iFeedback Consulting (Pty) Ltd - Privacy Policy
Registration Number: 2013/171267/07
Last Updated: October 10, 2025
1. Introduction
iFeedback Consulting (Pty) LTD ("iFeedback," "we," "us," "our"), registered in South Africa, is committed to protecting your privacy and handling your personal information responsibly and transparently. This commitment is in compliance with the Protection of Personal Information Act, 4 of 2013 (POPIA) and other applicable data protection laws.
This Privacy Policy ("Policy") explains how we collect, use, disclose, secure, and otherwise process your personal information when you:
What is Personal Information? As defined by POPIA, personal information means information relating to an identifiable, living, natural person, and where applicable, an identifiable, existing juristic person. This includes, but is not limited to, your name, email address, phone number, address, demographic details, opinions (in certain contexts), and online identifiers like IP addresses.
This Policy does not apply to third-party websites or services that may be linked from our Websites. We encourage you to review their privacy policies independently.
By using our Websites or Services, you acknowledge that you have read and understood this Privacy Policy. Where specific processing activities require your consent (as outlined below), we will obtain this separately. If you do not agree with our use of your personal information as described herein, please do not use our Websites or Services.
2. Information Officer
Our designated Information Officer, responsible for overseeing compliance with this Policy and POPIA, is:
Please contact the Information Officer with any questions, concerns, or requests regarding this Policy or your personal information.
3. Information We Collect
We collect personal information in various ways, depending on your interaction with us:
4. How We Use Your Information and Lawful Basis (POPIA)
We process your personal information only for specified, explicit, and legitimate purposes, relying on the following lawful bases under POPIA:
|
Purpose of Processing |
Examples of Information Used |
Lawful Basis under POPIA |
|---|---|---|
|
To Provide and Manage Platform Services (ifeedback.app) |
Sign-up info, Account details, Survey responses |
Consent (for sign-up, non-anon surveys), Legitimate Interest |
|
To Invite You to Participate in Research (ifeedback.app) |
Email, Demographics (for targeting), Professional Contact Info (for B2B) |
Consent (Citizen Scientist), Legitimate Interest (B2B) |
|
To Provide and Manage Professional Services (ifeedback.co.za) |
Contact info, Company info, Consultation notes, Payment info (via processor) |
Performance of Contract, Legitimate Interest |
|
To Respond to Your Inquiries and Provide Support (Both Websites) |
Contact info, Message content |
Legitimate Interest, Consent (implied by contacting us) |
|
To Operate, Maintain, Secure, and Improve Websites & Services (Both Websites) |
Log data, Cookie data, Usage patterns, Feedback |
Legitimate Interest |
|
To Communicate with You (Admin & Marketing) |
Email address, Name |
Legitimate Interest (service msgs), Consent (marketing) |
|
To Process Payments (for Services via ifeedback.co.za) |
Payment details (processed by third party) |
Performance of Contract |
|
To Facilitate Research Data Collection for Clients (ifeedback.app) |
Survey responses (mostly anonymous), Demographic data (aggregated) |
Consent (participant), Legitimate Interest (client) |
|
To Publish Aggregated, Anonymised Insights (e.g., from polls) |
Anonymised survey/poll data |
Legitimate Interest |
|
To Comply with Legal Obligations and Enforce Terms |
Any relevant information as required |
Legal Obligation, Legitimate Interest |
|
To Prevent Fraud and Ensure Security |
Log data, Account activity |
Legitimate Interest |
5. Cookies and Tracking Technologies
We use cookies and similar technologies on our Websites for various purposes:
We use both session cookies (expire when you close your browser) and persistent cookies (remain until they expire or you delete them). We use first-party cookies (set by us) and may allow third-party cookies (set by partners like analytics providers).
Your Choices: You can manage cookie preferences through your browser settings. Most browsers allow you to block or delete cookies. However, disabling essential cookies may affect the functionality of the Websites.
6. Information Sharing and Disclosure
We respect your privacy and do not sell your personal contact information. We may share your personal information only in the following limited circumstances:
7. Data Security
We implement reasonable and appropriate technical, administrative, and physical security measures designed to protect the personal information we process from loss, misuse, unauthorised access, disclosure, alteration, and destruction. These measures consider the nature of the data and the risks involved. However, please be aware that no method of transmission over the Internet or method of electronic storage is 100% secure, and we cannot guarantee absolute security.
8. Data Retention
We retain your personal information only for as long as necessary to fulfil the purposes for which it was collected, as outlined in this Policy, including:
Once retention is no longer necessary, we will securely delete or anonymise your personal information.
9. Your Rights Under POPIA
As a data subject under POPIA, you have the following rights regarding your personal information:
Exercising Your Rights:
To exercise any of your rights, please contact our Information Officer. For formal requests to access records that iFeedback may hold, we are required to follow the procedure outlined in the Promotion of Access to Information Act (PAIA).
10. International Data Transfers
Your personal information may be stored and processed on servers located outside of South Africa (e.g., by our cloud hosting providers or other service providers). When we transfer your information internationally, we take appropriate steps to ensure that the transfer complies with POPIA requirements and that your information remains protected to an adequate standard, for example, through contractual clauses or by ensuring the recipient country has adequate data protection laws.
11. Third-Party Links
Our Websites may contain links to other websites not operated or controlled by us. This Policy does not apply to those third-party sites. We are not responsible for their privacy practices and encourage you to review their privacy policies before providing any personal information.
12. Children's Privacy
Our Websites and Services are not directed at or intended for use by individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have inadvertently collected personal information from a child under 18, we will take steps to delete it promptly.
13. Access to Information
Our Privacy Policy outlines your rights regarding your personal information under POPIA. In addition, the Promotion of Access to Information Act 2 of 2000 (PAIA) provides you with the right to access records held by iFeedback.
For full details on the types of records we hold and the formal procedure to request access to these records, please consult our comprehensive PAIA Manual, available at https://ifeedback.co.za/documents/paia-manual.pdf.
14. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, services, or legal requirements. We will post the updated Policy on our Websites and indicate the "Last Updated" date at the top. For significant changes, we may provide more prominent notice (e.g., via email to registered users or a notice on the website). We encourage you to review this Policy periodically to stay informed about how we protect your information.
15. Complaints
If you have any concerns or complaints about how we handle your personal information or believe your rights under POPIA have been breached, please contact our Information Officer first (details below). We are committed to resolving complaints fairly and efficiently and aim to respond within 30 days. If you are not satisfied with our response, you have the right to lodge a complaint with the Information Regulator of South Africa:
16. Contact Information
For any questions, concerns, requests to exercise your rights, or comments regarding this Privacy Policy, please contact our Information Officer: