Data Protection

Last updated: January 15, 2025

1. Overview

TeksiMap is committed to protecting your personal data and complying with applicable data protection laws, including the Protection of Personal Information Act (POPIA) in South Africa and other relevant international data protection regulations.

This Data Protection Policy outlines our commitment to safeguarding your personal information and explains how we ensure compliance with data protection principles.

2. Data Protection Principles

We adhere to the following fundamental data protection principles:

  • Lawfulness, Fairness, and Transparency: We process personal data lawfully, fairly, and transparently
  • Purpose Limitation: We collect data for specified, explicit, and legitimate purposes
  • Data Minimization: We collect only the data that is necessary for our purposes
  • Accuracy: We ensure that personal data is accurate and kept up to date
  • Storage Limitation: We retain personal data only for as long as necessary
  • Integrity and Confidentiality: We implement appropriate security measures
  • Accountability: We take responsibility for compliance with these principles

3. Categories of Personal Data We Process

3.1 Identity and Contact Data

  • Name, email address, phone number
  • Account credentials and profile information
  • Communication preferences

3.2 Location and Navigation Data

  • GPS coordinates and location information
  • Route planning and navigation history
  • Start and destination points
  • Location-based preferences

3.3 Usage and Technical Data

  • App usage patterns and interactions
  • Device information and technical specifications
  • IP address and network information
  • Performance and error logs

3.4 User-Generated Content

  • Route contributions and feedback
  • Reviews and ratings
  • Support requests and communications

4. Legal Basis for Processing

We process your personal data based on the following legal grounds:

  • Consent: When you have given clear consent for specific processing activities
  • Contract Performance: To provide our services and fulfill our contractual obligations
  • Legitimate Interests: To improve our services, ensure security, and prevent fraud
  • Legal Obligations: To comply with applicable laws and regulations
  • Vital Interests: To protect your safety or the safety of others

5. Data Processing Activities

5.1 Service Provision

We process your data to provide route planning, navigation, and transportation information services, including location-based features and personalized recommendations.

5.2 User Support and Communication

We process your data to respond to your inquiries, provide customer support, and send important service updates and notifications.

5.3 Service Improvement

We analyze usage patterns and user feedback to improve our services, develop new features, and enhance user experience.

5.4 Security and Fraud Prevention

We process data to ensure the security of our platform, prevent fraud, and protect against unauthorized access.

5.5 Legal Compliance

We process data to comply with applicable laws, regulations, and legal processes.

6. Data Security Measures

We implement comprehensive security measures to protect your personal data:

  • Encryption: Data is encrypted in transit and at rest using industry-standard protocols
  • Access Controls: Strict access controls and authentication mechanisms
  • Regular Audits: Regular security assessments and vulnerability testing
  • Employee Training: Comprehensive data protection training for all staff
  • Incident Response: Established procedures for handling data breaches
  • Backup and Recovery: Secure backup systems and disaster recovery plans
  • Physical Security: Secure data centers and office facilities

7. Data Retention and Deletion

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected:

  • Account Data: Retained while your account is active and for a reasonable period after deactivation
  • Location Data: Typically retained for up to 12 months for service improvement
  • Usage Analytics: Retained for up to 24 months for service optimization
  • Legal Records: Retained as required by applicable laws and regulations
  • Support Communications: Retained for up to 36 months for quality assurance

You may request deletion of your data at any time, subject to legal and contractual obligations.

8. Your Data Protection Rights

You have the following rights regarding your personal data:

  • Right of Access: Request a copy of your personal data and information about how it is processed
  • Right of Rectification: Request correction of inaccurate or incomplete data
  • Right of Erasure: Request deletion of your personal data in certain circumstances
  • Right to Restrict Processing: Request limitation of data processing in specific situations
  • Right to Data Portability: Request a copy of your data in a structured, machine-readable format
  • Right to Object: Object to processing based on legitimate interests
  • Right to Withdraw Consent: Withdraw consent where processing is based on consent
  • Right to Lodge a Complaint: File a complaint with the Information Regulator

To exercise these rights, please contact us using the information provided below.

9. Data Sharing and Transfers

We may share your data with the following categories of recipients:

  • Service Providers: Trusted third-party providers who assist in operating our platform
  • Legal Authorities: When required by law or to protect our rights and safety
  • Business Partners: With your consent for specific purposes
  • Analytics Providers: For service improvement and analytics (anonymized where possible)

We ensure that all data transfers comply with applicable data protection laws and implement appropriate safeguards.

10. International Data Transfers

Your data may be transferred to and processed in countries outside South Africa. We ensure that such transfers are lawful and secure by:

  • Implementing appropriate safeguards and security measures
  • Ensuring recipient countries provide adequate data protection
  • Using standard contractual clauses where necessary
  • Obtaining your explicit consent when required

11. Data Breach Response

In the event of a data breach, we have established procedures to:

  • Immediately assess and contain the breach
  • Notify relevant authorities within required timeframes
  • Inform affected individuals where necessary
  • Take corrective actions to prevent future breaches
  • Document and review the incident for lessons learned

12. Data Protection Officer

We have designated a Data Protection Officer (DPO) who is responsible for overseeing our data protection compliance and can be contacted for any data protection-related inquiries.

13. Updates to This Policy

We may update this Data Protection Policy from time to time to reflect changes in our practices, legal requirements, or for other operational reasons. We will notify you of any material changes and update the "Last updated" date accordingly.

14. Contact Information

For any questions about data protection or to exercise your rights, please contact us at:

Email: dataprotection@teksimap.co.za

Address: 88 Marshall Street, Johannesburg CBD, 2001

Phone: +27 71 234 5678