POPIA Compliance Policy

Molo Online (Pty) Ltd

Effective Date: 2025-02-10
Last Updated: 2026-02-29
Version: 3.0

1. Purpose

This policy demonstrates Molo Online's commitment to compliance with the Protection of Personal Information Act (POPIA), Act 4 of 2013, of South Africa.

2. The Four-Party Model and POPIA

POPIA compliance is distributed across four parties. Each party has specific obligations:

Molo (Platform Provider) - Operator

Under POPIA, Molo acts as an Operator processing personal information on behalf of Companies.

Molo's POPIA obligations:

The Company (Molo's Client) - Responsible Party

Under POPIA, Companies using Molo are the Responsible Party for their customers' data.

Company's POPIA obligations:

Staff (Company's Employees) - Data Subject with Special Provisions

Staff are data subjects with specific rights regarding their profile data.

Staff POPIA rights:

Staff POPIA responsibilities:

End User - Data Subject

End Users are data subjects whose data is processed through the platform.

End User POPIA rights:

3. POPIA Conditions for Lawful Processing

We adhere to the following conditions:

Accountability

Processing Limitation

Purpose Specification

Further Processing Limitation

Information Quality

Openness

Security Safeguards

Data Subject Participation

All data subjects (Staff and End Users) may:

Response timeframes:

4. Third-Party Processing

We use third-party services that process personal information:

Each third-party processor is selected for enterprise-grade security standards. Molo requires contractual POPIA compliance from all processors. Molo cannot control third-party internal processing but monitors for compliance.

5. Google Analytics

Google Analytics processes website usage data as a third-party service.

6. Staff Profile Data

Staff profile data requires special handling under POPIA:

7. Information Officer

Our designated Information Officer:

The Information Officer handles:

8. Complaints

If you believe your POPIA rights have been violated:

9. Data Breach Notification

In the event of a security breach affecting personal information:

10. Contact Information


All content copyright molo.page 2026