Skip to content

ZevID

What this product is

ZevID is the centralised identity provider for the Zev ecosystem. It lives at accounts.zevop.com. Every Zev product authenticates users through ZevID and reads core user state from it (identity, KYC outcome, enrollments, cross-product permissions). ZevID is not a consumer product — users don't "use ZevID" the way they use ZevPay or ZevCloud; they sign up once at any Zev product and a ZevID account is created behind the scenes.

Regulatory scope

  • NDPA, 2023 — primary obligation as a Nigerian data controller for identity data.
  • NDPC GAID, 2025 — implementing rules including 72-hour breach notification, DPO designation, RoPA.

Specific telecommunications / financial regulations do not apply directly to ZevID (those apply to the products that use ZevID for identity).

Data-controller role

  • Controller for: email, password (hashed), phone number, MFA enrolment data, login events, cross-product consent grants, OAuth authorisations, KYC verification record (canonical store).
  • Processor: ZevID processes only its own data subjects' data under contract / consent. It does not process data on behalf of third-party controllers.
  • Source of truth for: identity, KYC outcome (written by ZevPay or any KYC-running product), cross-product permissions, the enrollment registry.