Privacy Policy
Last Updated: October 24, 2025
1. Who We Are / Data Controller
BridgeAI (styled as BridgeAI, Co. Reg. No. 2021/049283/07, VAT ID: ZA983748293) functions as the primary Responsible Party (Data Controller) regarding personal information gathered via our online portal or local business scopes.
Our strategic registered business address is: 154 West Street, Sandown, Sandton, 2031, South Africa.
Protected Communication Gate: [email protected]
Direct Secure Telephone Contact: +27 11 463 8295
2. Scope of Policy
This privacy declaration details our structural procedures concerning the gathering, storage, usage, security, and dissemination of personal information, adhering natively to the Protection of Personal Information Act, 2013 (POPIA) of South Africa.
3. Personal Information We Gather
We classify our data collection practices into three core structural layers:
- Liaison Inputs (Direct Submission): Corporate names, email coordinates, business telephone ranges, and technical scope briefs entered directly into our form gateways.
- Automatic System Metadata: IP logs, system configurations, browser types, interaction tracking markers, and operational timings recorded as you visit our pages.
- Auxiliary Analytical Elements: Aggregated interaction records from validated marketing and platform analysis services.
4. Purpose & Legal Groundwork
In accordance with Section 11 of POPIA, we process personal information based on corporate consent, programmatic necessity, and legitimate business interest:
| Processing Objective | Required Material Fields | Legal Foundation under POPIA |
|---|---|---|
| Reviewing system specifications and planning custom integrations. | Corporate Liaison Names, Work Emails, Business Phone Ranges. | Section 11(1)(b) - Contractual Scoping & Negotiation. |
| Verifying network integrity and preventing threat vectors. | IP address ranges, session behaviors. | Section 11(1)(f) - Legitimate Business Security Protection. |
| Executing target optimization workflows and operational analysis. | Anonymized cookies, usage timestamps. | Section 11(1)(a) - Active Consent of the Data Subject. |
5. Cookie Frameworks & Consent States
We deploy standard tracking cookies and structural logging elements to optimize system performance. Optional categories (Analytics, Advertising, Personalization) remain disabled by default for South African and global visitors until explicit affirmative consent is provided. You may adjust or revoke your selections at any time using the Cookie Settings panel located in our footer page links.
6. Third-Party Data Transmissions
We do not lease, trade, or distribute corporate liaison registries. Data transfer occurs exclusively with validated infrastructure providers, secure cloud hosts, or when dictated under legal subpoenas by South African courts. All secondary processors are bound by strict POPIA compliance agreements.
7. Transborder Data Exchanges
If analytical data or localized hosting resources span foreign database facilities outside South Africa, such transfers adhere natively to Section 72 of POPIA. Foreign targets are legally bound to equal data custody standards matching South African POPIA guidelines.
8. Data Retention Chronology
We archive direct liaison records for no longer than thirty-six (36) months from the date of last contact, unless ongoing bilateral agreement execution requires extended storage cycles or local accounting tax regulations mandate retention.
9. Your Legal Rights & South African Authority
Under POPIA, you possess the right to verify, modify, download, or request the structural deletion of your archived personal data records. Direct your inquiry to [email protected]. If you determine our operations breach POPI mandates, you have the right to lodge a formal complaint with the primary data protection supervisory authority of South Africa:
The Information Regulator (South Africa)
JD House, 27 Stiemens Street, Braamfontein, Johannesburg, 2001
Email: [email protected]
10. Structural Security Measures
All database files, query registers, and system inputs are heavily encrypted in transit (using robust SSL/TLS algorithms) and at rest within isolated enterprise storage blocks. Access is strictly limited to authorized engineers under strict biometric and key-based protocols.
11. Protection of Children
Our solutions target commercial enterprise organizations. We do not gather or store details belonging to individuals under eighteen (18) years of age, matching the demographic threshold of South Africa.
12. Contact Guidelines
Direct inquiries, POPIA record requests, and compliance feedback directly to our Sandton team at [email protected].