Privacy Policy for NBR Remit

Effective Date: February 25, 2026

Last Updated: February 25, 2026

NBR Remit ("NBR Remit", "we", "our", or "us") provides digital remittance and financial service request features through the NBR Remit mobile app. This Privacy Policy explains how we access, collect, use, share, retain, and delete user data.

1) Scope

This Privacy Policy applies to:

  • The NBR Remit mobile application.
  • Related customer support, notification, and backend services.

2) Data We Collect

We may collect the following categories of data:

  • Account and profile data: Name, email address, phone number, profile photo URL, country, and account ID (such as Firebase UID).
  • Authentication and security data: Sign-in method, hashed 4-digit transaction PIN, app-generated device installation ID, login/session and risk/security metadata, and push notification token (FCM token).
  • Financial and transaction data: Add money, top-up, wallet, and iBanking request details, including amount, payment/service method, operator/provider/bank details, recipient phone/account details, transaction IDs, status, and timestamps.
  • Identity verification data: Passport image files and related metadata (for example file name, submission status, and submission time) when you submit verification.
  • Support and communication data: Live chat messages and user-selected support attachments, including image and audio files and optional voice recordings.
  • Location data: Coarse/fine location while the app is in use to support country detection and service discovery. Some core app flows may not function if required location permission is denied.
  • Notification data: Push notification content, delivery interaction (such as open/tap), and related routing metadata.
  • Device and app technical data: App version, error/debug information, and connectivity/session diagnostics for service reliability and security.

3) How We Use Data

We use data to:

  • Create and manage user accounts.
  • Authenticate users and protect account security.
  • Process remittance and financial service requests.
  • Verify payment and maintain transaction records.
  • Provide customer support, including chat support.
  • Send service and transaction notifications.
  • Prevent fraud, abuse, and unauthorized access.
  • Meet legal, compliance, and regulatory obligations.
  • Improve app stability, performance, and user experience.

4) How We Share Data

We may share data with:

  • Service providers that help operate the app infrastructure, messaging, support, and hosting.
  • Identity and notification providers such as Google Firebase services (for example authentication and push messaging).
  • Payment processors/gateways used to process add-money/payment flows.
  • Regulatory authorities, law enforcement, or courts where required by law.
  • Professional advisors or acquirers in a lawful business transfer scenario.

We do not sell personal data.

5) Permissions and Sensitive Access

Depending on your use, the app may request:

  • Location permission (for location-based country/service flow).
  • Microphone permission (for optional voice message in support chat).
  • Notification permission (for alerts and updates).
  • File/media selection access (when you choose files for passport verification or support chat).

6) Data Retention and Deletion

We retain data while your account is active and for as long as needed to provide services.

We may retain certain records for legal, security, fraud prevention, dispute resolution, and regulatory compliance.

Where deletion is requested and legally permitted, we delete or de-identify eligible data within a reasonable period.

Some data may remain in backups for a limited retention window before secure deletion.

Account deletion request channels:

7) Data Security

We use reasonable technical and organizational safeguards to protect personal and sensitive data, including access controls and secure transmission measures where applicable. No method of transmission or storage is 100% secure.

8) International Data Transfers

Your data may be processed in countries other than your own, depending on our infrastructure and service providers. We apply reasonable safeguards for such transfers as required by applicable law.

9) Children's Privacy

NBR Remit is not directed to children under 13 (or the minimum age required by local law). We do not knowingly collect personal data from children in violation of applicable law.

10) Your Rights and Choices

You may:

  • Update profile information in the app.
  • Control permissions in device settings (location, microphone, notifications).
  • Request account/data deletion using the channels listed above.
  • Contact support for privacy questions or requests.

11) Changes to This Policy

We may update this Privacy Policy from time to time. We will post updates in the app and/or associated public policy page with a revised "Last Updated" date.

12) Contact

NBR Remit Support

  • In-app Live Chat

Related account deletion page: https://topupplus.top/account-deletion