NAC Shop Privacy Policy
This Privacy Policy explains how NAC Shop collects, uses, stores, shares, and protects customer information across the website, mobile app, wallet features, rewards, support channels, order management systems, shipment tracking, and related compliance processes. NAC Shop is operated under NAC Travel International and processes personal information to deliver customer services, prevent fraud, protect business operations, satisfy lawful requests, and manage cross-border commerce between South Africa and Malawi.
By using the service, you acknowledge that NAC Shop may process your personal information in accordance with this policy. Where applicable law requires consent for a specific activity, NAC Shop will request it in the appropriate form. Where processing is necessary to perform a contract, comply with law, protect rights, prevent fraud, or maintain platform security, NAC Shop may process personal information without separate marketing-style consent.
1. Categories of information collected
NAC Shop may collect registration details such as name, email, phone number, password hash, language preference, preferred currency, and referral information. It may also collect profile details such as address, city, country, delivery preferences, payment method preferences, order history, invoice records, wallet activity, payout details, shipping interactions, support requests, KYC documents, profile photo uploads, and customer verification records.
Operational data may include IP address, device information, app usage events, payment attempt status, browser details, crash or diagnostic information, and communications metadata. Where the customer submits supporting documents, NAC Shop may store passport images, national ID copies, proof of address, proof of payment, payout information, or other records needed for anti-fraud, payment reconciliation, legal defense, customs support, or platform integrity.
2. How NAC Shop uses information
Customer information is used to create and maintain accounts, verify identity, process registration, send verification emails, support login and password reset, display membership status, create orders, issue invoices, route support, enable wallet activity, process withdrawal requests, review installment eligibility, coordinate delivery, support customs handling, contact customers about delays or risks, and maintain accounting records.
NAC Shop also uses information to prevent duplicate accounts, detect fraud, investigate abuse, respond to chargebacks, protect intellectual property, screen suspicious transactions, secure the platform, and comply with legal, tax, accounting, customs, or audit obligations. Information may also be used to improve catalog presentation, customer service quality, translation quality, delivery operations, and product governance.
3. Legal bases and customer expectations
NAC Shop processes personal information where necessary to perform a customer contract, protect a legitimate business interest, comply with law, respond to lawful requests, defend legal claims, or prevent fraud and misuse. Marketing or promotional communications may be managed according to applicable opt-in or opt-out rules. A customer’s request to use a feature such as withdrawals, installment sales, or KYC may require the customer to provide additional information as a condition of access.
Customers should not expect anonymity where they request regulated or risk-sensitive services. NAC Shop may decline to provide certain services if adequate information is not supplied.
4. Sharing and disclosure
NAC Shop does not treat customer data as a public commodity. It may however share information internally within NAC Travel International and with selected processors, advisors, hosting providers, payment gateways, delivery coordinators, cloud providers, legal counsel, accountants, anti-fraud service providers, customs intermediaries, approved suppliers, and technology vendors where reasonably necessary for service performance or risk control. Information may also be disclosed where required by law, court order, lawful regulator request, customs authority inquiry, or to protect rights, safety, property, or system integrity.
Where a customer orders from an approved supplier, only the information reasonably necessary for fulfilment, customer contact, or route coordination will be shared. NAC Shop may redact or minimize data where full disclosure is not operationally necessary.
5. International and cross-border processing
Because NAC Shop operates between Malawi and South Africa and may use hosting or service providers in additional jurisdictions, customer information may be processed, transferred, or stored outside the customer’s country. By using the service, you understand that information may move across borders where necessary to perform services, maintain infrastructure, protect the business, or coordinate delivery and support. NAC Shop will take commercially reasonable safeguards but cannot guarantee that foreign jurisdictions have identical data-protection rules.
6. Security and retention
NAC Shop uses commercially reasonable administrative, technical, and organizational measures to protect personal data against unauthorized access, misuse, disclosure, alteration, and loss. Despite these measures, no internet or mobile platform is completely secure, and NAC Shop cannot guarantee absolute security. Customers are responsible for keeping credentials private and for notifying NAC Shop promptly of suspected unauthorized activity.
Records may be retained for as long as reasonably necessary to fulfil services, maintain order and wallet history, defend legal claims, meet tax and accounting obligations, respond to audits, resolve disputes, investigate fraud, or satisfy legal retention duties. Even where a customer requests account deletion, NAC Shop may retain limited information needed for lawful recordkeeping, fraud prevention, chargeback defense, customs history, accounting, or litigation readiness.
7. Customer rights and account deletion
Depending on applicable law, customers may request access to their data, correction of inaccurate information, limited deletion, or clarification of processing. NAC Shop may ask for identity verification before acting on any request. Requests that compromise security, regulatory obligations, fraud investigations, customs records, or legal defense may be restricted, delayed, or refused to the extent permitted by law.
Where a customer requests deletion, NAC Shop will review open wallet balances, pending withdrawals, unresolved orders, chargeback risk, support tickets, compliance flags, and legal retention duties before closure. Deletion does not always mean immediate physical erasure of every record; it may mean controlled closure and retention of minimum necessary records for lawful purposes.
8. Cookies, diagnostics, and platform analytics
The website and app may use session storage, cookies, or similar technical tools for authentication, route continuity, preferences, error handling, and product performance analysis. These tools help NAC Shop maintain service continuity, security, and user experience. Disabling certain functions may affect login reliability, checkout continuity, or language preference behaviour.
9. Protection of NAC Shop and legal defense
Customer information may be used and retained where necessary to protect NAC Shop against fraud, cyber abuse, payment reversal, false claims, customs disputes, supplier disputes, abusive refund requests, unlawful import activity, or litigation. To the maximum extent permitted by law, the customer accepts that NAC Shop may maintain audit trails and supporting records where reasonably necessary to defend itself, its directors, staff, and affiliated entities from liability.
10. Contact and updates
NAC Shop may update this policy from time to time to reflect changes in technology, product structure, legal requirements, or cross-border operations. The latest version published on the service will apply. Questions about privacy or personal-data handling may be directed to NAC Shop support using the channels published on the platform.