Who we are
Severus is operated by a Nigerian-incorporated entity. We act as a data controller for the account information you give us directly (your profile, workspace, billing) and as a data processor for the request and audit data your workspace produces while using the product.
Lawful basis
We process personal data to (a) deliver the service you contracted us to provide, (b) meet legal obligations including anti-money-laundering record keeping, and (c) where you have given specific consent — primarily for non-essential communications.
Your rights
- Right of access — see what we hold about you. Most of it is surfaced in /settings/account.
- Right to rectification — edit profile and workspace data directly inside the product.
- Right to erasure — email privacy@severus.ng. Note that audit data is retained where compliance law requires.
- Right to data portability — workspace owners can export their full dataset on request.
- Right to object to processing — write to us if any specific processing is unwanted; we'll respond within seven days.
Cross-border transfers
Where any personal data is transferred outside Nigeria — typically for hosting redundancy or sub-processor services — we use contractual safeguards aligned with NITDA guidance.
Breaches
In the event of a personal-data breach, we will notify NITDA within 72 hours of discovery and notify affected workspaces without undue delay.
Data Protection Officer
Our DPO can be reached at dpo@severus.ng. For complaints we cannot resolve, you may approach NITDA directly.