Privacy Policy
Last updated: April 2026
1. Introduction
Talentide (Pty) Ltd ("Talentide", "we", "us", or "our") is committed to protecting the privacy and personal information of our clients, their employees, our website visitors, and all other individuals whose personal information we process.
This Privacy Policy explains how we collect, use, store, share, and protect personal information in accordance with the Protection of Personal Information Act 4 of 2013 ("POPIA") and other applicable South African legislation.
By engaging our services, visiting our website at talentide.co.za, or providing us with personal information, you acknowledge that you have read and understood this Privacy Policy.
2. Responsible Party
For the purposes of POPIA, the responsible party is:
- Entity: Talentide (Pty) Ltd
- Information Officer: Andrea van Hirtum
- Physical Address: 677 Elvira Street, Garsfontein, Pretoria, 0081
- Email: [email protected]
- Telephone: +27 76 587 5881
3. Key Definitions
In this Privacy Policy, the following terms have the meanings assigned to them under POPIA:
- "Personal information" means information relating to an identifiable, living, natural person or an identifiable, existing juristic person, including but not limited to names, identity numbers, contact details, financial information, and employment history.
- "Special personal information" means personal information concerning religious or philosophical beliefs, race or ethnic origin, trade union membership, political persuasion, health, sexual life, biometric information, or criminal behaviour.
- "Processing" means any operation or activity, whether automated or not, concerning personal information, including collection, receipt, recording, organisation, storage, updating, retrieval, consultation, use, dissemination, merging, restriction, degradation, erasure, or destruction.
- "Data subject" means the person to whom personal information relates.
- "Operator" means a person who processes personal information for a responsible party in terms of a contract or mandate.
4. Personal Information We Collect
4.1 Client Company Information
- Company name, registration number, VAT number, and trading details
- Contact details of authorised representatives
- Banking and financial information for payment purposes
- Business addresses and operational details
4.2 Employee Information (Processed on Behalf of Clients)
As a payroll outsourcing provider, we process the following categories of employee personal information on behalf of our clients:
- Full names, identity or passport numbers, date of birth
- Contact details (phone numbers, email addresses, physical addresses)
- Banking details for salary payments
- Tax numbers and SARS-related information
- Employment details (job title, department, start date, remuneration)
- Leave records and attendance data
- Medical aid, pension, and provident fund membership details
- Garnishee order and deduction information
- UIF and SDL contribution records
- Next-of-kin and beneficiary information
4.3 Website Visitor Information
- Name, email address, phone number, and company name (via contact forms)
- Technical data such as IP address, browser type, and device information
- Usage data collected through analytics tools
5. Purpose of Processing
We process personal information for the following lawful purposes:
- Performing our contractual obligations to clients, including payroll processing, tax calculations, statutory submissions, and benefits administration
- Complying with legal obligations under the Income Tax Act, Basic Conditions of Employment Act (BCEA), Labour Relations Act (LRA), Unemployment Insurance Act, Skills Development Levies Act, and SARS regulations
- Making statutory submissions including EMP201, EMP501, and IRP5 certificates
- Administering employee benefits including medical aid, pension funds, provident funds, and garnishee orders
- Communicating with clients and their employees about payroll matters
- Responding to enquiries submitted through our website
- Improving our services and website functionality
- Marketing our services to prospective clients (with consent)
6. Legal Basis for Processing
We process personal information based on one or more of the following conditions under Section 11 of POPIA:
- Consent: Where the data subject has consented to the processing
- Contract: Where processing is necessary to fulfil a contractual obligation
- Legal obligation: Where processing is required by law (e.g. SARS submissions, BCEA compliance)
- Legitimate interest: Where processing is necessary for our legitimate business interests, balanced against the data subject's rights
7. Sharing of Personal Information
We may share personal information with the following categories of recipients, only to the extent necessary for the purposes described in this Policy:
| Recipient | Purpose |
|---|---|
| South African Revenue Service (SARS) | Statutory tax submissions (EMP201, EMP501, IRP5) |
| Department of Employment and Labour | UIF declarations and compliance reporting |
| Medical aid schemes | Employee benefit administration |
| Pension and provident fund administrators | Retirement fund contributions and administration |
| Banking institutions | Salary payments and EFT processing |
| PaySpace (Deel Local Payroll) | Cloud payroll platform processing (operator) |
| Courts and legal authorities | Garnishee orders and legal compliance |
We do not sell, trade, or rent personal information to third parties. Where we engage operators (such as PaySpace), we ensure that appropriate contractual safeguards are in place in terms of Section 21 of POPIA.
