Privacy Policy
Last updated: 14 July 2026
Cedar Bridge Pro Limited(“Cedar Bridge”, “we”, “us”) respects your privacy. This policy explains what personal data we collect through cedarbridgepro.com, why we collect it, and what rights you have over it.
We process personal data in line with the Nigeria Data Protection Act 2023 (NDPA) and the Nigeria Data Protection Commission's General Application and Implementation Directive 2025 (GAID), which replaced the earlier NDPR. Your right to privacy is also protected by Section 37 of the Constitution of the Federal Republic of Nigeria 1999.
Who we are
The data controller is Cedar Bridge Pro Limited, based in Trinity Plaza, Ring Road III, Uyo, Akwa Ibom State, Nigeria. For any question about this policy or your data, contact us at hello@cedarbridgepro.com or +234 814 138 6374.
What we collect
We only collect what we need to respond to you and deliver our services.
When you create an account
- Your name, email address and password (stored only as a secure one-way hash)
- Optionally your phone number, organisation and job title
When you request a booking
- Your contact details and organisation
- Details of the training you want: programme, delivery mode, number of participants, preferred dates, duration, location, industry, budget range and your objectives
- Any messages you send us about that booking
When you use the contact form
- Your name, email, and optionally phone and organisation
- The subject and content of your message
When you subscribe to our newsletter
- Your email address, and your name if you give it
- A record of your consent: the date and time, the exact wording you agreed to, your IP address and browser user agent. We keep this as evidence that consent was freely given, as GAID requires.
Automatically
Our host records standard server logs (IP address, browser type, pages requested) for security and reliability. We do not run advertising or third-party analytics trackers on this site.
Why we use it, and our lawful basis
- To respond to your enquiry or booking. Because you asked us to, and to take steps toward a contract with you.
- To provide your account and dashboard. To perform our agreement with you.
- To send you our newsletter. Only with your explicit consent, which you may withdraw at any time.
- To keep the site secure and working. Our legitimate interest in running a safe service.
- To meet legal and regulatory obligations. Where the law requires it.
We do not sell your personal data. We do not share it for anyone else's marketing.
Who we share it with
We share data only with processors who help us run the service:
- Resend delivers our transactional emails and newsletter.
- Our hosting and database providers store the site and its data.
These providers may process data outside Nigeria. Where that happens we rely on the transfer conditions in Part IX of the NDPA, and we require appropriate safeguards by contract.
How long we keep it
- Account and booking records. For as long as your account is open, and up to six years afterwards where we need them for tax, accounting or legal purposes.
- Contact enquiries. Up to two years from your last contact with us.
- Newsletter data. Until you unsubscribe. We retain the consent record itself afterwards, because it is the evidence that we had permission to email you.
Your rights
Under the NDPA you have the right to:
- Ask what personal data we hold about you, and get a copy
- Have inaccurate data corrected
- Ask us to delete your data, where no legal obligation requires us to keep it
- Object to or ask us to restrict how we process your data
- Receive your data in a portable format
- Withdraw consent at any time, without affecting processing already carried out
- Lodge a complaint with the Nigeria Data Protection Commission
To exercise any of these, email hello@cedarbridgepro.com. We will respond within one month. Newsletter consent can be withdrawn instantly using the unsubscribe link in any email we send, with no need to contact us at all.
How we protect it
- The site is served over HTTPS
- Passwords are hashed with bcrypt and never stored in readable form
- Sessions use signed, HTTP-only cookies that JavaScript cannot read
- Access to booking and subscriber records is restricted to authorised staff
No system is perfectly secure, but we take these obligations seriously and will notify you and the Commission of any breach that meets the NDPA's reporting threshold.
Children
This site is aimed at businesses and is not directed at children. We do not knowingly collect data from anyone under 18. If you believe a child has given us data, contact us and we will delete it.
Changes
If we change this policy we will update the date above. Material changes affecting how we use your data will be communicated to you directly where we hold your contact details.
Please note:these policies are a starting point drafted for this website, not legal advice. Nigeria's data protection regime changed materially in 2025, and a licensed Data Protection Compliance Organisation (DPCO) should review them, and Cedar Bridge's registration position, before you rely on them.