Privacy Policy

1. Introduction

Oh8 Digital (Pty) Ltd ("we", "us", or "our") is committed to protecting your privacy and personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our field service management platform ("Service") in compliance with the Protection of Personal Information Act 4 of 2013 (POPIA) and other applicable South African laws.

By using our Service, you consent to the data practices described in this policy.

2. Information We Collect

2.1 Personal Information

We collect the following types of personal information:

• Account Information: Name, email address, phone number, company details
• Profile Information: Job title, department, user preferences
• Client Data: Customer contact details, service addresses, billing information
• Job Card Data: Service requests, work descriptions, time entries, photos
• Inventory Data: Product information, serial numbers, location data
• Financial Information: Billing addresses, payment methods (processed by third-party providers)

2.2 Technical Information

• IP addresses, browser type, device information
• Usage data, log files, cookies
• Location data (when using mobile features with consent)
• Performance and analytics data

3. How We Use Your Information

We process your personal information for the following lawful purposes under POPIA:

• Service Delivery: To provide field service management functionality
• Account Management: To create and maintain user accounts
• Communication: To send service updates, notifications, and support
• Billing: To process payments and manage subscriptions
• Compliance: To meet legal and regulatory requirements
• Improvement: To enhance our services and user experience
• Security: To protect against fraud and unauthorized access

4. Information Sharing and Disclosure

We do not sell your personal information. We may share information in the following circumstances:

• Service Providers: With trusted third-party providers who assist in service delivery
• Legal Requirements: When required by law or to protect our rights
• Business Transfers: In connection with mergers, acquisitions, or asset sales
• Consent: With your explicit consent for specific purposes

5. Data Security

We implement appropriate technical and organizational measures to protect your personal information:

• Encryption of data in transit and at rest
• Regular security assessments and updates
• Access controls and authentication measures
• Employee training on data protection
• Incident response procedures

6. Data Retention

We retain personal information for as long as necessary to fulfill the purposes outlined in this policy, comply with legal obligations, resolve disputes, and enforce agreements. Specific retention periods include:

• Account Data: Until account deletion plus 7 years for legal compliance
• Job Cards: 7 years from completion for business and tax purposes
• Financial Records: 5 years as required by South African law
• Marketing Data: Until consent is withdrawn

7. Your Rights Under POPIA

As a data subject, you have the following rights:

• Access: Request access to your personal information
• Correction: Request correction of inaccurate information
• Deletion: Request deletion of your personal information
• Objection: Object to processing for direct marketing
• Restriction: Request restriction of processing
• Portability: Request transfer of your data
• Complaint: Lodge a complaint with the Information Regulator

To exercise these rights, contact us at info@crooh.co.za

8. Cookies and Tracking

We use cookies and similar technologies to enhance your experience. You can control cookie preferences through your browser settings. Essential cookies are necessary for service functionality.

9. Third-Party Services

Our platform integrates with third-party services that have their own privacy policies:

• Payment Processors: For secure payment processing
• Cloud Providers: For data hosting and storage
• Analytics Services: For service improvement
• Communication Tools: For notifications and support

10. International Transfers

Your information may be transferred to and processed in countries outside South Africa. We ensure appropriate safeguards are in place to protect your information in accordance with POPIA requirements.

11. Children's Privacy

Our Service is not intended for children under 18. We do not knowingly collect personal information from children under 18. If we become aware of such collection, we will delete the information immediately.

12. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of material changes via email or through our Service. Your continued use constitutes acceptance of the updated policy.

13. Contact Information