Privacy Policy

At solyrianvetho, we understand that your financial information represents far more than just data points—it's your trust, your future plans, and your peace of mind all rolled into one. This isn't your typical privacy policy filled with legal jargon that nobody actually reads. Instead, we've written this in plain English because transparency shouldn't require a law degree to understand.

Information We Collect and Why

When you engage with our financial services, we collect information that falls into several categories. Your personal identification details—name, address, phone number, and email—help us verify your identity and comply with South African financial regulations. We're required by law to know who we're serving, especially when handling financial transactions.

Financial information forms another crucial category. This includes your banking details, transaction history, income verification documents, and credit information when relevant. We gather this data to assess your financial needs, provide appropriate services, and ensure we're meeting our regulatory obligations under South African financial law.

How We Protect Your Information

Security isn't just a buzzword for us—it's the foundation everything else builds upon. We employ bank-grade encryption protocols that scramble your data during transmission and storage. Our servers are housed in secure facilities with multiple layers of physical and digital protection.

Access to your information is strictly controlled through role-based permissions. Only employees who need specific information to serve you can access it, and every access attempt gets logged and monitored. We conduct regular security audits and penetration testing to identify potential vulnerabilities before they become problems.

Information Sharing and Third Parties

We don't sell your personal information to marketing companies or data brokers—period. However, running a legitimate financial services business does require sharing certain information with specific parties under controlled circumstances.

Regulatory bodies like the South African Reserve Bank and Financial Intelligence Centre may require access to transaction records as part of their oversight responsibilities. We also work with trusted service providers—payment processors, identity verification services, and cloud storage providers—who help us deliver services to you. These partners operate under strict contractual obligations to protect your information.

In cases involving suspected fraud, money laundering, or other financial crimes, we may need to share relevant information with law enforcement agencies. This isn't something we take lightly, but it's both a legal requirement and an ethical responsibility.

Your Rights and Control Options

South African privacy laws, including the Protection of Personal Information Act (POPIA), grant you specific rights over your personal information. You can request copies of the information we hold about you, ask us to correct inaccuracies, or request deletion of data that's no longer necessary for our business relationship.

You also have the right to object to certain types of processing or request that we restrict how we use your information. While financial regulations limit some of these rights—we can't delete transaction records that banks are required to maintain, for instance—we'll always explain what's possible and why certain limitations exist.

Data Retention and Deletion

We don't keep your information forever. Different types of data have different retention schedules based on legal requirements, business needs, and the nature of our relationship. Transaction records must be kept for seven years under South African banking law, while marketing communications might only be stored for two years.

When retention periods expire, we securely delete or anonymize your information using industry-standard methods. This process isn't instantaneous—our systems conduct scheduled purges monthly to ensure thorough and secure deletion.

Changes to This Policy

Privacy laws evolve, technology changes, and our services grow. When we need to update this policy, we'll notify you through email and prominently display the changes on our website for at least 30 days. Significant changes that affect how we handle your information will always include an explanation of what's changing and why.