Back to Home

POPIA Compliance

Last updated: 29 March 2026

Our Commitment

VisioCorp (Pty) Ltd is fully committed to compliance with the Protection of Personal Information Act, 2013 (POPIA). We process personal information lawfully, minimally, and transparently in the course of delivering our AI-powered lead generation service to motor dealerships across South Africa.

Lawful Basis for Processing

  • Legitimate interest: We detect publicly available buying intent signals (job changes, business registrations, social media posts) to match potential car buyers with dealerships.
  • Consent: When we engage individuals via WhatsApp or SMS, we obtain opt-in consent before continuing communication.
  • Contractual necessity: Dealer data is processed to fulfil our subscription agreement.

Data Minimisation

We collect only the data necessary for lead qualification: name, phone number, area, vehicle interest, budget range, and the specific buying signal detected. We do not collect ID numbers, financial account details, or sensitive personal information as defined by POPIA.

Data Subject Rights

Under POPIA, data subjects have the right to:

  • Be notified that their personal information is being collected.
  • Request access to their personal information held by us.
  • Request correction or deletion of their personal information.
  • Object to the processing of their personal information.
  • Lodge a complaint with the Information Regulator.

Opt-Out Mechanism

Any individual can opt out of our lead database by replying "STOP" to any WhatsApp or SMS message, or by emailing optout@visiocorp.co. We process opt-out requests within 48 hours.

Security Measures

  • AES-256 encryption at rest for all personal data.
  • TLS 1.3 encryption for all data in transit.
  • Role-based access control for dealer and staff accounts.
  • Regular security audits and penetration testing.
  • SOC 2 compliant infrastructure hosting.

Cross-Border Transfers

Our primary data hosting is within the EU (Supabase, eu-west-1). Where data is processed outside South Africa, we ensure the receiving jurisdiction provides adequate protection as required by Section 72 of POPIA.

Information Officer

Our designated Information Officer can be reached at privacy@visiocorp.co for any POPIA-related enquiries or requests.

Information Regulator

Complaints may be lodged with the Information Regulator of South Africa at inforegulator.org.za.