Privacy Policy

TrueCode South Africa (Pty) Ltd ("TrueCode", "we", "us", or "our") respects your privacy and is committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, use our services, or interact with us.

This policy is aligned with the Protection of Personal Information Act 4 of 2013 (POPIA) and other applicable South African data protection laws. By using our website or services, you consent to the practices described in this policy.

If you do not agree with the terms of this Privacy Policy, please do not access or use our services.

Personal Information

We may collect personal information that you voluntarily provide to us, including but not limited to:

• Name and surname
• Email address
• Phone number
• Company name and job title
• Postal or business address

Technical Information

When you visit our website, we may automatically collect certain technical information, such as:

• IP address and approximate location
• Browser type and version
• Device type and operating system
• Pages visited, time spent, and referral sources
• Cookies and similar tracking technologies

Website Forms

When you submit a contact form, consultation request, or newsletter signup, we collect the information you provide in those forms. This may include service interests, project details, and communication preferences.

We use the information we collect for the following purposes:

Customer Support

To respond to your enquiries, provide technical support, and communicate with you about our services.

Service Delivery

To deliver the services you have requested, manage projects, and fulfil our contractual obligations.

Marketing Communications

To send you newsletters, service updates, and promotional content that may be of interest. You may opt out of marketing communications at any time by clicking the unsubscribe link in our emails or contacting us directly.

Website Improvements

To analyse website usage, improve our content and user experience, and ensure our site remains secure and functional.

Under POPIA, we process personal information on the following lawful grounds:

• Consent — where you have given explicit consent (e.g., newsletter subscriptions, marketing communications).
• Contractual necessity — where processing is required to fulfil a contract with you or take steps at your request before entering into a contract.
• Legitimate interests — where processing is necessary for our legitimate business interests, provided your rights and interests do not override those interests (e.g., website analytics, fraud prevention).
• Legal obligation — where we are required to process data to comply with applicable laws and regulations.

We do not sell your personal information. We may share your information with trusted third parties only in the following circumstances:

• Service providers — such as email delivery services, cloud hosting providers, and analytics platforms, who process data on our behalf under strict confidentiality agreements.
• Legal compliance — when required by law, court order, or governmental authority.
• Business transfers — in connection with a merger, acquisition, or sale of assets, subject to confidentiality protections.

All third-party processors are vetted to ensure they maintain appropriate data protection standards consistent with POPIA.

Our website uses cookies and similar technologies to enhance your browsing experience, analyse traffic, and understand user behaviour.

Types of Cookies We Use

• Essential cookies — necessary for the website to function properly (e.g., cookie consent preferences).
• Analytics cookies — help us understand how visitors interact with our website (e.g., Google Analytics, Microsoft Clarity).

We only load analytics and tracking scripts after you provide consent via our cookie banner. You can manage or withdraw your consent at any time through the cookie preferences link in the footer.

For more information about how Google and Microsoft process data, please refer to their respective privacy policies.

We implement appropriate technical and organisational measures to protect your personal information against unauthorised access, alteration, disclosure, or destruction.

These measures include:

• Encryption of data in transit using TLS/SSL
• Secure cloud infrastructure with access controls
• Regular security assessments and vulnerability management
• Staff training on data protection and POPIA compliance
• Incident response procedures

While we strive to protect your personal information, no method of transmission over the Internet or electronic storage is 100% secure. We encourage you to use strong passwords and keep your credentials confidential.

We retain personal information only for as long as necessary to fulfil the purposes for which it was collected, including satisfying any legal, accounting, or reporting requirements.

Generally, we retain contact and enquiry data for up to 36 months from the date of last interaction, after which it is securely deleted or anonymised. Marketing subscription data is retained until you unsubscribe or request deletion.

Specific retention periods may vary depending on the nature of the data and applicable legal obligations.

As a data subject under POPIA, you have the following rights regarding your personal information:

• Right to access — request confirmation of whether we hold your personal information and request a copy.
• Right to correction — request that we correct inaccurate or incomplete personal information.
• Right to deletion — request deletion of your personal information where retention is no longer justified.
• Right to object — object to the processing of your personal information for direct marketing or legitimate interests.
• Right to restrict processing — request that we limit how we use your information in certain circumstances.
• Right to complain — lodge a complaint with the Information Regulator of South Africa if you believe your rights have been violated.

To exercise any of these rights, please contact us using the details in the Contact Information section below. We will respond within the timeframes required by POPIA.

Our website may contain links to third-party websites, services, or applications that are not operated by us. We have no control over the content and privacy practices of these third parties and encourage you to review their privacy policies before providing any personal information.

We are not responsible for the privacy practices or content of any third-party sites linked from our website.

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

If we become aware that we have collected personal information from a child without verification of parental consent, we will take steps to remove that information from our servers.

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or operational needs. When we make material changes, we will update the "Last updated" date at the top of this page and, where appropriate, notify you via email or a prominent notice on our website.

We encourage you to review this policy periodically to stay informed about how we protect your information.

If you have any questions, concerns, or requests regarding this Privacy Policy or our data protection practices, please contact us:

You may also contact the Information Regulator of South Africa directly if you have concerns about how your personal information is being handled.