Privacy Policy — PushALink

Effective date: October 27, 2025
Product: PushALink — a product of Adaptiveware (Pty) Ltd
(South African company reg. no. 2019 / 567504 / 07).

This Privacy Policy describes how Adaptiveware (Pty) Ltd ("we", "our", or "us") collects, uses, discloses, and protects personal information when you use PushALink ("Service"). It also explains your rights under the Protection of Personal Information Act (POPIA) and other applicable data protection laws.

1. Who we are

Adaptiveware (Pty) Ltd is a software company registered in the Republic of South Africa. PushALink is one of our products designed to help users send, forward, and manage notifications and link-based communications securely and efficiently.

2. Information we collect

We collect only the minimum personal information required to operate the Service effectively. The types of information we collect include:

  • Account information: Name, email address, and password (hashed and encrypted).
  • API credentials: API keys or tokens used to authenticate programmatic requests.
  • Usage data: Logs of requests (timestamps, IP address, status codes, endpoint accessed) to ensure proper operation and billing accuracy.
  • Billing data: Payment and transaction details processed through secure third-party payment providers.
  • Communications: When you contact support or report abuse, we may collect your message content and contact information.

3. How we use your information

We use your information for the following purposes:

  • To create and manage user accounts and API credentials.
  • To provide, operate, and maintain PushALink’s services and features.
  • To monitor system health, detect abuse, and prevent fraud or spam.
  • To bill and process payments for paid services.
  • To send essential operational emails such as billing notifications, API key alerts, or policy updates.
  • To comply with legal obligations or respond to lawful requests.

4. Legal basis for processing

Under POPIA and related international frameworks, we process your personal data on the following lawful bases:

  • Consent: When you voluntarily provide information (e.g., during sign-up or feedback).
  • Contractual necessity: When data is required to deliver or support the Service you requested.
  • Legal obligation: When processing is necessary to comply with laws, regulations, or court orders.
  • Legitimate interest: To maintain system integrity, security, and fraud prevention.

5. Data minimization and retention

We only retain personal data for as long as necessary to fulfill the purposes described above or as required by law. Typical retention periods include:

  • Account data — retained while your account remains active.
  • Transaction logs — retained for up to 12 months for auditing and abuse detection.
  • Billing and payment records — retained for up to 5 years in accordance with tax laws.

After these periods, data is securely deleted or anonymized.

6. Data sharing and disclosure

We do not sell or rent your personal data. We may share limited information with:

  • Service providers — such as cloud hosting, email delivery, analytics, or payment processors, bound by confidentiality agreements.
  • Law enforcement — where required by applicable law or in response to valid legal process.
  • Corporate transfers — if we merge, sell, or transfer assets, personal data may be transferred as part of that transaction, subject to continued protection obligations.

7. Cookies and analytics

PushALink uses minimal cookies and tracking technologies to provide essential functionality, such as session persistence and security. We may use aggregated, anonymized analytics to understand usage patterns but not to identify individual users.

8. International data transfers

While our primary servers are located in South Africa, we may process or store limited data in other jurisdictions where our service providers operate. We ensure appropriate safeguards and contractual clauses are in place to protect your data consistently with POPIA and GDPR standards.

9. Data security

We implement administrative, technical, and physical security measures to protect personal data, including encryption, access control, network monitoring, and regular security reviews. However, no system is fully immune from risk, and you acknowledge that you provide data at your own risk.

10. Your rights

Under POPIA and other applicable laws, you have the following rights regarding your personal data:

  • To access a copy of your personal data held by us.
  • To request correction or deletion of inaccurate or outdated information.
  • To object to or restrict processing under certain circumstances.
  • To withdraw consent at any time (where applicable).
  • To lodge a complaint with the Information Regulator (South Africa) if you believe your privacy rights have been infringed.

11. Children’s privacy

PushALink is not intended for use by persons under the age of 18. We do not knowingly collect personal information from minors. If we become aware that we have inadvertently collected such data, we will delete it promptly.

12. Abuse reporting and blacklisting

If you receive unwanted or abusive content via PushALink, you may report it using the in-app report function or by emailing us. We review and may block offending users or addresses to prevent repeated violations. Logs of abuse reports are retained for compliance and system integrity.

13. Changes to this policy

We may update this Privacy Policy periodically to reflect changes in technology, law, or our practices. When we do, we will revise the “Effective date” above. You are encouraged to review this policy regularly.

14. Contact us

For privacy-related questions, access requests, or complaints, please contact us: