Home / Privacy

Privacy Policy

Last updated: 8 June 2026

This policy explains how CyberPeak ([CONFIRM: registered legal name [CONFIRM: registered legal name], registration number [CONFIRM: company registration number]]) collects, uses, and protects your personal information. We comply with the Protection of Personal Information Act, 2013 (“POPIA”).

1. Responsible party

CyberPeak is the responsible party for the processing of your personal information under POPIA. You can contact us at hello@cyberpeak.co.za.

[CONFIRM: Information Officer name + contact email registered with the Information Regulator.]

2. Information we collect

We collect personal information you give us directly (for example when you fill in a contact form, book a call, or email us) and information we collect automatically when you visit the website (such as IP address, browser type, and pages visited).

  • Identity data: name, company, job title.
  • Contact data: email address, phone number.
  • Communication data: the messages you send us.
  • Technical data: IP address, device, browser, cookies (see Cookie Policy).

3. Why we process your information

  • To respond to enquiries you submit via this site.
  • To provide quotes, proposals, and the IT services you ask us about.
  • To send you service updates or, with consent, marketing.
  • To comply with our legal obligations (for example, tax and accounting records).
  • To protect the security of our systems and clients.

4. Lawful basis

POPIA requires that we process personal information lawfully. We rely on (a) your consent where required, (b) the performance of a contract with you, (c) compliance with a legal obligation, or (d) our legitimate interests in operating and growing our business in a fair and proportionate way.

5. Who we share information with

We do not sell your personal information. We share it only with trusted operators acting on our instructions — for example, our email and helpdesk providers — under written agreements that require appropriate security and confidentiality.

[CONFIRM: list of major operators / sub-processors, e.g. Microsoft 365, Resend, Vercel, hosting providers.]

6. Cross-border transfers

Some of our service providers process data outside South Africa (typically in the EU or the USA). Where this happens, we ensure adequate protection through contracts and provider safeguards as required by POPIA.

7. How we protect your information

We use reasonable technical and organisational measures — encryption, access controls, multi-factor authentication, staff training, and regular reviews — to protect your information against loss, unauthorised access, and misuse.

8. How long we keep your information

We keep your information only as long as we need it for the purposes described above, or as required by law. [CONFIRM: default retention period for enquiry data — typically 24 months from last contact.]

9. Your rights under POPIA

You have the right to:

  • Ask what personal information we hold about you.
  • Ask us to correct or delete your information.
  • Object to processing, including for direct marketing purposes.
  • Withdraw any consent you previously gave.
  • Lodge a complaint with the Information Regulator (South Africa) at inforegulator.org.za.

To exercise any of these rights, email hello@cyberpeak.co.za.

10. POPIA compliance summary

This site and our internal processes are designed to comply with POPIA. If you have a specific POPIA question — for example about how your data is processed by our IT services — please contact us. We will respond within a reasonable time and, where required, coordinate with the Information Regulator.

11. Changes to this policy

We may update this policy from time to time. The “last updated” date at the top will always reflect the current version.