Marvibe Technologies Ltd. ("Marvibe", "we", "us") operates a pharmaceutical supply-chain platform used by hospitals and pharmacies in Nigeria. This policy explains what information we collect when you use our services or visit our website, and what we do with it.
We follow the Nigeria Data Protection Act, 2023 (NDPA) and the Nigeria Data Protection Regulation (NDPR). Where we act as a data processor on behalf of a hospital, we operate under that hospital's written instructions.
1. Who we are
Marvibe Technologies Ltd. is a company incorporated in Nigeria with its registered office at 18 Danube Street, Maitama, Abuja 900001. You can reach our Data Protection contact at help@marvibe.org.
2. What we collect
Information you give us
- Account details for pharmacy and hospital staff (name, role, work email, hospital affiliation)
- Form submissions, including the contact form on this website
- Support correspondence and messages you send our team
Information we receive from hospital systems
- Pharmaceutical inventory records (product, batch, lot, expiry, quantity, location)
- Procurement and transfer records between facilities
- Audit and access logs generated by the Marvibe application
Marvibe does not process patient-identifying medical records. Our platform is designed around inventory, procurement, and facility operations — not clinical data. Where a hospital integration would involve patient data, we advise the hospital to filter or anonymise it before sending it to Marvibe.
Information collected automatically
- Technical logs (IP address, browser, device, pages visited) for security and service reliability
- Usage analytics so we can understand how the platform is used and fix what's broken
3. How we use it
We use the information above to:
- Provide the Marvibe platform and keep it running
- Respond to your support requests and contact form submissions
- Generate the inventory reports, forecasts, and audit trails you've asked us to
- Detect and prevent fraud, abuse, and security incidents
- Meet our legal and regulatory obligations
- Improve the product, based on aggregated and de-identified usage patterns
4. Who we share it with
We do not sell your data. We share it only in these cases:
- With your hospital. If you use Marvibe as a member of a hospital team, your activity may be visible to authorised colleagues and administrators at that hospital.
- With our service providers. We use a small number of vetted vendors for cloud hosting, error monitoring, and email delivery. They are bound by written data processing agreements.
- With regulators. Where required to comply with NAFDAC reporting, tax filings, or a lawful order from a Nigerian authority.
- In a business transfer. If Marvibe is acquired or merged, information may transfer to the successor entity under the same commitments as this policy.
5. How we protect it
We apply administrative, technical, and physical safeguards proportionate to the sensitivity of the data we hold. These include encryption of data in transit and at rest, role-based access control, audit logging, routine vulnerability scans, and written breach-response procedures.
No system is perfectly secure. If we learn of a breach that affects your information, we will notify you and the Nigeria Data Protection Commission in line with NDPA requirements.
6. How long we keep it
We retain pharmaceutical and audit records for as long as the hospital's service agreement requires, and for any longer period required by Nigerian regulatory bodies (for example, NAFDAC record-keeping requirements). Other data is retained only as long as we need it for the purpose it was collected for.
7. Your rights
Under the NDPA, you have the right to:
- Access the personal information we hold about you
- Ask us to correct inaccurate information
- Request deletion where we no longer have a lawful reason to keep it
- Object to or restrict certain uses of your information
- Receive a copy of your information in a portable format
- Lodge a complaint with the Nigeria Data Protection Commission
To exercise any of these rights, write to help@marvibe.org. We respond within 30 days.
8. International transfers
Marvibe data is primarily stored in data centres within Nigeria. Where any processing takes place outside Nigeria (for example, backup storage or a third-party vendor), we ensure the destination country offers an adequate level of protection or that the transfer is covered by approved safeguards.
9. Cookies
Our website uses a minimal set of cookies and equivalent technologies. A session cookie keeps you logged in; a small analytics cookie helps us count unique visits. We do not use advertising or cross-site tracking cookies. You can disable cookies in your browser, though some parts of the platform may not work without them.
10. Changes to this policy
We may update this policy to reflect changes in our practices or the law. The effective date at the top of the page will change. For material changes, we will give you reasonable notice, including by email where we have your address.