Prepared in accordance with the Protection of Personal Information Act, 4 of 2013 (POPIA)
1. Introduction
Vestara (Pty) Ltd (“Vestara”, “we”, “us”, or “our”) is committed to protecting the privacy and personal information of clients, contractors, partners, and website users.
This Privacy Policy explains how we collect, use, store, share, and protect personal information in accordance with the Protection of Personal Information Act, 4 of 2013 (POPIA).
By engaging with Vestara or using our website and services, you consent to the processing of your personal information as described in this Policy.
2. Responsible Party
Company Name: Vestara (Pty) Ltd
Registration Number: 2023/230233/07
Physical Address: Centurion, Gauteng, South Africa, 0157
Email Address: selanei@vestara.co.za
Website: https://www.vestara.co.za
Vestara is the Responsible Party as defined in POPIA.
3. Personal Information We Collect
We may collect and process the following categories of personal information:
3.1 Clients and Prospective Clients
- Full name and contact details
- Company and billing information
- Communication records
- Service-related information
3.2 Contractors and Service Providers
- Identification and contact details
- Contractual and payment information
- Professional and work-related records
3.3 Website Users
- IP address and browser information
- Website usage data (cookies and analytics)
- Contact form submissions
We do not intentionally collect special personal information unless required by law or with explicit consent.
4. Purpose of Processing
Personal information is collected and processed for the following purposes:
- Providing and managing services
- Communicating with clients and contractors
- Contractual and legal compliance
- Financial and administrative processing
- Improving our website and services
- Marketing communications (where consent has been given)
5. Lawful Basis for Processing
We process personal information based on one or more of the following lawful grounds:
- Consent of the data subject
- Performance of a contract
- Compliance with a legal obligation
- Legitimate business interests
6. Information Sharing and Disclosure
We may share personal information with:
- Employees and authorised contractors
- Third-party service providers (e.g. accounting, IT, hosting)
- Regulatory authorities where required by law
All third parties are required to maintain appropriate security and confidentiality.
7. Cross-Border Transfers
Where personal information is transferred outside of South Africa, Vestara ensures that adequate safeguards are in place in accordance with POPIA.
8. Data Security
We implement appropriate technical and organisational measures to protect personal information against loss, unauthorised access, or misuse. These measures include access controls, secure systems, and confidentiality obligations.
9. Data Retention
Personal information is retained only for as long as necessary to fulfil the purposes for which it was collected, or as required by law.
10. Data Subject Rights
Data subjects have the right to:
- Request access to personal information
- Request correction or deletion of personal information
- Object to processing
- Withdraw consent (where applicable)
- Lodge a complaint with the Information Regulator
Requests may be directed to the Information Officer.
11. Cookies and Website Usage
Vestara uses cookies and similar technologies to enhance website functionality and analyse usage. Users may manage cookie preferences through their browser settings.
12. Changes to This Policy
Vestara reserves the right to update this Privacy Policy from time to time. Updates will be published on our website.
13. Contact Details
For questions, concerns, or requests relating to this Privacy Policy, please contact:
Information Officer
Email: selanei@vestara.co.za
Effective Date: 1 February 2026