Privacy Policy

1. Information We Collect

We collect the following personal information when you use ApzSign:

• Account data: name, email address, and password hash when you register.
• Payment data: transaction references, amounts, and billing status processed via PayFast. We do not store your credit card or bank details directly.
• Document data: documents you upload, signing requests, and audit trail records created during the signing process.
• Usage data: pages visited, features used, and technical information (IP address, browser type, device) to improve the Service.

2. How We Use Your Information

We use your personal information to:

• Provide, maintain, and improve the Service.
• Process payments and manage your subscription.
• Send transactional communications (payment confirmations, signing notifications).
• Enforce our Terms of Use and protect against fraud.
• Comply with legal obligations.

We do not sell your personal information to third parties.

3. Data Sharing

We may share your information with:

• Payment processors: PayFast processes payments on our behalf.
• Infrastructure providers: cloud hosting and database services that store and process data under our instructions.
• Legal authorities: when required by law, regulation, or valid legal process.
• Signing counterparties: names and email addresses are shared with other parties to a document you send for signature.

4. Data Security

We use industry-standard measures to protect your data, including TLS encryption in transit, encrypted storage at rest, and access controls. However, no method of electronic transmission or storage is 100% secure, and we cannot guarantee absolute security.

5. Data Retention

We retain your account data and documents while your account is active. When you cancel a paid subscription, your plan remains active until the end of the current billing period. After that date your account reverts to the Free tier.

Once your paid plan expires, data is retained for 30 days before permanent deletion. You are responsible for exporting your documents before your plan expires. You may request earlier deletion by contacting us. Payment transaction records may be retained longer as required by financial regulations.

6. Your Rights (POPIA Compliance)

Under the Protection of Personal Information Act (POPIA) of South Africa, you have the right to:

• Access the personal information we hold about you.
• Request correction of inaccurate information.
• Request deletion of your information (subject to legal retention requirements).
• Object to the processing of your information.
• Lodge a complaint with the Information Regulator.

To exercise these rights, contact privacy@apzsign.com.

7. Cookies

ApzSign uses session storage (not persistent cookies) for authentication. We do not use third-party tracking cookies. Essential technical cookies may be set by our infrastructure providers.

8. Children

ApzSign is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children.

9. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via email or a notice on the Service. Continued use after changes constitutes acceptance of the revised policy.

10. Contact

For privacy inquiries, contact our Information Officer at privacy@apzsign.com.