qwicmail
Legal

Our legal documents.

Each document below covers a specific contract surface between qwicmail and our customers. Drafts are finalised with counsel before binding versions are published.

Final binding versions are with counsel.

These documents are under final legal review prior to general availability. Approved tenants receive the binding versions as part of onboarding. Need a copy of the current draft to evaluate qwicmail? Email legal@qwicmail.com and we'll send it.

Standard documents — every customer

Accepted at signup. Together these cover the contract, what you can send, what data we hold, and who else touches your data.

Terms of Service

The master agreement between qwicmail and the customer. Covers the service, fees (Paystack-based subscription), suspension, liability, termination, and the inline data-processing terms required by section 29 of the Nigeria Data Protection Act.

Audience: customers / business buyers

Acceptable Use Policy

What you can and can't send through qwicmail. The bright lines our abuse desk enforces. Reading time: about 5 minutes.

Audience: customers, abuse desk

Privacy Policy

What data qwicmail collects from end users (recipients of mail sent through us), what we do with it, and how long we keep it. NDPA-aligned, with rights for Nigerian and EU/UK data subjects.

Audience: end users, regulators

Subprocessors

The third parties that handle customer data on our behalf — payment processor (Paystack), infrastructure provider (Hetzner), monitoring. Maintained as a live list, with notice of additions.

Audience: customers, required by the data-processing terms

For banks and enterprise — available on request

Customers in regulated sectors (CBN-supervised banks, MFBs, payment service banks) and enterprise procurement teams sign the longer-form paper below in addition to the standard documents. Email legal@qwicmail.com to receive copies.

Data Processing Agreement (long-form)

The standalone DPA, used where Customer's DPO or procurement team requires it. Includes the EU Standard Contractual Clauses and UK IDTA as forward-compatibility safeguards.

Audience: DPOs, legal teams

Service Level Agreement

99.9% Monthly Uptime target, tiered service credits, defined support response times (P1 1h 24×7, P2 4 business hours, P3 2 business days).

Audience: procurement, ops

Banking Customer Addendum

Aligned with the CBN Risk-Based Cybersecurity Framework for OFIs (2022). Covers data residency, banking-sensitive data exclusions, tightened incident notifications, and right-to-audit.

Audience: banks, MFBs, CBN-supervised entities

Security disclosure
security@qwicmail.com

PGP key available on request. Coordinated disclosure preferred.

Report abuse
abuse@qwicmail.com

Include headers + Message-ID where possible. Acted on within one business day.

Legal contact
legal@qwicmail.com

For redlines on the ToS / DPA, or to receive draft copies for evaluation.