active users by email of any material changes at least 14 days before they take effect. The "Last reviewed" date at the top of this page reflects the most recent update.

13. Contact

A-One Global Resourcing Ltd (AOGRL)
Souillac, Mauritius
Email: privacy@ngozi-crm.beauty
Website: ngozi-crm.beauty