Privacy Policy

1. Introduction and Scope of Policy

This Privacy Policy ("Policy" or "Privacy Statement") meticulously details the comprehensive practices of MshikoTap ("Company," "we," "us," or "our") concerning the collection, utilization, processing, storage, disclosure, and protection of your personal information (hereinafter referred to as "Personal Data") when you access, interact with, or utilize our proprietary digital platform, encompassing all associated websites, mobile applications, functionalities, products, and services (collectively, the "Service" or "Platform"). This Policy is designed to be fully compliant with prevailing global data protection regulations and to reflect our unwavering commitment to safeguarding your privacy.

BY CONTINUING TO ACCESS, BROWSE, REGISTER FOR, OR OTHERWISE UTILIZE ANY FACET OF OUR SERVICE, YOU EXPLICITLY AND UNEQUIVOCALLY CONSENT TO THE COLLECTION, PROCESSING, AND SHARING OF YOUR PERSONAL DATA AS OUTLINED HEREIN. IF YOU DO NOT AGREE WITH ANY PROVISION OF THIS PRIVACY POLICY, YOU ARE STRICTLY PROHIBITED FROM ACCESSING OR UTILIZING THE SERVICE AND MUST IMMEDIATELY CEASE ALL INTERACTIONS WITH THE PLATFORM. Your continued engagement with the Service following any amendments to this Policy signifies your binding acceptance of such modifications.

2. Information We Collect and Its Categories

To facilitate the provision, enhancement, and optimization of our Service, we systematically collect and process various categories of information, which may include Personal Data:

2.1. Personal Data Voluntarily Provided by You:

• Identity and Contact Data: This encompasses your full legal name (or chosen username), email address, verifiable phone number (including country code), and geographical location (country of residence).
• Account Credentials: Securely hashed passwords used for authentication purposes. We do not store passwords in plain text.
• Demographic Information: Your declared user category (e.g., student, employee, other) and other optional demographic details you may choose to provide.
• Financial and Payment Data: Information necessary for processing withdrawals, such as mobile money identifiers, bank account details, and payment processor account information. **Note: We do not directly collect or store sensitive financial data like full credit card numbers.** All such transactions are processed via secure third-party payment gateways compliant with industry standards.
• Communication Data: Records of all correspondence and interactions with our support teams, including emails, chat logs, and feedback submissions.
• User-Generated Content and Task Submissions: Any content, data, or materials you upload, submit, or create while using the Service, including but not limited to task completion proofs (e.g., screenshots, direct links to external platforms), survey responses, comments, and any other data associated with task execution.
• Referral Data: If you register using a referral code, we collect the code provided to attribute the referral correctly.

2.2. Data Automatically Collected During Service Interaction:

When you access or use our Service, we automatically collect certain technical and usage information through various technologies:

• Device and Connection Data: Includes your Internet Protocol (IP) address, browser type and version, operating system and platform, unique device identifiers, mobile network information, and other device-specific details.
• Usage and Interaction Data: Comprehensive information about your activities on the Service, such as the pages or features you view, the specific tasks you engage with, the time spent on those tasks, clickstream data, access times and dates, and referring URLs.
• Log Data: Server logs that automatically record information created by your use of the Service, including system activity, hardware settings, browser crashes, and referrer URL.
• Location Data: We infer your general geographic location (e.g., city, country) based on your IP address. We do not collect precise geolocation data without your explicit consent.
• Cookies and Other Tracking Technologies: As detailed in Section 8, we utilize cookies, web beacons, pixels, and similar technologies to gather information, enhance user experience, analyze usage patterns, and facilitate advertising.

2.3. Information Obtained from Third-Party Sources:

• Third-Party Integrations: If you choose to link or connect your MshikoTap account with third-party services (e.g., social media platforms like Instagram, TikTok, YouTube for specific tasks), we may receive certain information from those services in accordance with their respective privacy policies and your privacy settings on those platforms. This information may include your public profile data, user ID, and content interaction data relevant to task verification.
• Analytics and Advertising Partners: We may receive aggregated or anonymized data, or certain Personal Data (e.g., IP address, device identifiers), from analytics providers and advertising partners to measure campaign performance and understand user demographics.
• Publicly Available Sources: We may collect information from publicly accessible databases or platforms to verify user data or for fraud prevention purposes.

