1.1. This Privacy Policy explains how B-TheOne Marketing (Pty) Ltd ("B-TheOne", "we", "us", or "our") collects, uses, stores, shares, and protects personal information when you visit our website at www.btheone.co.za or interact with us through our online forms, email, WhatsApp, or other digital channels.
1.2. We are committed to protecting your personal information in compliance with the Protection of Personal Information Act, 2013 (Act 4 of 2013) ("POPIA"), the Electronic Communications and Transactions Act, 2002 (Act 25 of 2002) ("ECTA"), and all other applicable South African legislation.
1.3. By using our website or submitting your personal information to us, you acknowledge that you have read and understood this Privacy Policy.
2.1. The responsible party for the processing of your personal information, as defined in POPIA section 1, is:
Registered Name: B-THEONE MARKETING (PTY) LTD
Registration Number: 2026/157477/07
Email Address: info@btheone.co.za
2.2. Our appointed Information Officer is Olwethu Mbanjwa, contactable at info@btheone.co.za.
3.1. When you interact with our website or services, we may collect the following categories of personal information:
3.2. We collect this information through the following means:
4.1. We process your personal information for the following purposes, in accordance with POPIA section 13:
4.1.1. To respond to your enquiry or request for information about our services.
4.1.2. To send you direct marketing communications, including emails and WhatsApp messages about our services, offers, resources, and industry insights. This will only occur where you have provided your specific and voluntary consent, as required by POPIA section 69.
4.1.3. To improve our website, content, and user experience based on aggregated and anonymised usage data.
4.1.4. To comply with any legal obligation to which B-TheOne is subject.
4.1.5. To protect our legitimate interests, including the security and integrity of our website and systems.
5.1. We process your personal information on one or more of the following grounds, as set out in POPIA sections 9 to 12:
5.1.1. Consent (section 11): Where you have voluntarily provided your personal information and given your explicit consent, such as by completing a form on our website and ticking the consent checkbox.
5.1.2. Legitimate interest (section 11(1)(f)): Where processing is necessary for our legitimate business interests, provided that your rights and interests do not override those interests.
5.1.3. Legal obligation (section 11(1)(c)): Where we are required by law to process or retain certain information.
6.1. In terms of POPIA section 69, we will only send you direct marketing communications by electronic means if you have given us your specific, voluntary, and informed consent to do so.
6.2. You may withdraw your consent to receive direct marketing at any time by:
6.3. We will process your opt-out request within a reasonable time and no later than 5 (five) business days.
7.1. We do not sell your personal information to any third party.
7.2. We may share your personal information with the following categories of third-party service providers, solely for the purposes described in this policy:
| Service Provider | Purpose | Location of Servers |
|---|---|---|
| Google Workspace (Gmail, Drive, Sheets) | Communication, file storage, and data management | International (United States) |
| Tally | Form submissions and data collection | International (European Union) |
| n8n | Workflow automation and data processing | International (varies by hosting) |
| Google Analytics | Website analytics and usage tracking | International (United States) |
7.3. Where personal information is transferred to service providers located outside of the Republic of South Africa, we take reasonable steps to ensure that those providers offer an adequate level of protection for your personal information, as contemplated in POPIA section 72. This may include reliance on the provider's compliance with equivalent data protection legislation, contractual obligations, or binding corporate rules.
7.4. We may also disclose your personal information where required by law, regulation, legal process, or enforceable government request.
8.1. Our website uses cookies and similar tracking technologies to collect information about how visitors use the site. A cookie is a small text file that is placed on your device when you visit a website.
8.2. We use the following categories of cookies:
8.2.1. Strictly necessary cookies: These are required for the website to function and cannot be disabled.
8.2.2. Analytics cookies (Google Analytics): These help us understand how visitors interact with the website by collecting anonymous usage data, including pages visited, session duration, and traffic sources. These cookies are placed by Google and are subject to Google's Privacy Policy.
8.3. You can manage or disable cookies through your browser settings. Please note that disabling certain cookies may affect the functionality of the website.
