POPIA · How we handle personal information

Privacy Policy

1. Who we are

PlantLynk (“we”, “us”) is operated by PlantLynk (Pty) Ltd, registration number 2026/533874/07, of [registered address]. We are the responsible party for the personal information described here.

Our Information Officer is James Engelbrecht, contactable at info@plantlynk.co.za for any privacy question, access request or complaint. (Our Information Officer is registered with the Information Regulator of South Africa.)

2. What we collect

3. Why we use it (lawful basis)

We process personal information to: send hire requests to nearby member companies and return their quotes to you; create and manage quotes, bookings and reviews; vet member companies; prevent fraud and abuse; manage memberships; and communicate with you about the service. Our basis is your consent and the performance of our agreement with you, and our legitimate interest in operating a safe marketplace.

4. Sharing — how a request travels

When you post a hire request, its details (machine type, site area, dates, your first name) are sent to nearby vetted member companies so they can quote — that is the purpose of the service, and you consent to it when you post. Your phone number is shared only with the company whose quote you accept. Likewise, a company's contact details are shared with the hirer when its quote is accepted. Until acceptance, contact details stay with us.

Notifications and chat run on the WhatsApp Business Platform, so messages you exchange with our WhatsApp number are processed by Meta as a service provider under its own terms. We also use trusted processors for hosting, database and email, bound to protect your information. We do not sell your personal information, and contact details are never published publicly on the site.

5. Direct marketing

We only send marketing messages (email/SMS/WhatsApp) if you have opted in, and every message lets you opt out. Service messages (e.g. a booking confirmation) are not marketing.

6. Security & retention

We protect personal information with appropriate technical and organisational measures (encrypted connections, access controls, rate-limiting). Verification documents are stored privately and accessible only to authorised staff. We keep information only as long as needed for the purposes above or as the law requires, then delete it. If a breach affecting your information occurs, we will notify you and the Information Regulator as POPIA requires.

7. Your rights

Under POPIA you may ask us to confirm what we hold, correct or delete it, object to processing, or withdraw consent — contact our Information Officer above. You may also complain to the Information Regulator of South Africa (inforeg@inforegulator.org.za).

8. Cookies & local storage

We use your browser’s local storage only for essential functions (e.g. remembering your details so you don’t re-type them, and keeping you signed in to your dashboard). We do not currently use advertising or analytics cookies. If that changes we will ask for your consent first.

9. Changes

We may update this policy; the “last updated” date shows when. Material changes will be communicated where appropriate.