3. How We Utilize Your Personal Data

We meticulously utilize the Personal Data collected for various legitimate and specified purposes essential to the operation, enhancement, and personalization of our Service. The primary objectives for our data processing activities include:

• Service Provision and Management: To establish and maintain your user account, authenticate your identity, facilitate your participation in and completion of Tasks, accurately process and distribute Rewards, manage withdrawal requests, and provide the core functionalities of the Service. This includes maintaining the operational integrity and functionality of the Platform.
• Service Improvement and Personalization: To conduct extensive data analysis to understand user behavior, preferences, and usage patterns. This enables us to continually optimize and improve existing features, develop novel functionalities, identify areas for innovation, and personalize your experience by tailoring content, advertising, and Task recommendations to your inferred interests and historical interactions.
• Communication and Notifications: To dispatch crucial service-related announcements, security alerts, administrative messages, and transactional notifications (e.g., reward confirmations, withdrawal updates). Furthermore, where legally permissible and with your explicit consent (if required), we may send promotional communications, marketing materials, and newsletters concerning new features, special offers, or third-party products and services that may be of interest to you.
• Security, Fraud Prevention, and Risk Management: To rigorously detect, prevent, and actively investigate instances of fraudulent activity, unauthorized access attempts, cybersecurity threats, system abuse, and any other illegal or prohibited conduct. This includes employing sophisticated algorithms and human review processes to identify patterns indicative of policy violations and to maintain the integrity of our reward system.
• Legal Compliance and Enforcement: To strictly adhere to all applicable local, national, and international laws, regulations, legal processes, and governmental requests. This also involves enforcing our Terms of Service, Privacy Policy, and other contractual agreements, and protecting our legal rights, property, and safety, as well as the rights, property, and safety of our users, partners, and the broader public.
• Analytics, Research, and Business Intelligence: To perform comprehensive statistical analysis, conduct market research, and generate aggregated or anonymized insights regarding user demographics, task performance, and platform trends. Such data, when anonymized, is utilized for strategic business planning, reporting, and product development without identifying individual users.
• Customer Support and Issue Resolution: To efficiently respond to your inquiries, provide comprehensive technical assistance, troubleshoot reported issues, and manage all aspects of customer service interactions, ensuring a responsive and helpful user support experience.

4. Disclosure and Sharing of Your Personal Data

We may disclose or share your Personal Data with third parties under specific circumstances and only when such disclosure is necessary, lawful, and aligned with the purposes outlined in this Privacy Policy. We implement stringent safeguards to ensure that your data remains protected when shared.

• Service Providers and Sub-Processors: We engage reputable third-party service providers and sub-processors to perform critical functions on our behalf. These include, but are not limited to, cloud hosting providers, payment processors, customer support platforms, email delivery services, data analytics vendors, fraud prevention specialists, and IT infrastructure providers. These third parties are contractually obligated to process your Personal Data only according to our instructions, to maintain strict confidentiality, and to implement appropriate security measures.
• For Legal and Regulatory Compliance: We may disclose your Personal Data if mandated by law, compelled by a valid court order, subpoena, or other legal process, or in response to legitimate requests from governmental or regulatory authorities. This includes disclosures necessary to establish, exercise, or defend our legal rights, investigate potential violations, prevent imminent harm to property or safety, or enforce our Terms of Service.
• Business Transfers and Corporate Transactions: In the event of a merger, acquisition, asset sale, corporate restructuring, or any other change of control, your Personal Data may be transferred to the acquiring or successor entity as part of the transferred assets. We will notify you via email or a prominent notice on our Service if such a transfer occurs and your Personal Data becomes subject to a different privacy policy.
• With Your Explicit Consent: We may share your Personal Data with third parties when we have obtained your clear, specific, and unambiguous consent to do so. You retain the right to withdraw such consent at any time, subject to legal or contractual restrictions.
• Aggregated or Anonymized Data: We may transform Personal Data into aggregated or anonymized forms that cannot reasonably be used to identify you. Such non-identifiable data may be shared with third parties for various purposes, including industry analysis, demographic profiling, research, marketing, and analytical reporting, without restriction.
• Affiliates and Group Companies: We may share your Personal Data with our current or future affiliates, subsidiaries, or other companies under common control, provided that such entities adhere to privacy practices consistent with this Policy.
• Advertisers and Partners: In specific and limited instances, and typically utilizing aggregated or anonymized data, we may share certain metrics or insights with our advertising partners to evaluate the efficacy of their campaigns and understand general user engagement. We do not share personally identifiable information with advertisers for direct marketing purposes without your explicit consent.

