Privacy Policy

2026.04.12

GIG DigitalCo (“we”, “us”, “our”) respects your privacy and is committed to protecting your personal information in accordance with applicable privacy and data protection laws, including the Protection of Personal Information Act, 2013 (“POPIA”), where applicable.

This Privacy Policy explains what personal information we collect through our website, how we use it, how we protect it, when we may share it, and what rights you may have in relation to your personal information.

By using this website and submitting your information through our contact form, you acknowledge that you have read and understood this Privacy Policy.

1. Who We Are and What Information We Collect

1.1 Who we are

This website is operated by [Insert Full Legal Entity Name / GIG DigitalCo], a business providing [insert short service description, for example: digital strategy, design, development, SEO, and related marketing services].

For purposes of POPIA, where applicable, we are the responsible party in relation to the personal information collected through this website.

1.2 Scope of this Policy

This Privacy Policy applies to personal information collected through this website, including information submitted through our contact form and limited technical information collected automatically through the normal operation of the website, server environment, and security systems.

This Privacy Policy does not necessarily apply to third-party websites, platforms, or services that may be linked to from this website. Where you leave our website and access a third-party site, that third party’s privacy terms and practices will apply.

1.3 Personal information you provide to us

We may collect personal information that you voluntarily provide when you complete and submit our contact form. Depending on the form fields used on the website, this may include:

your name and surname;
your email address;
your telephone or mobile number;
your company or organisation name;
your website address or business details, where relevant;
the subject of your enquiry;
the contents of your message; and
any other personal information you choose to include in your communication with us.

You are not required to provide more information than is reasonably necessary for us to understand and respond to your enquiry. Please do not send highly sensitive personal information through the contact form unless it is strictly necessary and appropriate to do so.

1.4 Information collected automatically

When you visit or use this website, certain limited technical information may be collected automatically through the website hosting environment, content delivery services, analytics tools, security systems, or server logs. This may include:

your IP address;
browser type and version;
device type;
operating system;
referring website or source;
pages visited;
date and time of access;
general usage and diagnostic information; and
information relating to suspicious, malicious, or abusive activity for website security purposes.

This information is generally used for technical administration, performance monitoring, security, troubleshooting, and improving the website experience.

1.5 Special personal information and children

This website is not intended to collect special personal information or the personal information of children intentionally. Please do not submit information relating to health, biometric details, religious beliefs, political persuasion, criminal behaviour, or other categories of sensitive information through the contact form unless there is a clear lawful basis and it is strictly necessary for the purpose of your enquiry.

If we become aware that personal information has been submitted to us in circumstances where it should not have been collected, we will take reasonable steps to delete, destroy, or de-identify it where appropriate and lawful to do so.

1.6 Sources of personal information

In most cases, we collect personal information directly from you when you contact us through the website. We may also receive limited information indirectly through our website host, spam filtering tools, security tools, analytics providers, or email systems where your enquiry is delivered or stored using those services.

1.7 Accuracy of information

You should ensure that the personal information you provide is accurate, current, and complete. Where your details change, you should let us know so that we can update our records where necessary.

1.8 Minimality and purpose

We aim to collect only the personal information that is reasonably required for a specific, defined, and lawful purpose connected to your enquiry or our business operations. We do not intentionally collect personal information that is irrelevant or excessive for that purpose.

2. How We Use, Share, Store, Retain, and Protect Your Information

2.1 How we use your personal information

We may process personal information collected through this website for one or more of the following purposes:

to receive and respond to your enquiry;
to communicate with you about the services or information you requested;
to assess whether our services are relevant to your needs;
to provide quotations, proposals, or further business information where requested;
to maintain internal business records and correspondence history;
to manage our website, hosting environment, and communications systems;
to detect, prevent, investigate, or respond to fraud, abuse, spam, cybersecurity threats, or unauthorised activity;
to comply with legal, regulatory, insurance, audit, or professional obligations; and
to protect our rights, property, systems, staff, service providers, and business interests.

We will not process your personal information for a purpose that is incompatible with the purpose for which it was originally collected, unless permitted or required by law.

2.2 Lawful basis for processing

Where POPIA applies, we process personal information only where there is an appropriate justification to do so. Depending on the circumstances, this may include that:

you have voluntarily provided the information to us;
processing is necessary to take steps at your request before entering into a contract;
processing is necessary for the conclusion or performance of a contract;
processing is necessary to comply with a legal obligation;
processing protects a legitimate interest of yours; or
processing is necessary for pursuing our legitimate business interests in a manner that does not unreasonably prejudice your rights.

2.3 Disclosure to third parties and operators

We do not sell your personal information.

We may share personal information, or allow limited access to it, with third parties where reasonably necessary for the purposes described in this Privacy Policy. These may include:

website hosting providers;
email hosting or email delivery providers;
website developers, maintenance providers, or IT support providers;
analytics, spam filtering, firewall, backup, or security service providers;
professional advisers, including legal, accounting, or compliance advisers;
regulators, law enforcement, courts, or government authorities where required by law; and
service providers who assist us in receiving, storing, routing, protecting, or managing website enquiries.

