Privacy policy

LendLay Privacy Policy

Last updated: 2025/09/2021

1. Your Consent and Agreement

By using our website, mobile services, SIM services, device contracts, or any other products or services provided by LendLay (collectively, the “Services”), you:

  • Consent to the collection, storage, use, and transfer of your personal information (including, where applicable, financial or biometric data) as described in this Privacy Policy; and
  • Confirm that you have read, understood, and accepted this Privacy Policy and our Terms of Service.

We may update this Privacy Policy from time to time. Continued use of the Services after updates take effect constitutes acceptance of the revised Privacy Policy.

2. About This Privacy Policy

LendLay respects your privacy and is committed to protecting the personal information you share with us. This Privacy Policy describes:

  • What personal information we collect;
  • How we use and disclose it;
  • The rights and choices available to you under applicable law (including the Protection of Personal Information Act, 2013 (“POPIA”), the General Data Protection Regulation (“GDPR”), and the National Credit Act (“NCA”), where applicable).

3. What is Personal Information?

“Personal information” means any information that identifies you as an individual or can reasonably be linked to you. This includes (but is not limited to):

  • Name, surname, identification/passport number, and date of birth;
  • Contact details (address, phone number, email);
  • Financial and payment details (banking information, card details, payment confirmations, and credit records where required);
  • Account login details, preferences, and settings;
  • Device and usage information (IP address, browser type, operating system, and browsing activity);
  • Communications with us (customer support, enquiries, or correspondence);
  • Documentation or information required for Know Your Customer (KYC), FICA, or RICA compliance;
  • Any additional information you voluntarily provide to us.

Personal information excludes de-identified or anonymised data that cannot reasonably identify you.

4. How We Collect Your Personal Information

We may collect personal information:

  • Directly from you – when you create an account, place an order, submit an application, or contact us.
  • Automatically – via cookies, tracking tools, or when you use our Services.
  • From third parties – such as credit bureaus (for device financing under the NCA), fraud-prevention agencies, service providers, or business partners.

5. How We Use Your Personal Information

We process personal information for the following purposes:

  1. Service Provision – to provide and deliver SIM services, device contracts, payment processing, shipping, activations, and account management.
  2. Legal Compliance – to comply with laws such as POPIA, GDPR, the NCA, FICA, and RICA.
  3. Security & Fraud Prevention – to verify your identity, detect fraud, protect accounts, and safeguard networks.
  4. Marketing & Communication – to send you product updates, promotions, or service notices (with opt-out rights).
  5. Customer Support – to respond to queries, requests, complaints, and technical issues.
  6. Business Operations – for auditing, reporting, training, research, analytics, and service improvement.

6. Disclosure of Personal Information

We may share your personal information only where necessary and lawful, including with:

  • Service providers – for IT support, payment processing, shipping, SIM activation, and data storage.
  • Credit bureaus and regulators – where credit checks or legal compliance require it.
  • Business partners – for joint services (e.g., mobile network agreements).
  • Law enforcement/government authorities – when legally required.
  • In business transactions – such as mergers, restructuring, or sales of assets.

We do not sell your personal information.

7. International Data Transfers

Your personal information may be transferred or stored outside South Africa, including in the European Union, the United Kingdom, or the United States. Where such transfers occur, we ensure that adequate safeguards are in place, such as the EU Standard Contractual Clauses or equivalent protections.

8. Security and Retention

  • We implement appropriate technical and organisational security measures to protect personal information from loss, misuse, or unauthorised access.
  • Unfortunately, no method of transmission is completely secure, and you use the Services at your own risk.
  • We retain personal information only as long as necessary to fulfil the purposes described in this Privacy Policy, comply with legal obligations, and resolve disputes.

9. Children’s Data

Our Services are not directed at children under 18. We do not knowingly collect personal information of minors. If you believe your child has provided information to us, please contact us to request deletion.

10. Your Rights

Depending on applicable law, you may have the right to:

  • Request access to the personal information we hold about you;
  • Correct, update, or delete your personal information;
  • Withdraw consent where processing is based on consent;
  • Object to certain processing (such as direct marketing);
  • Request restriction of processing;
  • Request a copy of your information in a portable format;
  • Lodge a complaint with the Information Regulator of South Africa or your local data authority.

Requests can be made via the contact details in Section 12. We may require proof of identity before fulfilling requests.

11. Cookies and Tracking

We may use cookies and similar technologies to improve the functionality of our Services, remember your preferences, and deliver targeted advertisements. You may disable cookies in your browser settings, but some features of our Services may not function properly.

12. Contact Us

If you have any questions, requests, or complaints regarding this Privacy Policy or your personal information, please contact us:

LendLay (Pty) Ltd
Email: support@lendlay.com

Telephone Number: +27 11 010 8511