Privacy Policy

1. Information We Collect

1.1 Information You Provide to Us

We collect information that you voluntarily provide when you:

• Create an Account: Business name, contact name, email address, phone number, business address, business type
• Use Our Service: Customer contact lists, message content, campaign data, communication preferences
• Contact Us: Name, email, business name, company registration number, VAT number, phone number, message content, and any other information you choose to provide
• Subscribe to Services: Payment information, billing address, subscription preferences
• Complete Surveys: Feedback, opinions, and demographic information

1.2 Information Automatically Collected

When you access our Service, we may collect certain information, including:

• Usage Data: Pages visited, features used, time spent, click patterns, session information
• Device Information: IP address, browser type and version, operating system, device identifiers
• Location Data: Approximate geographic location based on IP address
• Performance Data: Error reports, response times, system diagnostics
• Cookies and Similar Technologies: Session cookies, preference cookies, analytics cookies

1.3 Information from Third Parties

We may receive information about you from third-party sources, including:

• WhatsApp/Meta: Message delivery status, account verification information
• Payment Processors: Transaction confirmations, payment status
• Analytics Providers: Aggregated usage statistics and trends
• Business Partners: Referral information, integration data

2. How We Use Your Information

We use the collected information for various purposes, including:

2.1 Service Delivery

• Provide, operate, and maintain our Conek Business Communication platform
• Process and deliver your messages to intended recipients
• Manage your account and subscription
• Process payments and transactions
• Provide customer support and respond to inquiries

2.2 Service Improvement

• Understand how you use our Service to improve user experience
• Develop new features and functionality
• Conduct research and analysis to enhance our platform
• Monitor and analyze usage patterns and trends
• Troubleshoot technical issues and optimize performance

2.3 Communication

• Send service-related notifications and updates
• Provide customer support and technical assistance
• Send marketing communications (with your consent)
• Notify you about changes to our Service or policies
• Request feedback and conduct surveys

2.4 Security and Compliance

• Detect, prevent, and address fraud and security issues
• Comply with legal obligations and regulatory requirements
• Enforce our Terms and Conditions
• Protect our rights, property, and safety
• Verify identity and prevent unauthorized access

3. Legal Basis for Processing (POPIA & GDPR)

We process your personal information based on the following legal grounds:

• Contract Performance: Processing necessary to provide the Service you've subscribed to
• Consent: Where you have given explicit consent for specific processing activities
• Legitimate Interests: Processing necessary for our legitimate business interests, provided these don't override your rights
• Legal Obligation: Processing required to comply with applicable laws and regulations
• Vital Interests: Processing necessary to protect someone's life or physical safety

4. Information Sharing and Disclosure

4.1 We May Share Your Information With:

• WhatsApp/Meta: To deliver messages through their platform (subject to their privacy policies)
• Service Providers: Cloud hosting, payment processing, analytics, customer support tools
• Business Partners: With your consent, for integrated services or joint offerings
• Legal Authorities: When required by law or to protect our legal rights
• Business Transfers: In connection with mergers, acquisitions, or asset sales

4.2 We Do Not:

• Sell your personal information to third parties
• Share your customer data with competitors
• Use your data for purposes unrelated to providing our Service
• Share data with advertisers without explicit consent

5. Data Security

We implement robust security measures to protect your information:

5.1 Technical Safeguards

• Encryption of data in transit (SSL/TLS) and at rest
• Secure authentication and access controls
• Regular security audits and vulnerability assessments
• Firewall protection and intrusion detection systems
• Secure backup and disaster recovery procedures

5.2 Organizational Safeguards

• Employee training on data protection and privacy
• Strict access controls and need-to-know basis
• Confidentiality agreements with staff and contractors
• Regular privacy and security policy reviews
• Incident response and breach notification procedures

5.3 Limitations

While we strive to protect your personal information, no security system is impenetrable. We cannot guarantee absolute security of data transmitted over the internet or stored in our systems.

