Fareboos is committed to protecting the privacy rights of individuals in the European Union and beyond. This page explains how we comply with the General Data Protection Regulation (GDPR).
Last updated: May 19, 2026
GDPR applies to any personal data we process about individuals in the European Economic Area (EEA) and United Kingdom. While Fareboos is headquartered in Nigeria and primarily serves African markets, we serve customers with operations in Europe and process data of EU/UK individuals as a data processor on behalf of our customers.
For data about our own customers (account holders, admins, users), Fareboos acts as a Data Controller — we determine the purpose and means of processing.
For end-customer data (shipment recipients, for example) that our customers input into Fareboos, we act as a Data Processor on behalf of our customers who are the Data Controllers.
We enter into Data Processing Agreements (DPAs) with customers who require them. Contact privacy@fareboos.com to request a DPA.
Request a copy of all personal data we hold about you. We will respond within 30 days.
Ask us to correct inaccurate or incomplete personal data at any time.
Request deletion of your personal data where we have no legitimate reason to continue processing it.
Ask us to pause the processing of your personal data in certain circumstances.
Receive your personal data in a structured, machine-readable format and transmit it to another controller.
Object to processing of your personal data for direct marketing or where we rely on legitimate interests.
To exercise any of these rights, submit a request to privacy@fareboos.com. We will verify your identity and respond within 30 days. Complex requests may be extended to 90 days with notice.
Our primary infrastructure is hosted on AWS data centres in the Africa (Cape Town) region. Where data is transferred to processors outside the EEA (e.g., certain analytics tools), we ensure appropriate safeguards are in place via Standard Contractual Clauses (SCCs) approved by the European Commission.
We use the following key sub-processors who may handle EU personal data:
| Processor | Purpose | Location |
|---|---|---|
| Amazon Web Services | Cloud infrastructure & storage | South Africa / EU |
| Africa's Talking | SMS & WhatsApp delivery | Kenya |
| Flutterwave | Payment processing | Nigeria / USA |
| PostHog | Product analytics | USA (EU hosting available) |
In the event of a personal data breach affecting EU individuals, we will notify the relevant supervisory authority within 72 hours of becoming aware of it (where feasible), and will inform affected individuals without undue delay where the breach is likely to result in a high risk to their rights and freedoms.
Our Data Protection contact is reachable at dpo@fareboos.com. You also have the right to lodge a complaint with your local supervisory authority (e.g., the ICO in the UK, or your country's data protection authority in the EU).