top of page

PRIVACY POLICY (POPIA-Compliant)

Last Updated: 19 April 2026

 

 

---

 

1. Overview

 

Norovari (Pty) Ltd (“Norovari”, “we”, “us”) respects your privacy and is committed to protecting your personal information in line with the Protection of Personal Information Act, 4 of 2013 (POPIA), and globally recognised data protection principles, including alignment with widely accepted international privacy standards such as the GDPR.

 

This policy explains what we collect, why we collect it, and how we protect it when you use our website, products, or services.

 

 

---

 

2. Information We Collect

 

We only collect personal information that is necessary to operate, improve, and secure our services.

 

Information you provide:

 

  • Name and surname

  • Email address

  • Contact details

  • Company or organisation information

  • Messages or support requests you submit

 

Information collected automatically:

 

  • IP address

  • Device and browser type

  • Usage data (pages visited, interactions, timestamps)

  • Cookies and similar technologies

---

 

3. How We Use Information

 

We use personal information to:

 

  • Provide and maintain our services

  • Respond to enquiries and support requests

  • Improve performance, reliability, and user experience

  • Send service-related or product communications (where permitted)

  • Detect, prevent, and address security or technical issues

  • Comply with legal obligations

 

 

We do not use your personal information for unrelated or undisclosed purposes.

 

 

---

 

4. Legal Basis for Processing

 

We process personal information under one or more of the following bases:

 

  • Consent – where you have explicitly agreed

  • Contract – where processing is necessary to deliver services

  • Legitimate interest – to operate, secure, and improve our platform

  • Legal obligation – where required by law

 

---

 

5. Sharing of Information

 

We do not sell personal information.

 

We may share information with trusted service providers (“operators”) who help us run our business, including:

 

  • Cloud infrastructure providers

  • Analytics and performance tools

  • Communication and email platforms

  • Security and monitoring services

 

 

All operators are contractually required to protect personal information and process it only on our instructions.

 

 

---

 

6. International Data Transfers

 

Where personal information is transferred outside South Africa, we ensure appropriate safeguards are in place, including contractual protections and data protection standards comparable to POPIA requirements.

 

 

---

 

7. Data Retention

 

We retain personal information only for as long as necessary to:

 

  • Provide services

  • Comply with legal obligations

  • Resolve disputes

  • Enforce agreements

 

 

When no longer required, data is securely deleted or anonymised.

 

 

---

 

8. Security

 

We use appropriate technical and organisational measures to protect personal information, including encryption, access controls, and secure infrastructure.

 

However, no system is completely secure, and we cannot guarantee absolute security of information transmitted over the internet.

 

 

---

 

9. Cookies

 

We use cookies and similar technologies to:

 

  • Enable core website functionality

  • Understand usage and performance

  • Improve user experience

 

 

Where required, we request consent for non-essential cookies. You can manage cookies through your browser settings.

 

 

---

 

10. Your Rights

 

Under POPIA, you have the right to:

 

  • Access your personal information

  • Correct or update your information

  • Request deletion (where legally applicable)

  • Object to processing

  • Withdraw consent (where applicable)

  • Lodge a complaint with the Information Regulator

 

 

Requests can be made to our Information Officer.

 

We will respond to valid requests within 30 days, or within a reasonable extended timeframe where required.

 

 

---

 

11. Data Breach Notification

 

If a security incident affects your personal information, we will take appropriate steps to contain the breach and notify affected individuals and the Information Regulator where legally required.

 

 

---

 

12. Information Officer

 

For all privacy-related queries:

 

Email: info@norovari.com

 

 

---

 

13. Governing Law and Jurisdiction

 

This Privacy Policy is governed by the laws of the Republic of South Africa. Any disputes arising in relation to this policy will be subject to the jurisdiction of South African courts, unless otherwise required by applicable international law.

 

 

---

 

14. Complaints and Escalation

 

If you are not satisfied with our handling of your personal information, you may escalate your concern to the Information Regulator of South Africa.

 

We are committed to resolving complaints fairly and efficiently.

 

 

---

 

15. Changes to This Policy

 

We may update this Privacy Policy from time to time. Updates will be posted on this page with a revised “Last Updated” date.

 

 

---

 

16. Contact

 

If you have any questions about this Privacy Policy or how we handle your data, please contact us at info@norovari.com.

 

 

---

 

© 2026 Norovari (Pty) Ltd. All rights reserved.

bottom of page