5. Data Security and Integrity

We are committed to protecting your Personal Data through the implementation of robust and industry-standard technical and organizational security measures. Our aim is to safeguard your information from unauthorized access, accidental loss, alteration, disclosure, or destruction. These measures include, but are not limited to:

• Encryption Technologies: All data transmitted to and from our Service is encrypted using secure socket layer (SSL/TLS) technology. Sensitive Personal Data at rest (where appropriate) is also subject to encryption.
• Access Control Mechanisms: Access to your Personal Data is strictly limited to authorized personnel who have a legitimate and demonstrable business need to access such information. Role-based access controls and multi-factor authentication are employed.
• Regular Security Audits and Vulnerability Assessments: We conduct periodic security audits, penetration testing, and vulnerability assessments to identify and remediate potential weaknesses in our systems and infrastructure.
• Data Minimization and Pseudonymization: We adhere to principles of data minimization, collecting only the Personal Data that is strictly necessary. Where feasible and appropriate, Personal Data is pseudonymized or anonymized to further reduce risks.
• Physical Security Measures: Our data centers and infrastructure are protected by physical security controls, including restricted access, surveillance, and environmental monitoring.
• Incident Response Plan: We maintain a comprehensive incident response plan to promptly detect, respond to, and mitigate the impact of any potential data breaches or security incidents.

While we endeavor to implement and maintain commercially acceptable security practices to protect your Personal Data, it is imperative to acknowledge that no method of transmission over the Internet or method of electronic storage is absolutely impregnable. Therefore, we cannot guarantee the absolute security of your Personal Data. You also bear a critical responsibility in maintaining the security of your account credentials (e.g., strong passwords, keeping login information confidential) to prevent unauthorized access to your account.

6. Data Retention Policies

We retain your Personal Data for no longer than is necessary to fulfill the specific purposes for which it was collected, as outlined in this Privacy Policy, and to comply with our legal, accounting, and reporting obligations. The retention periods are determined based on:

• Active Account Data: For the duration that your account remains active and for a reasonable period thereafter as required by law or for legitimate business interests (e.g., fraud prevention, dispute resolution, audit purposes).
• Inactive or Terminated Account Data: Data from accounts that have been inactive or explicitly terminated will be retained for a defined period to facilitate re-activation (if applicable), comply with regulatory requirements, or to prevent fraudulent re-registration. After this period, such data will be securely deleted or anonymized.
• Legal and Regulatory Requirements: We retain data as necessary to comply with legal obligations (e.g., tax, anti-money laundering laws), resolve disputes, and enforce our agreements.
• Anonymized and Aggregated Data: Data that has been fully anonymized or aggregated, such that it can no longer be associated with an identifiable individual, may be retained indefinitely for analytics, research, and business intelligence purposes.
• Consent-Based Data: Data processed based on your consent will be retained until you withdraw your consent, unless a separate legal basis for retention applies.

When Personal Data is no longer required for the purposes for which it was collected, we will securely delete it or anonymize it in accordance with our data destruction policies and applicable laws.

7. Your Data Protection Rights and Choices

As a data subject, you are endowed with specific rights concerning your Personal Data, which we are committed to upholding in accordance with applicable data protection laws, including but not limited to GDPR and CCPA where relevant. Your rights include:

