Privacy Policy & POPIA Compliance

Last updated: 30.01.2026

MicroRoots (“we”, “us”, “our”) respects your privacy and is committed to protecting your personal information in accordance with the Protection of Personal Information Act, 4 of 2013 (POPIA).

This Privacy Policy explains how we collect, use, store, and protect your personal information.

 

1. Personal Information We Collect

We may collect and process the following information:

Retail Customers

  • Name and surname

  • Email address

  • Phone number

  • Delivery address

  • Order and payment information

Restaurant / Trade Customers

  • Business name

  • Contact person’s name

  • Email address and phone number

  • Delivery address

  • Order history and standing order details

We only collect information that is necessary to fulfil orders, manage relationships, and communicate with you.

 

2. How We Collect Information

Personal information is collected when you:

  • Place an order (online, WhatsApp, or email)

  • Sign up for a standing order

  • Contact us for enquiries or support

  • Subscribe to updates or communication from MicroRoots

 

3. Purpose of Collection

Your personal information is used for:

  • Processing and delivering orders

  • Managing standing orders and trade relationships

  • Customer communication and support

  • Invoicing and record-keeping

  • Legal and regulatory compliance

We do not sell or trade your personal information to third parties.

 

4. Lawful Processing (POPIA Compliance)

We process personal information based on:

  • Consent (when you place an order or contact us)

  • Contractual necessity (to fulfil orders and agreements)

  • Legal obligations (accounting, tax, and compliance)

 

5. Information Sharing

We may share limited personal information only with:

  • Delivery or courier service providers (for order fulfilment)

  • Payment service providers (for transaction processing)

  • Accounting or legal service providers (where legally required)

All third parties are required to handle your information responsibly.

 

6. Data Security

We take reasonable technical and organizational measures to protect your information against:

  • Loss

  • Unauthorized access

  • Misuse or disclosure

Access to personal data is limited to authorized persons only.

 

7. Data Retention

We retain personal information:

  • Only for as long as necessary to fulfil its purpose

  • In accordance with legal and accounting requirements

Once no longer required, information is securely deleted or anonymized.

 

8. Your Rights Under POPIA

You have the right to:

  • Request access to your personal information

  • Request correction or deletion of your information

  • Object to the processing of your personal data

  • Withdraw consent (where applicable)

Requests can be made by contacting us directly.

 

9. Direct Marketing

MicroRoots may occasionally send product updates or service information.

  • You may opt out at any time

  • We will not send unsolicited marketing without consent

 

10. Cookies & Website Usage

If you visit our website:

  • Basic cookies may be used for functionality and analytics

  • No cookies are used to collect sensitive personal information without consent

 

11. Children’s Information

MicroRoots does not knowingly collect personal information from children under the age of 18.

 

12. Changes to This Policy

We may update this Privacy Policy from time to time.
The latest version will always be available on our website.

 

13. Contact Information

If you have questions, requests, or concerns regarding this Privacy Policy or POPIA compliance, please contact us:

Email: gideon@microroots.co.za
Phone: 082 377 6698