Privacy Policy

## Privacy Policy
**Last Updated: July 2026**

Protechnology Group (PTY) Ltd is committed to safeguarding your privacy. Contact us at admin@protechnology.co.za if you have any questions or problems regarding the use of your Personal Data and we will gladly assist you.

By using this site and/or our services, you consent to the Processing of your Personal Data as described in this Privacy Policy.

This Privacy Policy is a part of our Terms and Conditions; by agreeing to our Terms and Conditions, you also agree to this Policy. In the event of a collision of terms used in the Terms and Conditions and this Privacy Policy, the latter shall prevail.

### Table of Contents
1. Definitions used in this Policy
2. Data protection principles we follow
3. What rights do you have regarding your Personal Data
4. What Personal Data we gather about you
5. How we use your Personal Data
6. Who else has access to your Personal Data
7. How we secure your data
8. Information about cookies
9. Contact information & Regulatory Authority

### 1. Definitions
* **Personal Data:** Any information relating to an identified or identifiable natural or juristic person under the Protection of Personal Information Act (POPIA).
* **Processing:** Any operation or set of operations which is performed on Personal Data or on sets of Personal Data.
* **Data Subject:** A person whose Personal Data is being Processed.
* **Child:** A natural person under 18 years of age in South Africa.
* **We/Us/Our (either capitalized or not):** Protechnology Group (PTY) Ltd.

### 2. Data Protection Principles
We promise to follow the following data protection principles:
* Processing is lawful, fair, and transparent. Our Processing activities have clear, lawful grounds under POPIA. We always consider your rights before Processing Personal Data.
* We will provide you with information regarding Processing upon request.
* Processing is limited to the original purpose. Our Processing activities fit the explicit purpose for which Personal Data was gathered.
* Processing is done with minimal data. We only gather and Process the minimal amount of Personal Data required to execute our IT services, hardware procurement, or client interactions.
* Processing is limited to a necessary time period. We will not store your personal data for longer than needed or legally required for accounting purposes.
* We do our best to ensure the accuracy, integrity, and confidentiality of your data.

### 3. Data Subject’s Rights
Under POPIA, the Data Subject has the following rights:
* **Right to information:** You have the right to know whether your Personal Data is being processed, what data is gathered, from where it is obtained, and why and by whom it is processed.
* **Right to access:** You have the right to access data collected from/about you, including the right to request a copy of your Personal Data.
* **Right to rectification:** You have the right to request rectification or erasure of your Personal Data that is inaccurate, outdated, or incomplete.
* **Right to erasure:** In certain circumstances, you can request for your Personal Data to be erased from our active communication records.
* **Right to restrict or object to processing:** You have the right to object to the Processing of your Personal Data, such as in the case of direct marketing.
* **Right to withdraw consent:** You have the right to withdraw any given consent for the Processing of your Personal Data at any time.
* **Right to lodge a complaint:** In the event that you are not satisfied with how we handle your personal data requests, you have the right to lodge a complaint with us directly or with the Information Regulator.

### 4. Data We Gather

> **Our Commitment to Data Integrity:** Protechnology Group operates strictly on a consent-first framework. We only gather, store, or process information from existing clients and prospective clients where explicit consent has been granted, or where it is strictly necessary for the execution of lawful, standard business operations. We do not purchase third-party lead generation lists or process data without your clear knowledge.

#### Information you have provided us with
This includes your name, business name, company registration number, email address, billing address, telephone numbers, and physical operational address. This is information necessary for delivering IT services, managing hardware orders, setting up Service Level Agreements (SLAs), or responding to your voluntary requests for quotes and inquiries.

#### Information automatically collected about you
This includes information that is automatically stored by cookies and other session tools. For example, your IP address, browser information, or logging entries when you navigate our content or interact with our portal. This information is used strictly to optimize site performance and security.

#### Information from our partners
We gather information from our trusted service partners only with explicit confirmation that they have legal grounds to share that information with us.

### 5. How We Use Your Personal Data
We process your personal and business information strictly for **lawful business operations**, which include:
* Providing our professional ICT, network infrastructure, and surveillance services to you.
* Processing procurement invoices, statements, and clear payments.
* Communicating and interacting with you regarding remote or onsite support tickets.
* Notifying you of critical system upgrades, software licensing changes, or backup environment statuses.
* Fulfilling explicit obligations under law, accounting frameworks, or corporate contracts.

We use your Personal Data on legitimate operational grounds and with your explicit consent. On the grounds of entering into a contract or fulfilling contractual obligations, we process your data to identify you, process financial transacting, and supply the respective hardware or cloud profiles.

We save your billing information and operational metadata for as long as needed for historical accounting purposes or other administrative obligations deriving from South African corporate law.

### 6. Who Else Can Access Your Personal Data
We do not share your Personal Data with unvetted third parties. Personal Data is shared strictly with trusted processing partners to execute your business transactions or manage your service environment. We share data with:

**Our Processing & Billing Partners:**
* **Google Analytics:** Used to measure traffic and understand how users interact with our website to improve performance.
* **PayFast (Network One Services PTY Ltd):** Used as our secure third-party payment gateway to process merchant card transactions and instant EFT transactions safely. Protechnology Group does not harvest or store your credit card data on its own local database.
* **Banking Institutions:** Direct Electronic Funds Transfers (EFT) initiated by clients reflect safely via our primary corporate bank accounts, and payment data is handled under strict financial privacy mandates.

We only work with processing partners who are able to ensure an adequate level of protection for your Personal Data in full alignment with POPIA requirements. We will disclose your Personal Data to public officials or regulatory bodies only when legally obliged to do so.

### 7. How We Secure Your Data
We do our best to keep your Personal Data safe. We use secure protocols for communication and transferring data (such as HTTPS/SSL). We monitor our infrastructure systems for possible vulnerabilities and attacks.

While no data transmission over the internet can be guaranteed 100% secure, we have strict incident response protocols in place. In the event of a verifiable data breach affecting your information, we promise to notify the South African Information Regulator and all affected Data Subjects timeously as required by law.

If you possess an administrative client account with us, you are fully responsible for maintaining the strict confidentiality of your username and password credentials.

### 8. Cookies and Other Technologies We Use
We use cookies to analyze visitor behavior, administer the website, and track user movements to optimize your browsing journey. A cookie is a tiny text file stored on your computer. You can control or disable your cookies at the browser level, though certain convenient features on our site may become limited as a result.

We utilize:
* **Necessary Cookies:** Required to browse our site, log into secure customer fields, or fill out communication forms. They do not harvest tracking data.
* **Analytics Cookies:** Used internally via Google Analytics to measure site performance metrics anonymously.

### 9. Contact Information & Regulatory Authority

#### Information Officer / Data Protection Officer
If you have any questions regarding the processing of your Personal Data, your statutory rights under POPIA, or wish to make updates to your data records, please contact our designated Information Officer:

* **Information Officer:** Bruce George
* **Direct Email:** bruce.george@protechnology.co.za
* **General Admin Office:** admin@protechnology.co.za / info@protechnology.co.za
* **Office Contact:** (031) 825 2524

#### Supervisory Authority (The Information Regulator)
If you feel we have not resolved a data privacy issue to your satisfaction, you have the right to escalate a formal complaint to the South African Information Regulator:

* **Website:** https://inforegulator.org.za/
* **General Enquiries Email:** enquiries@inforegulator.org.za
* **POPIA Complaints Email:** POPIAComplaints@inforegulator.org.za