Privacy Policy

1. Who We Are
We are the responsible party for your personal information under the Protection of Personal Information Act, 4 of 2013 (POPIA). Our privacy policy applies to all users on our website.

2. What Information We Collect
We may collect the following personal information:

• Identity and contact details (name, email, phone number, delivery and billing address). • Account information (login details, order history, customer support interactions). • Order and payment information (order details and payment confirmation tokens; we do not store full card numbers). • Device and usage data (IP address, device type, browser information, pages viewed, interactions). • Marketing preferences (opt-in or opt-out status).

3. How We Collect Information

We collect personal information: • Directly from you when you place an order, create an account, or contact us. • Automatically through cookies and similar technologies when you use the Site. • From trusted service providers such as payment gateways, couriers, and analytics providers.

4. Why We Collect Information (Purpose)

We use personal information to: • Process orders, payments, deliveries, returns, and customer support. • Secure our Site, prevent fraud, and maintain audit logs. • Send transactional communications (order confirmations, delivery updates). • Send marketing communications where permitted or with your consent. • Improve our Site through analytics and performance monitoring. • Comply with legal, tax, accounting, and regulatory obligations.

5. Legal Basis for Processing

We process personal information based on: • Contract (to fulfil your order). • Consent (for marketing and non-essential cookies). • Legitimate interests (site security, fraud prevention, analytics). • Legal obligations (compliance with applicable laws). This structure also aligns with EU/UK GDPR principles where applicable.

6. Sharing Personal Information

We share personal information only with vetted service providers (“operators”) such as: • Payment processors. • Courier and logistics partners. • Hosting, analytics, email, and SMS service providers. All operators process information under contract and must apply appropriate security safeguards.

7. International Data Transfers

Some service providers may store or process personal information outside South Africa. We only transfer data where adequate protection is in place, including contractual safeguards or where permitted under Section 72 of POPIA.

8. Data Storage, Retention & Security

We store personal information only for as long as necessary to fulfil the purposes described above, including legal and accounting requirements. We apply reasonable technical and organisational security measures appropriate to the risk, including encryption in transit, access controls, secure
hosting, and payment security standards.

9. Cookies & Tracking Technologies

We use essential cookies to operate the Site and optional analytics or marketing cookies only with your consent. You can manage your preferences via our cookie banner. More detail is available in our Cookies Policy.

10. Children’s Privacy

Our Site is intended for adults. We do not knowingly collect personal information from children without the consent required by POPIA.

11. Your Rights
You have the right to access, correct, delete, or object to the processing of your personal information, and to withdraw consent where applicable. You may also request records under PAIA via our PAIA Manual.

12. Data Breach Notifications

If a security breach occurs that may compromise your personal information, we will notify affected individuals and the Information Regulator as required by law.

13. Third-Party Links

Our Site may link to third-party websites or services. We are not responsible for their privacy practices.

14. Changes to This Policy

We may update this Privacy Policy from time to time. The latest version will always be posted on the Site with an updated date.

Last updated: 19 January 2026