Fido's commitment to information security

1. Introduction

Our Information Security Management System (ISMS) controls implemented per ISO/IEC 27001:2013 standards seek to ensure:

‍

• Confidentiality to protect all sensitive information from unauthorized access or disclosure.
• Integrity to protect all information from accidental, malicious, and fraudulent alteration or destruction; and,
• Availability of information services throughout the times agreed with the users and protected information against accidental or malicious damage or denial of service.

‍

Policy Guidelines

2. We Treat Your Information Responsibly per ISO 27001:2013 Standards

‍

1. FIDO Micro Credit Limited with Registration Number CS360712014 (“FIDO”, “We”, “Us” or “Our”) has its head office at No. 48 Blohum Road, Dzorwulu, Accra, Ghana.
2. FIDO promises to treat all your personal information carefully and responsibly.
3. Personal information includes any information that lets FIDO identify you as a unique individual, such as your name/s and surname combined with your physical address, contact details, and/or passport/identity number.

3. Your personal information is important to us

1. FIDO will only collect and process your personal information for the reason you provided it to us, or to enable us to comply with the requirements of specific laws that we are governed by.
2. FIDO may process your personal information to protect your or our legitimate interests. FIDO will not collect and process personal information about you that we do not need for this purpose. The general purposes for which FIDO collects and processes your personal information include, but are not limited to:
3. Creating a record of you on our system to verify your identity, provide you with the products and/or services you have applied for, and then communicate with and keep you informed about these products and/or services;
4. Assessing whether you qualify for the credit or an increase or decrease of your credit limit;
5. Identifying you and verifying your physical address, source of income,, and similar information;
6. Assessing your financial circumstances and needs before providing advice to you;
7. Any purpose related to the prevention of financial crime, including sanctions screening, monitoring of anti-money laundering,, and any financing of terrorist activities;
8. Further processing for historical, statistical,, or research purposes where the outcomes will not be published in an identifiable format
9. Providing income tax-related information to tax authorities;
10. For purposes relating to the sale or transfer of any of our businesses, legal entities,, or assets as part of corporate transactions;
11. Where you have applied for employment at FIDO, we perform applicant screening and background checks;
12. Where you are a FIDO employee (including contractors), we create an employment record of you on our system to facilitate continuous monitoring during your employment with us;
13. Where you are a FIDO director, we create a record of you as a director on our system;
14. Where you’ve been identified as a next of kin by an employee or customer, we create a record of you on our system; and
15. Where you are a supplier to FIDO, we process your personal information for due diligence, risk assessment, and administrative and payment purposes
16. Furthermore, FIDO will not process your special personal information unless:
17. You have consented to FIDO processing it
18. t is necessary to exercise or defend a right or obligation in law;
19. It is necessary to comply with an international legal obligation of public interest;
20. It is for certain historical, research,, or statistical purposes that would not adversely affect your privacy; or
21. You have deliberately made your information public.
22. There are some personal information fields that you have to fill in if you want FIDO to provide you with your chosen product and/or service or onboard you as an employee, supplier, director or job applicant. This information can be provided in writing, electronically, or telephonically, but it must be accurate and complete. These fields are indicated by an asterisk (or as otherwise indicated) on the respective platforms. If FIDO does not receive the necessary personal information, we may not be able to continue with your application. If you are already a(n) customer/employee/supplier/director and FIDO asks you for this information and you do not provide it, FIDO will have to suspend the provision of the product and/or services for a while, or as the case may be, even terminate our relationship with you.
23. In most cases, personal information will be collected directly from you, but there may be other instances when FIDO will collect personal information from other sources. These may include public records, places where you may already have made your personal information public (for example, on social media), credit bureaus, or individuals/directors whom you have appointed as your representative, where you are a corporate entity. FIDO will only collect your personal information from other sources where we are legally entitled or obliged to do so, and you are entitled to ask FIDO which sources they used to collect your personal information.  
24. For the purposes outlined in the paragraph (above), FIDO will, in most instances, collect and process your personal information internally. However, there are times when FIDO needs to outsource these functions to third parties, either within FIDO or external to FIDO, including parties in other countries. Where your personal information is shared internally within FIDO, such sharing will be carried out only for the purposes outlined in the paragraph (above). FIDO may also need to share your personal information with external organizations, such as credit bureaus, tax authorities, or other regulatory or industry bodies, so that we can meet our due diligence or regulatory requirements. We may need to share your personal information with our business partners or counterparties, where we are involved in corporate transactions relating to the sale or transfer of any of our businesses, legal entities, or assets. FIDO will not share your personal information with third parties who do not need your personal information, or where FIDO is not legally permitted to do so. When FIDO decides to transfer your personal information to third parties, we will only provide it to organizations that have the same data privacy policies as FIDO or those who are subject to laws relating to the processing of personal information that is similar to those that apply to FIDO.
25. There may be instances where FIDO will process your personal information through a secure automated tool, or perform profiling resulting in a decision that may affect you significantly. If you are unhappy about the outcome of such a decision, please contact us via info@fidocredit.com or send a ticket from our mobile app https://fido.onelink.me/mXlc/qwzioqq4 or call our IVR on +233242436885

4. We respect your rights

1. As a non-customer, if you would like to receive marketing information from FIDO through electronic media, please submit your details to FIDO in writing.
2. The right to access your personal information that we have on record, where applicable.
3. You have the right to ask FIDO to correct any of your incorrect personal information. These requests must be sent to us in writing.
4. You can ask FIDO to delete or destroy your personal information. You can also object to FIDO processing your personal information. These requests must be sent to FIDO in writing. However, the result of such a request will be that FIDO may have to suspend the provision of products and/or services for a while, or even terminate our relationship with you. FIDO’s records are subject to regulatory retention periods, which means that FIDO may not be able to delete or destroy your personal information immediately upon request.
5. If you have a complaint relating to the protection of your personal information, including how it has been collected or processed by FIDO, please visit our Headquarters at Masida House next to SSNIT Headquarters.

5. Your Duty as a Customer

1. Do not use weak passwords. Please make sure all passwords are of at least 8 characters in length and must contain at least 1 numeric character and 1 special character
2. Do make sure to regularly update your password at least every 90-day period.
3. Do not share your passwords with anyone.
4. Avoid any action that will infringe on the confidentiality, integrity, and availability of information received from FIDO.

5. Your Duty as a Third Party Vendor

1. You are required to not share any company confidential information which might have been exposed to you due to your dealings with FIDO
2. You are required to complete the Supplier Registration Form before doing any business with FIDO.
3. You are required to avoid any action that will infringe on the confidentiality, integrity, and availability of information received from FIDO.

‍

7. Right to amend this Policy

1. We reserve the right to amend this statement and communicate it to all stakeholders as need be.

‍

‍