Our legal documents.
Each document below covers a specific contract surface between qwicmail and our customers. Drafts are finalised with counsel before binding versions are published.
These documents are under final legal review prior to general availability. Approved tenants receive the binding versions as part of onboarding. Need a copy of the current draft to evaluate qwicmail? Email legal@qwicmail.com and we'll send it.
Standard documents — every customer
Accepted at signup. Together these cover the contract, what you can send, what data we hold, and who else touches your data.
Terms of Service
The master agreement between qwicmail and the customer. Covers the service, fees (Paystack-based subscription), suspension, liability, termination, and the inline data-processing terms required by section 29 of the Nigeria Data Protection Act.
Audience: customers / business buyers
Acceptable Use Policy
What you can and can't send through qwicmail. The bright lines our abuse desk enforces. Reading time: about 5 minutes.
Audience: customers, abuse desk
Privacy Policy
What data qwicmail collects from end users (recipients of mail sent through us), what we do with it, and how long we keep it. NDPA-aligned, with rights for Nigerian and EU/UK data subjects.
Audience: end users, regulators
Subprocessors
The third parties that handle customer data on our behalf — payment processor (Paystack), infrastructure provider (Hetzner), monitoring. Maintained as a live list, with notice of additions.
Audience: customers, required by the data-processing terms
For banks and enterprise — available on request
Customers in regulated sectors (CBN-supervised banks, MFBs, payment service banks) and enterprise procurement teams sign the longer-form paper below in addition to the standard documents. Email legal@qwicmail.com to receive copies.
Data Processing Agreement (long-form)
The standalone DPA, used where Customer's DPO or procurement team requires it. Includes the EU Standard Contractual Clauses and UK IDTA as forward-compatibility safeguards.
Audience: DPOs, legal teams
Service Level Agreement
99.9% Monthly Uptime target, tiered service credits, defined support response times (P1 1h 24×7, P2 4 business hours, P3 2 business days).
Audience: procurement, ops
Banking Customer Addendum
Aligned with the CBN Risk-Based Cybersecurity Framework for OFIs (2022). Covers data residency, banking-sensitive data exclusions, tightened incident notifications, and right-to-audit.
Audience: banks, MFBs, CBN-supervised entities
PGP key available on request. Coordinated disclosure preferred.
Include headers + Message-ID where possible. Acted on within one business day.
For redlines on the ToS / DPA, or to receive draft copies for evaluation.