Privacy Policy

1. Who We Are

MWCOM (Pty) Ltd ("MWCOM", "we", "us", or "our") is a South African telecommunications and internet service provider registered under the laws of the Republic of South Africa.

We provide business internet, fibre connectivity, cloud VoIP phone systems, and managed IT services to businesses across South Africa.

Registered address: Midrand, Gauteng, South Africa
Information Officer contact: info@mwcom.co.za

2. Legal Basis

This Privacy Policy is issued in compliance with the Protection of Personal Information Act 4 of 2013 (POPIA) and gives effect to your rights as a Data Subject under that Act. By using our website, services, or communicating with us, you acknowledge that we may process your personal information as described in this policy.

3. What Personal Information We Collect

We may collect the following categories of personal information:

• Identity information: Name, surname, company name, job title
• Contact information: Email address, telephone number, physical and postal address
• Account information: Username, password (hashed), service preferences, billing details
• Financial information: Bank account details, payment history (processed securely via our payment processors)
• Technical information: IP address, browser type, operating system, pages visited, session duration, referring URL
• Communication records: Support tickets, emails, WhatsApp messages, call recordings (where applicable and consented to)
• Service usage data: Data usage, call records, connection logs

4. Why We Collect Your Information

We process your personal information for the following lawful purposes:

• To provide and manage the telecommunications and internet services you have contracted with us
• To process billing, payments, and manage your account
• To communicate with you about your services, outages, upgrades, and scheduled maintenance
• To respond to enquiries submitted via our website or WhatsApp
• To comply with our legal and regulatory obligations as an Electronic Communications Service Provider under the Electronic Communications Act
• To detect, prevent, and respond to fraud, security incidents, or network abuse
• To send service-related updates and, with your consent, marketing communications about relevant products and offers
• To improve our website and services through analytics

5. How We Share Your Information

We do not sell your personal information. We may share your information with:

• Service providers: Payment processors, network infrastructure providers, and support tool vendors who process data on our behalf under data processing agreements
• Regulatory bodies: ICASA, the Information Regulator, SARS, or law enforcement where required by law or court order
• Business transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity

All third parties with access to your personal information are required to handle it in accordance with POPIA and our data processing agreements.

6. Data Retention

We retain your personal information for as long as necessary to fulfil the purposes for which it was collected, to comply with our legal obligations (including RICA requirements for telecommunications providers), and to resolve any disputes.

Customer account data is retained for a minimum of 5 years after contract termination as required by applicable law. Call records and connection logs are retained for the period required by our regulatory obligations under the Electronic Communications Act.

Once the retention period expires, data is securely deleted or anonymised.

7. Your Rights Under POPIA

As a data subject under POPIA, you have the right to:

• Access: Request a description of the personal information we hold about you
• Correction: Request correction of inaccurate, incomplete, or outdated information
• Deletion: Request deletion of your information where we no longer have a lawful basis to retain it
• Objection: Object to the processing of your information for direct marketing purposes at any time
• Complaint: Lodge a complaint with our Information Officer or directly with the Information Regulator of South Africa at www.justice.gov.za/inforeg

To exercise any of these rights, contact our Information Officer at info@mwcom.co.za. We will respond within 30 days.

8. Cookies and Website Analytics

Our website uses cookies and similar technologies to improve your browsing experience and analyse how visitors use our site. We use:

• Essential cookies: Required for the website to function (session management, security)
• Analytics cookies: Help us understand how visitors use our site (Microsoft Clarity, Google Analytics — IP anonymised)

You can control cookies through your browser settings. Disabling cookies may affect some website functionality.

9. Security

We implement appropriate technical and organisational measures to protect your personal information against unauthorised access, disclosure, alteration, or destruction. These measures include encrypted data transmission (TLS/HTTPS), access controls, and regular security reviews.

No method of transmission over the internet is 100% secure. If you believe your information has been compromised, contact us immediately at info@mwcom.co.za.

10. Cross-Border Transfers

Some of our service providers operate internationally. Where personal information is transferred outside South Africa, we ensure that the receiving country provides an adequate level of protection consistent with POPIA, or that we have implemented appropriate safeguards (such as data processing agreements) to protect your information.

11. Direct Marketing

We may contact you with information about our services and offers that may be relevant to your business. You have the right to opt out of direct marketing at any time by:

• Clicking the unsubscribe link in any marketing email
• Replying STOP to any marketing SMS or WhatsApp message
• Contacting us at info@mwcom.co.za

12. Children

Our services are intended for business use by adults. We do not knowingly collect personal information from persons under 18 years of age. If you believe we have inadvertently collected information from a minor, contact us immediately.

13. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will post the updated policy on this page with a revised "Last updated" date. Continued use of our services after any changes constitutes acceptance of the updated policy.

14. Contact Us

For any privacy-related questions, requests, or complaints:

You also have the right to contact the Information Regulator of South Africa directly at www.justice.gov.za/inforeg if you are not satisfied with our response.