Where third-party operators process personal information on our behalf, we expect them to do so only on our instructions, with appropriate confidentiality and security obligations, and only to the extent necessary for them to perform their services.

2.4 International or cross-border transfers

Some of our website, cloud, email, analytics, security, or support service providers may store or process personal information outside South Africa. Where this happens, we will take reasonable steps to ensure that any cross-border transfer is lawful and that the information continues to receive an adequate level of protection, whether by contract, service provider safeguards, or another lawful basis recognised under applicable law.

2.5 Cookies and similar technologies

This website may use essential cookies or similar technologies necessary for site functionality, security, spam prevention, analytics, or performance monitoring.

We do not use cookies to collect more personal information than is reasonably required for the operation, security, or administration of the website. Where non-essential cookies or analytics tools are used, these should be managed in line with the website’s cookie notice or consent settings, where applicable.

2.6 Retention of personal information

We retain personal information only for as long as reasonably necessary for the purpose for which it was collected or subsequently processed, including:

responding to your enquiry;
maintaining an appropriate record of business communications;
enforcing or defending legal rights;
complying with legal, accounting, tax, insurance, audit, or regulatory obligations; or
resolving disputes, complaints, or technical issues.

Once personal information is no longer required for a lawful purpose, we may delete, destroy, anonymise, or de-identify it, subject to any legal or operational retention requirements.

2.7 Security safeguards

We take reasonable technical and organisational measures to safeguard personal information against loss, misuse, unauthorised access, disclosure, alteration, destruction, or unlawful processing. Depending on our systems and providers, these measures may include:

access controls and password protection;
secure hosting environments;
SSL or HTTPS encryption where implemented;
firewalls, malware protection, and spam filtering;
software updates and general website maintenance;
backup processes;
restricted internal access on a need-to-know basis; and
contractual controls with service providers where appropriate.

No method of internet transmission or electronic storage is completely secure. We therefore cannot guarantee absolute security, but we do take reasonable steps to protect personal information in our possession or under our control.

2.8 Security compromises

Where required by law, and where there are reasonable grounds to believe that personal information has been accessed or acquired by an unauthorised person, we will take the steps required under applicable law, which may include notifying affected persons and/or the Information Regulator.

2.9 Direct marketing

We do not use contact form submissions as a basis for unsolicited direct marketing in a manner that is unlawful. If we ever send marketing communications, we will do so only in accordance with applicable law and, where required, with the appropriate consent or lawful basis. You may object to direct marketing communications at any time.

2.10 Third-party links

This website may contain links to other websites or services for convenience or reference. We are not responsible for the privacy, security, or content practices of third-party websites. You should review their own privacy notices before submitting personal information to them.

3. Your Rights, Contact Details, Complaints, and Policy Updates

3.1 Your privacy rights

Subject to applicable law, you may have the right to:

ask whether we hold personal information about you;
request access to personal information we hold about you;
request correction, updating, or deletion of inaccurate, irrelevant, excessive, outdated, incomplete, misleading, or unlawfully obtained personal information;
object, on reasonable grounds, to certain processing of your personal information;
withdraw consent where processing is based on consent, provided that withdrawal does not affect the lawfulness of prior processing;
object to direct marketing;
request that we restrict or stop certain processing where required by law; and
lodge a complaint with the Information Regulator if you believe that your personal information has been processed unlawfully.

These rights are not absolute and may be subject to legal limitations, verification requirements, recordkeeping duties, or other lawful grounds permitting or requiring continued retention or processing.

3.2 Verification and handling of requests

To protect your privacy and security, we may ask you to provide sufficient information to verify your identity before we action a request relating to your personal information.

We may keep a record of requests, correspondence, and our response for compliance, administrative, and legal purposes.

3.3 Information Officer / privacy contact

Requests, questions, complaints, or concerns regarding this Privacy Policy or our handling of personal information may be directed to:

Information Officer / Privacy Contact: [Insert Name]
Business Name: GIG DigitalCo / [Insert Full Legal Entity Name]
Email: [Insert Email Address]
Telephone: [Insert Phone Number]
Address: [Insert Physical Address]

Where required, our Information Officer will be responsible for encouraging and supporting compliance with applicable privacy requirements.

3.4 Complaints to the Information Regulator

If you are not satisfied with how we handle your personal information or a privacy-related complaint, you may have the right to lodge a complaint with the Information Regulator (South Africa).

3.5 Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes to our website, operations, legal obligations, or privacy practices. The latest version published on the website will apply from the stated effective date.

Where appropriate, material updates may be highlighted on the website for a reasonable period.

3.6 Contact us

If you have any questions about this Privacy Policy, the personal information we hold about you, or how your information is processed, please contact us using the details set out above.

contact us

If you have any questions about this Privacy Policy or how your information is handled, please contact us.