Privacy Policy

1. Introduction

Romyn Corp (Pty) Ltd trading as Adebt ("Adebt", "we", "us", or "our") is committed to protecting your personal information and respecting your privacy.

This Privacy Policy explains how we collect, use, disclose, and safeguard your information in compliance with the Protection of Personal Information Act 4 of 2013 (POPIA) and other applicable data protection laws in South Africa.

2. Information We Collect

We collect the following categories of personal information:

Account Information

• Full name and contact details (email, phone number, address)
• Business/organization name and registration details
• Banking information for payment purposes
• Login credentials (password stored in encrypted form)

Debt Information

• Debtor names, contact information, and identification numbers
• Invoice and contract details
• Payment history and outstanding amounts
• Communication records between you and the debtor

Usage Data

• IP address and device information
• Browser type and operating system
• Pages visited and actions taken on our platform
• Date and time of access

3. How We Use Your Information

We use your personal information for the following purposes:

• Service Delivery: To provide our debt collection services, including distributing debts to collectors and processing payments
• Account Management: To create, maintain, and secure your account
• Communication: To send service updates, collection progress reports, and respond to inquiries
• Legal Compliance: To comply with legal obligations and regulatory requirements
• Improvement: To analyze usage patterns and improve our services
• Security: To detect and prevent fraud, abuse, and security incidents

4. Third-Party Sharing

We may share your information with the following third parties:

• Debt Collectors: Registered professionals in our network who perform collection activities (all registered with the Council for Debt Collectors SA)
• Credit Bureaus: For skip-tracing and debtor verification purposes
• Legal Service Providers: Attorneys and legal professionals when legal action is required
• Payment Processors: For secure processing of financial transactions
• Regulatory Bodies: When required by law or legal process

We do not sell your personal information to third parties.

5. Data Retention

We retain your personal information for as long as necessary to:

• Provide our services and maintain your account
• Comply with legal and regulatory requirements (minimum 5 years for financial records)
• Resolve disputes and enforce our agreements

When your data is no longer required, we will securely delete or anonymize it.

6. Your Rights Under POPIA

Under POPIA, you have the following rights regarding your personal information:

• Right to Access: Request confirmation of whether we hold your personal information and access to that information
• Right to Correction: Request correction or deletion of inaccurate, irrelevant, or outdated personal information
• Right to Deletion: Request deletion of your personal information where there is no lawful reason for us to retain it
• Right to Object: Object to the processing of your personal information for direct marketing purposes
• Right to Complain: Lodge a complaint with the Information Regulator if you believe your rights have been violated

To exercise any of these rights, please contact our Information Officer using the details below.

7. Cookies and Tracking

We use the following types of cookies:

• Essential Cookies: Required for the platform to function properly (authentication, security)
• Analytics Cookies: Help us understand how users interact with our platform to improve our services

You can control cookie preferences through your browser settings. Note that disabling essential cookies may affect platform functionality.

8. Security Measures

We implement appropriate technical and organizational measures to protect your personal information:

• Encryption of data in transit and at rest
• Secure authentication and access controls
• Regular security assessments and monitoring
• Employee training on data protection
• Incident response procedures

While we strive to protect your information, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.

9. Cross-Border Transfers

Your personal information is primarily processed and stored in South Africa. If we need to transfer your information to a country outside South Africa, we will ensure compliance with POPIA Chapter 9 requirements, including ensuring the recipient country has adequate data protection laws or implementing appropriate safeguards.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on our platform and updating the "Last Updated" date. We encourage you to review this policy periodically.