Legal
Privacy Policy
Last updated: 10 July 2026
Asenati
Support: support@asenati.com
Legal: legal@asenati.com
Privacy / POPIA: privacy@asenati.com
1. Who we are
Nivram Innovations (“Asenati”, “we”, “us”) is the responsible party for personal information processed through the Asenati platform, subject to the Protection of Personal Information Act, 2013 (POPIA).
Information officer contact: Information Officer — privacy@asenati.com
2. Information we collect
- Account data: name, email, phone, password hash, role (client/lawyer/admin).
- Client profile: name, location, language preferences.
- Lawyer profile: display name, bio, LPC number, specialties, availability, verification documents, payout details (encrypted).
- Consultation data: intake descriptions, guided answers, messages, session metadata, reviews, disputes.
- Payment data: transaction references via PayFast (we do not store full card numbers).
- Technical data: IP address, browser, logs, cookies/session identifiers needed to secure the service.
3. Why we process information
We process personal information to:
- Provide and improve the marketplace (matching, chat, video, payments, payouts).
- Verify lawyers and prevent fraud or abuse.
- Communicate with you (notifications, support, legal notices).
- Comply with law and respond to valid requests from authorities.
- Resolve disputes and maintain audit records.
4. Legal bases (POPIA)
Processing is based on consent (signup, marketing where applicable), contract performance (delivering consultations you request), legitimate interests (security, analytics, fraud prevention), and legal obligation where required.
5. Sharing
We share consultation details with the lawyer matched to your request (and vice versa). We use service providers who process data on our instructions:
- PayFast — payment processing (South Africa).
- Render / hosting — application and database hosting.
We do not sell personal information. We may disclose information if required by law or to protect rights and safety.
6. Cross-border transfers
Some providers may process data outside South Africa. Where this occurs, we take reasonable steps consistent with POPIA, including contractual safeguards where appropriate.
7. Security and retention
We use encryption for sensitive fields (e.g. LPC and payout data), access controls, and industry-standard hosting practices. No system is 100% secure; report concerns to privacy@asenati.com.
We retain records as needed for operations, disputes, tax, and legal compliance—typically for several years after the last relevant activity unless a longer period is required by law.
8. Your rights
Under POPIA you may request access, correction, deletion (where applicable), objection to processing, or restriction. Contact privacy@asenati.com. You may lodge a complaint with the Information Regulator (South Africa).
9. Cookies and similar technologies
We use session cookies and similar technologies to keep you signed in and secure the platform. Essential cookies are required for the service to function.
10. Children
The service is not directed at persons under 18. We do not knowingly collect their personal information.
11. Changes
We may update this policy by posting a new version. Significant changes may be communicated by email or in-app notice.
This document is a product template. Have a South African attorney review it for POPIA compliance, PAIA manual requirements, and your actual subprocessors before production reliance.