Data protection first

Your trust is our priority

Your data matters

Understanding how we protect you

Last Updated: 17 December 2024

1. Introduction
Welcome to Byte Heroes (“we,” “us,” “our”). We are committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you visit our website (the “Site”) or use our services.

We comply with the General Data Protection Regulation (EU) 2016/679 (“GDPR”) and the Protection of Personal Information Act, 4 of 2013 (“POPIA”), as well as other applicable data protection laws. By using our Site or providing us with your personal information, you acknowledge that you have read and understood this Privacy Policy.

2. Data Controller
Byte Heroes is the “data controller” of your personal information. If you have any questions about this Privacy Policy or how we handle your personal information, please contact us using the details provided in Section 14.

3. Personal Information We Collect
We may collect and process personal information including, but not limited to:

  • Contact Information: Name, email address, phone number, and postal address.
  • Enrollment and Application Data: Child’s name and age, parent/guardian’s name and contact details, and any other information you provide when applying for our courses.
  • Technical Information: IP address, browser type, operating system, and details of your visits to our Site (e.g., pages viewed, time spent), collected through cookies and similar technologies.
  • Communications: Records of correspondence, such as emails or messages sent through our contact forms.

We do not knowingly collect personal information from children without the consent of a parent or guardian. If we discover that a child’s data has been provided without appropriate consent, we will delete it as soon as reasonably practicable.

4. How We Use Your Personal Information
We process your personal information for the following purposes:

  • Service Provision: To register and enroll children in our programs, process payments, and provide our educational services.
  • Communication: To respond to inquiries, provide updates about classes, and send administrative and (where lawfully permitted) marketing communications.
  • Website Functionality: To ensure our Site operates effectively, improve user experience, and monitor usage.
  • Legal Compliance: To comply with our legal obligations and respond to lawful requests by public authorities.

5. Lawful Basis for Processing (GDPR)
Under the GDPR, we will only process your personal information where we have a lawful basis, including:

  • Consent: When you have given explicit consent for specific purposes.
  • Contract: Where processing is necessary to fulfill a contract with you (e.g., enrollment in our courses).
  • Legal Obligation: To comply with our legal obligations.
  • Legitimate Interests: To pursue our legitimate interests (such as improving our services), provided these interests do not override your fundamental rights and freedoms.

6. Lawful Processing (POPIA)
Under POPIA, we process personal information lawfully and reasonably in a manner that does not infringe on your privacy. We collect information directly from you where possible and ensure that you are aware of the purpose for which the information is collected.

7. Data Sharing and Disclosure
We may share your personal information with:

  • Service Providers: Trusted third parties who assist with operating the Site, processing payments, or providing our services.
  • Legal and Regulatory Authorities: Where required by law or to protect our rights and interests.
  • Business Transfers: In the event of a merger, reorganization, or transfer of assets, provided the recipient agrees to honor this Privacy Policy.

We ensure that all parties with whom we share personal information implement appropriate safeguards to protect your information.

8. International Data Transfers
If we transfer personal information outside of the European Economic Area (EEA) or outside of South Africa, we will ensure appropriate safeguards are in place (such as Standard Contractual Clauses) to protect your personal information and ensure it is treated in accordance with this Privacy Policy and applicable laws.

9. Data Retention
We retain personal information for as long as necessary to fulfill the purposes for which it was collected and to comply with legal and regulatory requirements. Once personal information is no longer needed, we securely delete or anonymize it.

10. Your Rights Under GDPR
Under the GDPR, you have the right to:

  • Access: Request a copy of the personal information we hold about you.
  • Rectification: Request correction of any inaccurate or incomplete personal information.
  • Erasure: Request deletion of your personal information where there is no legal reason for us to continue processing it.
  • Restriction of Processing: Request that we limit the processing of your personal information in certain circumstances.
  • Data Portability: Request to receive your personal information in a structured, commonly used, and machine-readable format, or have it transferred to another data controller where technically feasible.
  • Object to Processing: Object to our processing based on legitimate interests or for direct marketing.
  • Withdraw Consent: If processing is based on your consent, you may withdraw it at any time without affecting the lawfulness of prior processing.

11. Your Rights Under POPIA
Under POPIA, you have the right to:

  • Be Notified: Be informed when your personal information is collected and if it is compromised.
  • Access: Request details of any personal information we hold about you.
  • Correction or Deletion: Request the correction or deletion of personal information that is inaccurate, irrelevant, or no longer needed.
  • Objection: Object to the processing of personal information in certain circumstances.
  • Direct Marketing Opt-Out: Refuse the processing of personal information for direct marketing by means of unsolicited electronic communications.

12. Cookies and Tracking Technologies
We use cookies and similar technologies to enhance your experience, analyse Site usage, and assist in marketing efforts. For more information about how we use cookies and how you can manage your preferences, please refer to our Cookie Policy.

13. Complaints
If you believe your data protection rights have been infringed, you have the right to lodge a complaint with your local data protection authority. In the EU, this would be your local supervisory authority. In South Africa, you may contact the Information Regulator (South Africa).

14. Contact Us
If you have any questions about this Privacy Policy or our data practices, please contact us

15. Updates to This Privacy Policy
We may update this Privacy Policy periodically to reflect changes in our practices or legal obligations. When we do, we will revise the “Last Updated” date at the top of this page. We encourage you to review this Privacy Policy regularly to stay informed about how we process your personal information.

By continuing to use our Site and services, you acknowledge and agree to the terms of this Privacy Policy.