Privacy Policy

How DeviceCare collects, uses, and protects your personal information in accordance with POPIA and best practice.

Introduction

DeviceCare ("we", "us", "our") is committed to protecting your privacy. This policy explains how we collect, use, store, and protect your personal information in line with the Protection of Personal Information Act 4 of 2013 (POPIA) and other applicable South African law.

Data We Collect

We may collect:

  • Account data: name, email address, phone number, password (hashed)
  • Membership data: plan type, payment status, subscription history
  • Usage data: how you use our website and services (e.g. repair requests, support enquiries)
  • Technical data: IP address, browser type, device type (for security and analytics)

We collect this data when you register, subscribe, submit a repair request, contact us, or use our website. We use it to provide the service, process payments, communicate with you, and improve our offering.

Device Data

When you register a device we store brand, model, IMEI, and photos you upload. This is used to process repair requests and verify eligibility. Device data is retained for the duration of your membership and as required for claims and legal compliance.

Payment Processing

Payments are processed by PayFast. We do not store your full card or bank details. PayFast may collect and process payment information in accordance with their privacy policy and applicable payment regulations. We receive transaction status and identifiers necessary for billing and support.

Data Storage (Firebase)

We use Google Firebase (Authentication, Firestore, Storage) to store account, membership, device, and repair data. Data may be stored on servers outside South Africa. Firebase is bound by robust security and data processing terms. We ensure appropriate safeguards are in place for the transfer and storage of your data.

Your Rights Under POPIA

You have the right to:

  • Know what personal information we hold about you
  • Request access to and correction of your personal information
  • Object to processing in certain circumstances
  • Request deletion where the law allows
  • Lodge a complaint with the Information Regulator (South Africa)

To exercise these rights, contact us using the details below. We will respond within a reasonable time as required by POPIA.

Data Security

We use industry-standard measures to protect your data, including encryption in transit (HTTPS), secure authentication (Firebase Auth), and access controls. No method of transmission or storage is 100% secure; we cannot guarantee absolute security but we take all reasonable steps to protect your information.

Cookies

We use cookies and similar technologies for essential site operation (e.g. login sessions), security, and to understand how our site is used. You can control cookies through your browser settings. Disabling certain cookies may affect site functionality.

Contact for Privacy Concerns

For privacy-related questions, access requests, or complaints, contact us via the Contact page. We will address your request in line with POPIA and our internal procedures.