Built to meet Nigerian and international standards.
Roma Intelligence operates under a comprehensive compliance framework covering data protection, financial regulation, identity verification, payment security, and communications law.
NDPR
NigeriaData collection under NDPR 2019. Breach reporting to NITDA/NDPC within 72 hours.
GDPR
InternationalArticles 6, 9, 17 compliance. Standard Contractual Clauses (SCCs) for cross-border transfers.
FIRS
Nigeria7.5% VAT compliance for NGN transactions. Transparent fiscal reporting for digital services.
CBN/NIBSS
NigeriaNIP transfers via licensed gateways including Paystack and Flutterwave, ensuring settlement integrity.
NIMC
NigeriaReal-time National Identity Number (NIN) verification through approved integration channels.
PCI-DSS
InternationalTokenized card transactions via Level 1 gateways, maintaining the highest standard of cardholder security.
Meta/WhatsApp
InternationalOfficial Business Solution Provider (BSP) approved notifications and messaging protocols.
Data storage and localisation
Our infrastructure is architected on AWS with localized edge computing to ensure compliance with data sovereignty laws. We maintain primary residency for Nigerian user data within approved geographical boundaries.
Consent architecture
Our dual-consent model ensures explicit opt-in for data collection and separate authorization for transactional notifications.
Immutable audit logging
Every system action and data access request is logged in an immutable audit trail, with a mandatory 12-month log retention period for regulatory review.
Data breach response
In the event of a suspected breach, our response protocol triggers immediate containment and a 72-hour notification timeline for relevant authorities and data subjects.
Compliance & legal enquiries
For specific regulatory questions, legal service of process, or DPO enquiries, please reach our legal desk.