6. Data Retention

We retain your personal information for as long as necessary to:

• Provide our Service and maintain your account
• Comply with legal, tax, and accounting obligations
• Resolve disputes and enforce our agreements
• Maintain business records and analytics

Typical retention periods:

• Active Account Data: Duration of your subscription plus 1 year
• Transaction Records: 7 years (tax and accounting requirements)
• Marketing Data: Until you withdraw consent or 2 years of inactivity
• Support Communications: 3 years from last contact
• Analytics Data: Aggregated and anonymized for indefinite retention

7. Your Rights Under POPIA and GDPR

You have the following rights regarding your personal information:

7.1 Access and Portability

• Right to Access: Request a copy of your personal data we hold
• Right to Portability: Receive your data in a structured, machine-readable format

7.2 Correction and Deletion

• Right to Rectification: Correct inaccurate or incomplete personal information
• Right to Erasure: Request deletion of your personal data (subject to legal obligations)

7.3 Control and Objection

• Right to Restrict Processing: Limit how we use your data in certain circumstances
• Right to Object: Oppose processing based on legitimate interests or for direct marketing
• Right to Withdraw Consent: Revoke previously given consent at any time

7.4 Exercising Your Rights

To exercise any of these rights, please contact us at:

• Email: info.connect.platform@gmail.com
• WhatsApp: +27 (0)83 288-5137

We will respond to your request within 30 days (or as required by applicable law).

8. Cookies and Tracking Technologies

8.1 Types of Cookies We Use

• Essential Cookies: Required for the Service to function properly
• Functional Cookies: Remember your preferences and settings
• Analytics Cookies: Help us understand how you use our Service
• Marketing Cookies: Track your activity for advertising purposes (with consent)

8.2 Managing Cookies

You can control cookies through your browser settings. However, disabling certain cookies may affect Service functionality.

8.3 Third-Party Tracking

We may use third-party analytics tools (e.g., Google Analytics) that use cookies to collect usage information. These third parties have their own privacy policies.

9. International Data Transfers

Your information may be transferred to and processed in countries other than South Africa. We ensure appropriate safeguards are in place:

• Standard Contractual Clauses (SCCs) with international partners
• Adequacy decisions by relevant data protection authorities
• Privacy Shield or similar certification mechanisms where applicable
• Explicit consent for transfers when required

We ensure that international transfers comply with POPIA and GDPR requirements.

10. Children's Privacy

Our Service is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children.

If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately. We will delete such information from our systems.

11. Third-Party Links and Services

Our Service may contain links to third-party websites, including:

• WhatsApp and Meta platforms
• Payment processing services
• Social media platforms
• Integration partners

We are not responsible for the privacy practices of these third parties. We encourage you to read their privacy policies before providing any personal information.

12. Marketing Communications

12.1 Consent

We will only send you marketing communications if you have consented to receive them. You can opt-in through:

• Account registration checkboxes
• Email subscription forms
• Explicit consent requests

12.2 Opting Out

You can unsubscribe from marketing communications at any time by:

• Clicking the "unsubscribe" link in our emails
• Updating your account preferences
• Contacting us directly at info.connect.platform@gmail.com

Note: You will still receive essential service-related communications even if you opt out of marketing.

13. Data Protection Officer

We have appointed a Data Protection Officer (DPO) to oversee our privacy and data protection practices.

You can contact our DPO regarding:

• Privacy questions or concerns
• Exercising your data protection rights
• Complaints about data handling
• Data breach notifications

DPO Contact: info.connect.platform@gmail.com

14. Data Breach Notification

In the event of a data breach that affects your personal information, we will:

• Notify affected users within 72 hours (as required by POPIA/GDPR)
• Inform relevant regulatory authorities
• Describe the nature of the breach and potential risks
• Outline steps we're taking to address the breach
• Provide recommendations to protect your information

15. Your Responsibilities

When using our Service, you are responsible for:

• Obtaining proper consent from your customers before sending messages
• Complying with POPIA, GDPR, and other applicable privacy laws
• Maintaining accurate and up-to-date information
• Protecting your account credentials
• Notifying us of any unauthorized access to your account
• Respecting your customers' privacy rights and preferences
• Providing clear opt-out mechanisms in your communications

16. Complaints and Regulatory Authority

If you have concerns about how we handle your personal information, you have the right to lodge a complaint with:

South Africa:

Information Regulator (South Africa)
Website: www.justice.gov.za/inforeg
Email: inforeg@justice.gov.za

European Union (if applicable):

Your local data protection authority in your EU member state.

We encourage you to contact us first so we can address your concerns directly.

17. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect:

• Changes in our practices or services
• Legal or regulatory requirements
• Technological advancements
• User feedback and improvements

When we make material changes, we will:

• Update the "Last Updated" date at the top of this policy
• Notify you via email or platform notification
• Obtain your consent if required by law
• Provide a summary of key changes

Your continued use of the Service after changes become effective constitutes acceptance of the revised Privacy Policy.

18. Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

We will respond to your inquiries within 30 days or as required by applicable law.