Privacy Policy
Last updated: 3 June 2026
This Privacy Policy explains how TECHDIVE I.T. Services Limited (“TECHDIVE”, “we”, “us”, or “our”) collects, uses, stores, and protects personal data in connection with the StitchPad mobile application and the website at https://getstitchpad.com (together, the “Services”).
StitchPad is a product operated by TECHDIVE I.T. Services Limited, a company registered in Nigeria with the Corporate Affairs Commission (RC Number 7158888), with its registered office at 77B, Haastrup Street, Surulere, Lagos State, Nigeria.
We are the data controller for the personal data described in this policy, and we comply with the Nigeria Data Protection Act, 2023 (NDPA) and the regulations issued by the Nigeria Data Protection Commission (NDPC).
1. A note on whose data this is
StitchPad is a workshop manager for tailors. There are two kinds of personal data in the app, and it is important to understand the difference:
-
Your data (the tailor’s data). This is data about you as a StitchPad user — your name, email, business name, and how you use the app. For this data, TECHDIVE is the data controller and this policy governs how we handle it.
-
Your customers’ data. When you add customers, record their body measurements, save their photos, or log their orders, you are entering personal data about other people. For that data you (the tailor) are the data controller, and TECHDIVE acts as a data processor that stores and processes it on your behalf so we can provide the Services. You are responsible for having a lawful basis (such as your customers’ consent) to record and store their information in StitchPad. See Section 9.
2. Personal data we collect
Account and profile data
- Your name and email address
- Your password (stored only as a secure hash by our authentication provider; we never see it)
- If you sign in with Google or Apple, the account identifier and basic profile data those providers share with us
- Your business name, business logo, and WhatsApp number
- Optional phone number you choose to add
Workshop data you enter
- Customers you add (names, phone/WhatsApp numbers, and any notes or delivery preferences)
- Body measurements you record
- Style and inspiration photos you upload
- Orders, prices, deposits, due dates, payment status, and order photos
Usage and device data
- Device type, operating system, and app version
- IP address and general (city/region-level) location derived from it
- Diagnostic and crash data used to keep the app stable
Payment data
- Subscriptions are billed through the Apple App Store, Google Play, or [Paystack, if/when enabled]. Those providers process your payment details directly. We do not collect or store your card or bank details. We receive only confirmation of your subscription status.
We do not collect special-category data (such as health, religion, or biometric data) and ask that you do not record such data about your customers in the app.
3. How we use personal data
We use personal data to:
- Create and manage your account and authenticate you
- Provide the core Services — storing your customers, measurements, orders, and photos
- Generate AI-assisted suggestions (for example, draft customer messages and growth suggestions). See Section 5.
- Send you transactional emails (for example, sign-up confirmations and account notices)
- Provide customer support
- Maintain the security, stability, and performance of the Services
- Comply with our legal obligations under the NDPA and other applicable law
Under the NDPA, we rely on the following lawful bases: performance of our contract with you (to provide the Services), your consent (for optional features), our legitimate interests (to secure and improve the Services), and compliance with a legal obligation.
4. Third parties we share data with (our processors)
We do not sell your personal data. We share it only with service providers who process it on our behalf, under contract, to run the Services:
| Provider | Purpose | Notes |
|---|---|---|
| Google (Firebase) — Authentication, Cloud Firestore, Cloud Storage, Crashlytics | Account sign-in, data storage, photo storage, crash diagnostics | Data is stored in Google’s europe-west1 (Belgium) region — see Section 6 |
| Google Cloud (Vertex AI / Gemini) | Generating AI-assisted suggestions | See Section 5 |
| Resend | Sending transactional email | Sent from send.getstitchpad.com |
| Apple App Store / Google Play | Sign-in and subscription billing | Process payment details directly |
| [Paystack] | Payment processing [if/when enabled] | Nigerian payment processor |
| Vercel / Cloudflare | Hosting and serving the getstitchpad.com website |
We may also disclose personal data if required by law, court order, or a lawful request from a competent authority, or to protect our rights, users, or the public.
5. AI-assisted features
StitchPad offers AI-assisted features (such as draft customer messages and growth suggestions). To generate these, relevant context — which may include customer names, order details, or business information — is sent to Google Cloud Vertex AI / Gemini to produce the suggestion.
- Suggestions are drafts for your review, not professional advice, and may be inaccurate. You are responsible for what you choose to send or act on.
- We do not use your data, or your customers’ data, to train third-party AI models, and our AI provider is contractually restricted from doing so.
6. Where your data is stored and cross-border transfers
Your data is stored using Google Cloud infrastructure in the europe-west1 (Belgium) region. Because TECHDIVE is a Nigerian company and many of our users are in Nigeria, storing data in the EU is a cross-border transfer of personal data under the NDPA.
We rely on the NDPA’s permitted bases for such transfers — in particular that the destination (the European Union) provides an adequate level of data protection, and on appropriate contractual safeguards with our providers. By using the Services you acknowledge this transfer.
7. Data retention
- We keep your data for as long as your account is active.
- When you delete your account (Section 8), your data is permanently deleted — immediately when you delete in-app, or within 7 days of an email deletion request — and we do not keep backups of deleted accounts.
- Limited diagnostic and crash data, not retained in a form linked to your identity, may persist for service-quality purposes.
8. Deleting your account and data
You can delete your StitchPad account and all associated data at any time:
- In-app: Settings → Delete account → confirm.
- By email: email privacy@getstitchpad.com or support@getstitchpad.com from your registered email address with the subject “Delete my account”. We action it within 7 days.
You can also delete individual records (a customer, an order, or a measurement) from inside the app without deleting your whole account. Full instructions are at https://getstitchpad.com/delete-account.
9. Your responsibilities for your customers’ data
Because you enter personal data about your customers, you must:
- Only record customer data you are entitled to record and store;
- Where required, obtain your customers’ consent before storing their data in StitchPad;
- Respond to your customers’ own requests about their data; and
- Use the customer data in StitchPad lawfully.
We will help you fulfil these duties — for example, by giving you tools to edit and delete customer records — but you are the controller of that data.
10. Your rights under the NDPA
You have the right to:
- Access the personal data we hold about you
- Rectify inaccurate or incomplete data
- Erase your data (“right to be forgotten”)
- Restrict or object to certain processing
- Withdraw consent at any time, where processing is based on consent
- Data portability — receive your data in a usable format
- Lodge a complaint with the Nigeria Data Protection Commission (NDPC)
To exercise any of these rights, email privacy@getstitchpad.com. We respond within the timeframe required by the NDPA.
11. Security
We protect personal data with encryption in transit (HTTPS/TLS), access controls, and server-side security rules that restrict each user to their own data. No system is perfectly secure, but we work to protect your data and will notify you and the NDPC of a breach where the law requires.
12. Children
The Services are intended for users 18 years and older. We do not knowingly collect data from anyone under 18. If you believe a minor has provided us data, contact us and we will delete it.
13. Changes to this policy
We may update this policy from time to time. We will update the “Last updated” date above and, for material changes, notify you in-app or by email. Continued use of the Services after a change means you accept the updated policy.
14. Contact us
Data controller: TECHDIVE I.T. Services Limited (RC 7158888) Registered office: 77B, Haastrup Street, Surulere, Lagos State, Nigeria Privacy enquiries / Data Protection contact: privacy@getstitchpad.com General support: support@getstitchpad.com