Overview
MobiAdd is committed to protecting the privacy, integrity, and confidentiality of all information entrusted to us by mobile network operators, aggregators, and enterprise clients. This Privacy Policy outlines our practices related to the collection, processing, and storage of data across our platforms and services, including VAS delivery, messaging platforms (SMS, USSD, OBD), and mobile advertising technologies.
This policy is intended for our business partners—not end-users or subscribers—unless stated otherwise.
Data We Collect
We collect and process two main categories of data:
A. Business & Operational Data
- Company name, contact details, billing information
- Technical contact information and API credentials
- Service usage logs for provisioning, activation, or analytics
B. Subscriber Data (Processed on Behalf of Operators)
In some cases, we process subscriber-level data as a processor acting under your instruction, including:
- MSISDNs (Mobile Numbers)
- Campaign interaction logs (e.g., USSD sessions, SMS responses)
- Device or location data (e.g., for LBS or DMC services)
- Charging or transaction metadata (for subscription-based services)
Note: We do not determine the purpose or legal basis of processing subscriber data. MNOs or enterprises remain data controllers in these scenarios.
How We Use Data
We use business and technical data to:
- Authenticate access to our portals and APIs
- Deliver, monitor, and optimize services
- Provide real-time reporting, support, and performance analytics
- Enable integration with your systems
- Ensure regulatory compliance and lawful interception (when required)
Subscriber data is processed only as needed to:
- Execute service logic (e.g., send a USSD push, initiate OBD)
- Fulfill your business rules or campaign configurations
- Provide real-time or scheduled reporting back to the client
Data Ownership and Responsibility
All subscriber data processed through MobiAdd platforms remains the property and legal responsibility of the mobile operator or enterprise who originated the data.
MobiAdd does not re-use, resell, or retain this data beyond the purpose of delivery, support, and compliance—unless otherwise agreed in writing.
Data Security
We employ strict technical and organizational measures to ensure the confidentiality, integrity, and availability of your data, including:
- Encrypted transmission (TLS) and storage (AES-256)
- Firewall isolation and access control
- Two-factor authentication for all admin interfaces
- Logging and monitoring of all administrative actions
- Regular vulnerability assessments and audits
Data Retention
Subscriber transaction data
Retained for up to [90 days] unless otherwise required by regulation or client SLA.
Logs and performance data
Retained for troubleshooting and analysis up to [12 months], in line with your operational requirements.
Billing or commercial records
Retained for a minimum of [6 years] for financial and audit purposes.
Retention periods can be adjusted based on client agreement or regulatory needs.
Third-Party Integrations
We only integrate with third parties (e.g., cloud providers, SMS aggregators) under strict contractual obligations to maintain equivalent data protection standards.
We do not share your or your subscriber data with advertisers or unrelated third parties.
our Rights and Choices
As an enterprise client or operator:
- You may request full logs or audit trails related to your service
- You may request deletion or export of data we process on your behalf
- You may define access levels for your teams via role-based controls
- You retain full ownership of all customer data processed by our platform