POPIASafe logo
POPIASafePOPIA compliance for modern organisations
Try it free

Legal

Privacy Policy

This Privacy Policy explains how POPIASafe handles personal information in line with the Protection of Personal Information Act, 2013 (POPIA) and data privacy best practices, including where POPIA applies to South African data subjects.

1. About POPIASafe

POPIASafe provides POPIA compliance software to organisations that need to comply with POPIA. Our platform helps teams manage POPIA consent forms, records of processing, POPIA audits and related data privacy workflows, including when processing South African personal data.

2. Personal information we process

We process limited categories of personal information in connection with our POPIA software and services, including:

  • Account information (such as name, email address and organisation name)
  • Authentication and security data used to protect your account
  • Usage information and logs that help us understand how POPIASafe is used and to improve the product

Our customers may also use POPIASafe to store personal information relating to their own data subjects. In those situations, the customer acts as the responsible party and POPIASafe acts as an operator under POPIA.

3. POPIA compliance and lawful basis

We process personal information in line with POPIA's conditions for lawful processing, including:

  • Consent where appropriate
  • Performance of a contract (for example, providing our POPIA software)
  • Compliance with legal obligations
  • Legitimate interests, balanced with data subject rights

4. How we use your information

We use personal information to:

  • Provide, operate and maintain the POPIASafe platform
  • Secure accounts and investigate suspicious activity
  • Communicate about the product, updates and support matters
  • Improve and develop new POPIA compliance features

5. Data subject rights under POPIA

Under POPIA, data subjects have rights such as the right to access, correct and in some cases delete their personal information. POPIASafe supports these rights by providing features that help responsible parties respond to requests using data stored in the platform.

6. Security and data retention

POPIASafe applies technical and organisational measures designed to protect personal information. We retain personal information for as long as necessary to provide our services, comply with legal obligations or resolve disputes.

7. International transfers

Where personal information is transferred across borders, we use appropriate safeguards consistent with POPIA and other applicable data privacy laws.

8. Contact for privacy and POPIA queries

For questions about this Privacy Policy or POPIA compliance, you can contact us at support@popiasafe.com.