Legal

Privacy
Policy

How FutureFy collects, uses, and protects your personal information.

Effective date: 23 March 2026

1. Introduction

FutureFy (Pty) Ltd ("FutureFy", "we", "us", or "our") operates the website futurefy.com and provides professional website design, development, hosting, and related digital services for South African businesses.

This Privacy Policy explains how we collect, use, store, share, and protect personal information when you:

  • Visit our website
  • Request a free preview or enquire about our services
  • Engage us to design, build, or host a website
  • Pay for our services

We are committed to protecting your privacy and complying with the Protection of Personal Information Act, 2013 ("POPIA"), the Electronic Communications and Transactions Act, 2002 ("ECTA"), and all other applicable South African legislation.

2. Responsible Party

For the purposes of POPIA, the responsible party for processing your personal information is:

Our designated Information Officer can be reached at hello@futurefy.com.

3. Information We Collect

The provision of personal information is voluntary, but failure to provide certain information may mean that we cannot deliver the requested service. We collect the following categories of personal information:

3.1 Prospective and current clients

When you request a free preview, submit an enquiry, or engage our services, we may collect:

  • Contact information: your name, email address, phone number, and business name
  • Business details: industry, services offered, existing website URL, branding assets (logos, images, copy), and any other information you provide for the purpose of designing your website
  • Payment information: billing details necessary to process payments (we do not store full credit card numbers; payment processing is handled by third-party payment processors)
  • Communications: email correspondence, form submissions, and any other messages exchanged between you and FutureFy

3.2 Website visitors

  • Device and usage data: IP address, browser type, operating system, pages visited, referral source, and time spent on pages
  • Cookies: we use essential cookies to operate the website and analytics cookies (Google Analytics) to understand how visitors use it. You may control cookie preferences through your browser settings

3.3 Sensitive information

We do not knowingly collect special personal information as defined in POPIA Section 26 (such as religious beliefs, race, health, or biometric data). Please do not include sensitive personal information in your enquiries or content submissions unless strictly necessary.

4. How We Use Your Information

4.1 To provide our services

  • Designing, developing, and delivering your website
  • Generating free previews and drafts
  • Registering and managing domain names on your behalf
  • Hosting your website and providing ongoing maintenance
  • Communicating with you about project progress, revisions, and deliverables

4.2 To process payments

  • Processing transactions and issuing invoices
  • Managing refund requests in accordance with our Terms & Conditions

4.3 To improve and secure our services

  • Analysing aggregated website usage patterns to improve our site and services
  • Detecting and preventing fraud, abuse, or security threats
  • Meeting our legal and regulatory obligations

4.4 To send communications

  • Sending you project-related updates and notifications
  • With your consent, sending occasional marketing communications about our services. You may opt out at any time by clicking "unsubscribe" in any email or emailing hello@futurefy.com

We do not sell, rent, license, or trade your personal information. We do not use your information for targeted advertising or to build consumer profiles.

5. Legal Basis for Processing

Under POPIA, we process personal information only where at least one of the following conditions applies:

  • Consent: you have given your voluntary, specific, and informed consent
  • Contract: processing is necessary to perform our obligations under a contract with you, or to take steps at your request before entering into a contract (e.g., generating a free preview)
  • Legal obligation: processing is necessary for us to comply with a legal duty
  • Legitimate interest: processing is necessary for a legitimate interest we pursue, provided it does not prejudice your rights—for example, improving our website and preventing fraud

6. How We Share Your Information

We may share personal information only in the following circumstances:

  • Service providers: we use trusted third-party providers to help operate our business, including cloud hosting providers (e.g., AWS), domain registrars, payment processors, email services, and analytics tools. These providers are contractually bound to process your data only on our instructions and to maintain appropriate security measures
  • Domain registration: when we register a domain name on your behalf, certain contact information may be shared with the domain registrar as required by ICANN policies. We use privacy/proxy services where available
  • For legal reasons: where required by law, regulation, court order, or governmental request, or where necessary to protect our rights, property, or safety, or that of our users or the public

7. Data Retention

We retain personal information only for as long as necessary to fulfil the purposes for which it was collected, or as required by law:

  • Client project data: retained for the duration of our business relationship and for a reasonable period thereafter for support, legal, and accounting purposes
  • Free preview data: if you do not proceed with our services, we retain your information for up to 12 months before securely deleting it
  • Website analytics: retained in accordance with our analytics provider's standard retention periods
  • Financial records: retained as required by the South African Income Tax Act and other applicable legislation

When personal information is no longer required, it is securely deleted or de-identified.

8. Data Security

We implement appropriate technical and organisational measures to protect your personal information against unauthorised access, loss, destruction, or alteration, as required by POPIA Section 19. These measures include:

  • Encryption of data in transit (TLS/SSL)
  • Secure cloud hosting with reputable providers
  • Access controls limiting access to personal information on a need-to-know basis
  • Regular review of our security practices

No method of electronic transmission or storage is completely secure. While we strive to protect your personal information, we cannot guarantee absolute security.

9. Your Rights Under POPIA

As a data subject under POPIA, you have the following rights:

  • Right to access: request confirmation of whether we hold personal information about you and request a copy (Section 23)
  • Right to correction: request correction or deletion of inaccurate, irrelevant, or outdated personal information (Section 24)
  • Right to deletion: request destruction or deletion of personal information we are no longer authorised to retain (Section 24)
  • Right to object: object to the processing of your personal information on reasonable grounds (Section 11(3))
  • Right to withdraw consent: withdraw consent at any time; withdrawal does not affect prior lawful processing
  • Right not to be subject to direct marketing: object to receiving marketing communications (Section 69)
  • Right to submit a complaint: lodge a complaint with the Information Regulator

To exercise any of these rights, email us at hello@futurefy.com. We will verify your identity and respond within 30 days.

10. Cross-Border Data Transfers

Some of our service providers (including cloud hosting and analytics providers) may process personal information outside of South Africa. Where this occurs, we ensure adequate safeguards are in place in accordance with POPIA Section 72, including written agreements requiring the recipient to uphold protections substantially similar to those in POPIA.

11. Children's Privacy

Our services are directed at businesses and are not intended for children under the age of 18. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us at hello@futurefy.com and we will take steps to delete it.

12. Security Compromise Notification

In the event of a security compromise that affects your personal information, we will notify the Information Regulator and, where there are reasonable grounds to believe you may be affected, notify you as soon as reasonably possible, in accordance with POPIA Section 22.

13. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will update the effective date at the top of this page. Continued use of our services after changes are posted constitutes your acceptance of the updated policy.

14. Contact Us

If you have questions or requests regarding this Privacy Policy, please contact us:

You also have the right to lodge a complaint with the Information Regulator (South Africa):