• Right to Access (Subject Access Request): You have the right to request confirmation as to whether we are processing your Personal Data and, if so, to request a copy of the Personal Data we hold about you, along with information regarding the purpose of processing, categories of Personal Data concerned, recipients, and retention periods.
• Right to Rectification: You have the right to request the correction of inaccurate or incomplete Personal Data. Upon verification, we will promptly update your information.
• Right to Erasure (Right to be Forgotten): In certain circumstances, you have the right to request the deletion or removal of your Personal Data where there is no compelling reason for its continued processing (e.g., data is no longer necessary for the purposes for which it was collected, you withdraw consent, or data has been unlawfully processed). This right is subject to legal and operational requirements, such as fraud prevention or compliance with legal obligations.
• Right to Restriction of Processing: You have the right to request that we restrict the processing of your Personal Data in certain situations (e.g., you contest the accuracy of the data, the processing is unlawful, or we no longer need the data but you require it for legal claims).
• Right to Object to Processing: You have the right to object to the processing of your Personal Data, particularly for direct marketing purposes or where processing is based on our legitimate interests, if your specific situation justifies such an objection.
• Right to Data Portability: You have the right to receive your Personal Data in a structured, commonly used, and machine-readable format, and to transmit that data to another controller without hindrance from us, where technically feasible and where processing is based on consent or contract.
• Right to Withdraw Consent: Where the processing of your Personal Data is based on your explicit consent, you have the right to withdraw that consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
• Right to Lodge a Complaint: You have the right to lodge a complaint with a supervisory authority if you believe your data protection rights have been violated.

To exercise any of these sophisticated rights, please direct your request to our designated Data Protection Officer at privacy@mshikotap.com. We are committed to responding to all legitimate requests in accordance with applicable data protection laws within the stipulated timeframes. Please note that we may require verification of your identity before processing such requests to ensure the security of your Personal Data.

8. Cookies and Advanced Tracking Technologies

We and our authorized third-party service providers utilize cookies, web beacons, pixels, and other analogous tracking technologies (collectively, "Tracking Technologies") to persistently track activity on our Service and to store certain data. These Tracking Technologies are deployed for a multitude of purposes, including, but not limited to, enhancing user experience, facilitating core functionalities, analyzing usage patterns, personalizing content, and assisting with targeted advertising.

• Definition of Cookies: Cookies are small text files, often containing a unique identifier, that are placed on your computer or mobile device when you visit a website. They are widely used to make websites work or work more efficiently, as well as to provide reporting information.
• Categories of Cookies We Employ:
  • Strictly Necessary Cookies: Essential for the operation of our Service, enabling core functions like security, network management, and accessibility. Without these, the Service cannot be fully provided.
  • Performance and Analytics Cookies: Collect information about how you use our Service, such as which pages you visit most often, and if you get error messages from web pages. These help us improve the performance and design of the Service.
  • Functionality Cookies: Allow our Service to remember choices you make (e.g., your username, language, or the region you are in) and provide enhanced, more personal features.
  • Targeting/Advertising Cookies: Used to deliver advertisements more relevant to you and your interests. They are also used to limit the number of times you see an advertisement as well as help measure the effectiveness of the advertising campaign.
• Third-Party Cookies: In addition to our own cookies, we may also use various third-parties cookies to report usage statistics of the Service, deliver advertisements on and through the Service, and so on.
• Your Comprehensive Control Over Cookies: You possess the prerogative to configure your web browser to refuse all cookies or to indicate when a cookie is being sent. However, it is important to note that if you opt not to accept cookies, certain functionalities, features, or portions of our Service may become inaccessible or may not operate correctly.
• Do Not Track Disclosure: We do not respond to Do Not Track (DNT) signals. Some third-party websites do keep track of your browsing activities when they serve you content, which enables them to tailor what they present to you. If you are visiting such websites, you may set the DNT signal on your browser to let third parties know that you do not want to be tracked.

9. International Data Transfers and Cross-Border Processing

Given the global nature of the internet and our Service, your Personal Data, including data collected within jurisdictions such as the European Economic Area (EEA), may be transferred to and subsequently processed and maintained on computer systems located outside of your country of residence, state, province, or other governmental jurisdiction. It is imperative to acknowledge that the data protection laws and privacy regulations in these destination jurisdictions may materially differ from those in your own jurisdiction, potentially offering varying levels of protection.

BY UTILIZING THE SERVICE, YOU EXPLICITLY AND UNAMBIGUOUSLY CONSENT TO THE CROSS-BORDER TRANSFER, STORAGE, AND PROCESSING OF YOUR PERSONAL DATA IN ACCORDANCE WITH THIS PRIVACY POLICY. We undertake all commercially reasonable and legally mandated steps to ensure that your Personal Data is treated with the utmost security and in strict accordance with this Privacy Policy. Furthermore, we will not transfer your Personal Data to an organization or a country unless adequate controls are demonstrably in place, encompassing the robust security of your data and other personal information, in compliance with applicable data protection laws (e.g., through the use of Standard Contractual Clauses, binding corporate rules, or reliance on adequacy decisions).

