Fraud prevention and compliance with POPIA and the NCR

Fraud prevention and compliance with POPIA and the NCR

We are aware that we are working with individual’s or organisation’s private data. All our products and services have been thoroughly evaluated by a global law firm, a recognised National Credit Act regulatory expert and TransUnion’s international and South African compliance and legal departments to ensure that consent is properly obtained, and that the information received is well protected. Our system is fully compliant with POPIA, the National Credit Act plus we comply with TransUnion’s strict guidelines on data security and handling of personal information. In addition, we use blockchain to encrypt and secure our electronically signed contracts so that you can verify its integrity at any stage in the commercial process.

Information Confidentiality

We shall not access Confidential Information, unless it is considered to be i) non-confidential information, or ii) it is for a Permitted Purpose or iii) it is with the consent of the consumer.

When we receive or work with private data, we protect the confidentiality of the consumer’s credit information and only use such information under the following strict circumstances;

-          only for a purpose permitted or required in terms of the NCA, other national legislation or applicable provincial legislation;

-          report or release that information only to the consumer or prospective consumer, or to another person to the extent permitted or required by the NCA, other national legislation or applicable provincial legislation;

-          or as directed by the instructions of the consumer or prospective consumer or by an order of a court or the Tribunal.

Information that is generally known by others or available to the public is not considered to be Confidential Information.  It is our policy that the following information is not considered to be confidential: Deeds Office information, Judgments, CIPC information concerning companies and directors, Landline telephone numbers and internet or social media posts and articles.

Permitted Purpose

We are permitted, once in possession of the required consent, to undertake fraud detection and prevention services by private entities and persons set out in Section 18(4)(b) of the National Credit Act. We are not an employment agency, recruitment consultant, staffing company or an employer who require access to a consumer credit records to consider a candidate for employment in a position that requires honesty in dealing with cash or finances (Regulation 18(4)(c)).

Even though our fraud prevention and detection services emanate from the instructions of our clients, we are the end-user of the consumer credit information obtained from TransUnion. Therefore, we do not on-sell any credit reports obtained from TransUnion and therefore are not required to register as a Reseller Credit Bureau with the NCR.


    • Related Articles

    • Data Privacy

      We are aware that we are working with individual’s private data and have ensured that consent is properly obtained, and that the information received is well protected in an encrypted system. In terms of the National Credit Act 34 of 2005, employers ...
    • We keep your data safe

      Strong safeguards are in place to help protect your privacy. All data is stored in encrypted format. Software-based security tools to monitor and protect the flow of information into and of out of your secure portal which meet the requirements of the ...
    • Does your services leave a footprint on credit records

      Our services are undertaken for a permitted purpose under the National Credit Act. They therefore are designed not to leave a footprint or stamp, which indicates that a record of a company or an individual has been accessed for the purposes of fraud ...
    • Do your services negatively affect my credit score?

      Our services are undertaken for a permitted purpose under the National Credit Act. They therefore are designed not to leave a footprint or stamp, which indicates that a record of a company or an individual has been accessed for the purposes of fraud ...
    • Do you undertake automated assessments of non South African individuals and companies?

      Currently we have only enabled automated lifestyle, third party due diligence and integrity screening for subjects that have a South African domicile, which includes South African citizens, companies, trusts and persons with a permanent residence ...