What can I sell on Vendlinx?

Digital downloads (PDF, ZIP, audio, video), courses/memberships, and services/consultations. Start with a title, price, and delivery option—done.

Revenue lands in your Vendlinx wallet (NGN or USD). Request withdrawal to your bank; we charge ₦50 per withdrawal. Most withdrawals arrive quickly depending on your bank.

Which payment methods are supported?

Paystack and Flutterwave (cards, transfers, mobile money) with more on the way. Your buyers can pay locally or internationally depending on your setup.

Do you handle file security?

Yes. We support expiring download links, per-buyer watermarking for PDFs, and optional download limits to reduce unauthorized sharing.

Privacy Policy | Vendlinx

This Privacy Policy explains how Vendlinx (“Vendlinx,” “we,” “us,” or “our”) collects, uses, discloses, and protects personal data in connection with our platform, dashboards, APIs, and storefronts (the “Services”). By using the Services, you acknowledge this Policy. If you do not agree, please do not use the Services.

1. Who This Policy Covers

Creators using Vendlinx to list, sell, or deliver products and services.
Buyers/Customers purchasing or accessing creators’ products.
Visitors to our websites and landing pages.

2. Data We Collect

We collect information in the following categories:

Account & Profile: name, email, password (hashed), handle, store name, bio, links, avatar/logo, and settings.
Commerce: product details, pricing, orders, fulfillment status, refund requests, payout details, invoices/receipts, and tax/billing information you provide.
Payment: we use third-party payment service providers (e.g., Paystack, Flutterwave) to process payments. Card/bank details are handled by those providers; we do not store full card numbers. We may receive limited payment metadata (e.g., last 4 digits, brand, status) for reconciliation and support.
Payout: bank account identifiers and compliance/KYC data where required. Some KYC data may be handled by payment partners or verification vendors.
Usage & Device: IP address, device information, browser type, operating system, pages viewed, referring/exit pages, timestamps, and similar diagnostics (for security, analytics, and fraud prevention).
Support & Communications: messages, tickets, and email correspondence with us.
Content: materials you upload (e.g., product files, images), plus associated metadata (e.g., filenames, sizes).

3. Legal Bases for Processing

Where applicable (e.g., under the NDPR and/or GDPR), we process personal data on the following bases:

Contract: to provide, maintain, and improve the Services you request.
Legitimate Interests: to secure our Services, prevent fraud/abuse, improve features, and support users.
Consent: where required (e.g., certain marketing communications, cookies).
Legal Obligations: to comply with laws, tax/regulatory requirements, and court orders.

4. How We Use Data

To create and manage accounts, storefronts, products, and orders.
To process payments and payouts via third-party providers.
To detect, prevent, and investigate fraud, abuse, and security incidents.
To provide customer support and communicate about the Services.
To operate, analyze, and improve the Services, including personalization.
To comply with legal obligations and enforce our Terms of Service.

5. Cookies & Similar Technologies

We use cookies and similar technologies for authentication, session management, security, analytics, and feature functionality. You can control cookies via your browser settings, but some features may not work properly if you disable essential cookies.

6. Sharing & Disclosures

We may share personal data with:

Payment processors (e.g., Paystack, Flutterwave) to process transactions, handle chargebacks, and comply with payment rules.
Infrastructure & storage (e.g., Vercel for hosting/deploy, Supabase for authentication, database, and storage) to run the platform.
Communications & email (e.g., providers like Resend or similar) to send transactional messages and account alerts.
Analytics, logging, monitoring, and anti-fraud vendors to secure, operate, and improve the Services.
Professional advisors & authorities (lawyers, auditors, regulators) where necessary to comply with law or protect rights.

We do not sell personal data. We require third parties to process data only on our instructions and with appropriate safeguards.

7. International Transfers

We may transfer, store, and process information outside your country, including in the EU, UK, and US. Where required, we implement appropriate safeguards (e.g., contractual clauses/DPAs) to protect personal data during such transfers.

8. Data Retention

We retain personal data for as long as necessary to provide the Services, comply with our legal obligations (e.g., tax, accounting, anti-fraud), resolve disputes, and enforce our agreements. Retention periods vary by data type and legal/operational requirements.

9. Security

We employ reasonable administrative, technical, and physical safeguards to protect personal data (e.g., encrypted transport, access controls). However, no method of transmission or storage is 100% secure. You are responsible for maintaining the security of your account (e.g., strong passwords, 2FA, limiting access).

10. Your Rights

Subject to applicable law (e.g., NDPR/GDPR), you may have rights to:

Access, correct, update, or delete personal data we hold about you.
Object to or restrict certain processing, or request portability of your data.
Withdraw consent where processing is based on consent (without affecting prior lawful processing).
Lodge a complaint with a supervisory authority (e.g., NITDA in Nigeria or your local data protection authority).

To exercise rights, contact privacy@vendlinx.com. We may request verification information before fulfilling your request.

11. Creator Responsibilities

If you are a creator, you act as a separate data controller for your buyers’ information. You must comply with applicable data protection laws (e.g., maintain a clear privacy notice on your storefront, use data only for permitted purposes, obtain consent where required, safeguard data, and honor data subject requests). You must not export or misuse buyer data obtained via Vendlinx.

12. Children’s Data

Our Services are not directed to children under the age of 13 (or the age of digital consent in your jurisdiction). We do not knowingly collect personal data from children. If you believe a child has provided personal data to us, contact privacy@vendlinx.com and we will take appropriate steps.

13. Marketing & Communications

We may send you service, transactional, or administrative messages (e.g., account alerts, receipts). With your consent (where required), we may send marketing messages. You can opt-out of marketing at any time via the email footer link or by contacting us. We may still send non-marketing messages.

14. Do Not Track

Some browsers offer “Do Not Track” (DNT) signals. There is currently no industry standard for DNT, so we do not respond to these signals. We will update this Policy if standards evolve and our practices change.

15. Changes to This Policy

We may update this Policy from time to time. If we make material changes, we will provide notice (e.g., dashboard notice, email, or an update on this page). The updated Policy is effective when posted unless stated otherwise. Your continued use of the Services indicates acceptance of the updated Policy.

16. Contact Us

Questions about this Policy or our data practices? Contact hello@vendlinx.com

Disclaimer: This Privacy Policy is provided for general informational purposes and reflects our intended practices. It is not legal advice. Laws and payment- partner requirements change frequently. For maximum protection, please have your counsel review and tailor this Policy to your specific business, products, data flows, and jurisdictions (including NDPR, GDPR, and any other applicable laws).

Vendlinx — Privacy Policy