9.1. In accordance with POPIA section 14, we retain personal information only for as long as is necessary to fulfil the purpose for which it was collected or as required by law.
9.2. Our retention periods are as follows:
9.2.1. Leads who do not become paying clients: Personal information will be retained for a maximum of 36 months from the date of your last interaction with us. After this period, your information will be securely deleted or anonymised.
9.2.2. Paying clients: Personal information will be retained for the duration of the client relationship and for a period of 5 (five) years thereafter, in accordance with the requirements of the Companies Act, 2008 (Act 71 of 2008) and applicable tax legislation.
9.2.3. Direct marketing contacts: If you have consented to receive marketing communications, we will retain your contact details until you withdraw your consent. Upon withdrawal, we will cease all direct marketing and delete your information in accordance with clause 9.2.1, unless you are also a paying client.
9.3. You may request the deletion of your personal information at any time by contacting us at info@btheone.co.za. We will process such requests in accordance with POPIA section 24.
10.1. In accordance with POPIA section 19, we take reasonable technical and organisational measures to safeguard your personal information against loss, unauthorised access, interference, modification, or disclosure.
10.2. These measures include:
10.3. Despite these measures, no method of transmission over the internet or electronic storage is completely secure. We cannot guarantee absolute security, but we are committed to taking all reasonable steps to protect your information.
11.1. Under POPIA, you have the following rights regarding your personal information:
11.1.1. Right to access (section 23): You may request confirmation of whether we hold personal information about you, and request access to that information.
11.1.2. Right to correction (section 24): You may request that we correct or update any inaccurate, incomplete, or outdated personal information we hold about you.
11.1.3. Right to deletion (section 24): You may request that we delete your personal information where it is no longer necessary for the purpose for which it was collected, or where you withdraw your consent.
11.1.4. Right to object (section 11(3)): You may object to the processing of your personal information on reasonable grounds, unless legislation permits such processing.
11.1.5. Right to object to direct marketing (section 69(3)): You may object to receiving any direct marketing communication from us at any time.
11.2. To exercise any of the above rights, please contact our Information Officer at info@btheone.co.za. We will respond to your request within a reasonable time, and in any event within 30 (thirty) days.
11.3. If we are unable to fulfil your request, we will provide you with written reasons.
12.1. Our website and services are not directed at children under the age of 18. We do not knowingly collect personal information from children.
12.2. If we become aware that we have collected personal information from a child without the consent of a competent person as required by POPIA section 35, we will take reasonable steps to delete that information.
13.1. As indicated in clause 7, some of the third-party service providers we use are located outside the Republic of South Africa. By providing your personal information to us, you acknowledge that your information may be transferred to, stored, and processed in jurisdictions outside of South Africa.
13.2. In terms of POPIA section 72, we will only transfer personal information to a third party in another country if that country has adequate data protection legislation, the recipient is bound by contractual obligations or binding corporate rules that provide adequate protection, or you have consented to the transfer.
14.1. In the event of a security compromise that results in the unauthorised access to, or acquisition of, your personal information, and where there are reasonable grounds to believe that the compromise may cause harm, we will notify the Information Regulator and affected data subjects as required by POPIA section 22.
15.1. If you believe that we have processed your personal information in a manner that is not consistent with POPIA, you may:
15.1.1. Contact our Information Officer at info@btheone.co.za to resolve the matter directly.
15.1.2. Lodge a complaint with the Information Regulator:
Website: www.justice.gov.za/inforeg
Email: complaints.IR@justice.gov.za
16.1. We may update this Privacy Policy from time to time to reflect changes in our practices, our service providers, or applicable legislation.
16.2. Any material changes will be posted on this page with an updated "Last Updated" date. We encourage you to review this policy periodically.
16.3. Your continued use of the website after any changes to this Privacy Policy constitutes your acceptance of the updated policy.
17.1. For any questions, concerns, or requests relating to this Privacy Policy or your personal information, please contact:
Information Officer: Olwethu Mbanjwa
Email: info@btheone.co.za