Privacy Policy

1. Information We Collect

Personal Information

We collect the following types of personal information:

• Contact Information: Name, email address, phone number, company name
• Usage Data: How you interact with our website and platform
• Technical Data: IP address, browser type, device information, cookies
• Marketing Data: Your preferences for receiving communications from us

How We Collect Information

• When you fill out forms on our website
• When you request a demo or start a trial
• Through cookies and similar tracking technologies
• When you communicate with our support team
• Through analytics services like Google Analytics

2. How We Use Your Information

We use your personal information for the following purposes:

• Service Provision: To provide and maintain our insurance platform services
• Communication: To respond to your inquiries and provide customer support
• Marketing: To send you information about our services (with your consent)
• Analytics: To understand how our website and services are used
• Legal Compliance: To comply with applicable laws and regulations
• Security: To protect our services and users from fraud and abuse

3. Legal Basis for Processing (POPIA Compliance)

Under POPIA, we process your personal information based on the following lawful grounds:

• Consent: You have given clear consent for us to process your personal information for specific purposes
• Contract: Processing is necessary for the performance of a contract with you
• Legal Obligation: Processing is necessary for compliance with legal obligations
• Legitimate Interests: Processing is necessary for our legitimate business interests

4. Information Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information in the following circumstances:

• Service Providers: With trusted third-party services that help us operate our business (e.g., hosting, analytics)
• Legal Requirements: When required by law or to protect our legal rights
• Business Transfers: In connection with a merger, acquisition, or sale of assets
• Consent: With your explicit consent for specific purposes

5. Data Security

We implement appropriate technical and organizational measures to protect your personal information:

• SSL/TLS encryption for data transmission
• Secure server infrastructure with regular security updates
• Access controls and authentication measures
• Regular security assessments and monitoring
• Employee training on data protection practices

6. Your POPIA Rights

Under the Protection of Personal Information Act, you have the following rights:

• Right to Access: Request access to the personal information we hold about you
• Right to Rectification: Request correction of inaccurate or incomplete information
• Right to Erasure: Request deletion of your personal information (subject to legal requirements)
• Right to Restrict Processing: Request limitation of how we process your information
• Right to Data Portability: Request a copy of your data in a structured format
• Right to Object: Object to certain types of processing, including direct marketing
• Right to Withdraw Consent: Withdraw consent for processing where consent is the legal basis

7. Cookies and Tracking Technologies

We use cookies and similar technologies to improve your experience on our website:

• Essential Cookies: Required for basic website functionality
• Analytics Cookies: Help us understand how visitors use our website
• Marketing Cookies: Used to deliver relevant advertisements (with your consent)

You can manage your cookie preferences through our cookie consent banner or your browser settings.

8. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this policy:

• Account Data: Retained for the duration of your account plus 3 years for legal compliance
• Marketing Data: Retained until you unsubscribe or withdraw consent
• Analytics Data: Anonymized and retained for up to 2 years
• Legal Requirements: Some data may be retained longer to comply with legal obligations

9. International Data Transfers

Your personal information may be transferred to and processed in countries other than South Africa. When we transfer your information internationally, we ensure appropriate safeguards are in place to protect your data in accordance with POPIA requirements.

10. Children's Privacy

Our services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children under 18. If we become aware that we have collected personal information from a child under 18, we will take steps to delete such information.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. We will notify you of any material changes by:

• Posting the updated policy on our website
• Sending you an email notification (where we have your email address)
• Providing notice through our platform or services