Specifically, for transfers of Personal Data originating from the EEA or other regions with robust data protection laws, we ensure that such transfers are conducted under a valid legal mechanism, such as:

• Standard Contractual Clauses (SCCs) approved by the European Commission, obligating recipients to protect Personal Data to an equivalent standard.
• Binding Corporate Rules (BCRs), if applicable to our organizational structure.
• Reliance on an adequacy decision from the European Commission, where applicable.
• Your explicit consent, where no other legal basis for transfer is available or applicable.

10. Children's Privacy and Parental Consent

Our Service is expressly not intended for, nor directed at, individuals under the age of eighteen (18) years ("Children" or "Minors"). We are resolute in our commitment to complying with all applicable laws and regulations concerning children's online privacy, including, where relevant, the Children's Online Privacy Protection Act (COPPA) and other regional equivalents.

WE DO NOT KNOWINGLY OR INTENTIONALLY COLLECT PERSONALLY IDENTIFIABLE INFORMATION FROM CHILDREN. If you are a parent or legal guardian and have reason to believe that your Child has provided us with Personal Data without your verifiable parental consent, we strongly urge you to contact us immediately using the contact details provided in Section 13 of this Policy.

Upon receiving such notification, or if we independently become aware that we have collected Personal Data from a Child without the requisite parental consent, we will undertake prompt and diligent steps to remove such information from our servers and terminate the associated account, if applicable. We employ reasonable efforts to prevent registration by children and to identify and remove any data inadvertently collected from them.

11. Links to External Third-Party Websites and Services

Our Service may contain prominent links, advertisements, or integrations that direct you to external websites, platforms, or services that are not owned, operated, or controlled by MshikoTap ("Third-Party Services"). These links are provided solely for your convenience or as part of the Service's functionality (e.g., links to social media platforms for task completion).

PLEASE BE AWARE THAT WE HAVE NO CONTROL OVER, AND ASSUME NO RESPONSIBILITY FOR, THE CONTENT, PRIVACY POLICIES, OR PRACTICES OF ANY THIRD-PARTY SERVICES. We do not endorse or make any representations about these Third-Party Services. Your interaction with any Third-Party Service, including any data you provide to them, is governed by their respective terms of service and privacy policies, not by this Policy.

We strongly advise and encourage you to meticulously review the privacy policies and terms of service of every Third-Party Service you visit or interact with. This proactive step will ensure you are fully informed about their data collection, usage, and sharing practices before disclosing any Personal Data. MshikoTap explicitly disclaims all liability for the privacy practices or the content of such Third-Party Services.

12. Amendments and Revisions to This Privacy Policy

MshikoTap reserves the absolute and sole discretion to modify, amend, or update this Privacy Policy at any time and for any reason deemed necessary. Any changes will become effective immediately upon being posted on this page, accompanied by an updated "Last Updated" date at the top of the Policy.

We will endeavor to provide notice of any material changes to this Privacy Policy through reasonable means, which may include, but are not limited to, prominent notices on the Service (e.g., a banner, pop-up notification), email communications to registered users, or other direct communication methods. However, it remains your sole responsibility to periodically review this Privacy Policy to stay informed of any updates or revisions.

YOUR CONTINUED USE OF THE SERVICE AFTER THE EFFECTIVE DATE OF ANY MODIFICATIONS TO THIS PRIVACY POLICY CONSTITUTES YOUR UNCONDITIONAL ACCEPTANCE OF SUCH MODIFICATIONS. If you do not agree to the revised Policy, your sole recourse is to discontinue using the Service and, if applicable, delete your account.

13. Contact Information and Data Protection Inquiries

For any questions, concerns, requests pertaining to your data protection rights, or general inquiries regarding this Privacy Policy or our data handling practices, please do not hesitate to contact our dedicated team through the following official channels:

When contacting us, please provide sufficient detail to enable us to identify your Personal Data and address your query effectively. We may require identity verification before processing certain requests related to your Personal Data.