8. Cross-Border Transfers of Personal Information
Our payroll technology partner, PaySpace (Deel Local Payroll), may process data in jurisdictions outside South Africa. Where personal information is transferred across borders, we ensure that:
- The recipient country has adequate data protection legislation, or
- The data subject has consented to the transfer, or
- The transfer is necessary for the performance of a contract, or
- Appropriate contractual protections are in place as required by Section 72 of POPIA.
9. Security Measures
We are committed to protecting personal information through appropriate technical and organisational measures, including:
- Secure, cloud-based payroll systems with encryption in transit and at rest
- Access controls and role-based permissions
- Regular security assessments of our systems and processes
- Employee confidentiality agreements and training
- Secure backup and disaster recovery procedures
- POPIA-compliant data handling procedures throughout the organisation
In the event of a data breach that poses a risk to data subjects, we will notify the Information Regulator and affected data subjects in accordance with Section 22 of POPIA.
10. Retention of Personal Information
We retain personal information only for as long as necessary to fulfil the purposes for which it was collected, or as required by law. Specific retention periods include:
| Record Type | Retention Period | Legal Basis |
|---|---|---|
| Payroll records and tax documents | 5 years from end of tax year | Income Tax Act, Section 29 |
| Employment records | 3 years after employment ends | BCEA, Section 31 |
| UIF records | 5 years | Unemployment Insurance Act |
| EMP201/EMP501 submissions | 5 years | SARS requirements |
| Client contractual records | Duration of contract + 3 years | Prescription Act |
| Website enquiry data | 2 years | Legitimate interest |
Upon expiry of the retention period, personal information is securely destroyed or de-identified.
11. Your Rights as a Data Subject
Under POPIA, data subjects have the following rights:
- Right of access: You may request confirmation of whether we hold your personal information and request access to it (Section 23).
- Right to correction: You may request that we correct or delete personal information that is inaccurate, irrelevant, excessive, out of date, incomplete, misleading, or obtained unlawfully (Section 24).
- Right to object: You may object to the processing of your personal information on reasonable grounds (Section 11(3)).
- Right to deletion: You may request the deletion or destruction of personal information that we are no longer authorised to retain (Section 24).
- Right to withdraw consent: Where processing is based on consent, you may withdraw your consent at any time (note: this does not affect the lawfulness of processing before withdrawal).
- Right to complain: You have the right to lodge a complaint with the Information Regulator if you believe your rights have been infringed.
To exercise any of these rights, please contact our Information Officer using the details in Section 2 above. We will respond to your request within a reasonable time, and no later than 30 days.
12. Direct Marketing
We may use your contact details to inform you of our services, provided that:
- You have given us your express consent, or
- You are an existing client and the communication relates to similar services.
You may opt out of receiving marketing communications at any time by contacting us or using the unsubscribe mechanism provided in our communications.
13. Cookies and Website Analytics
Our website at talentide.co.za may use cookies and similar technologies to improve your browsing experience and analyse website usage. We use:
- Essential cookies required for website functionality
- Analytics cookies to understand how visitors use our site
You can manage your cookie preferences through your browser settings. Disabling certain cookies may affect your experience on our website.
14. Children's Personal Information
We do not knowingly collect personal information from children under the age of 18. If we become aware that we have collected such information without appropriate consent, we will take steps to delete it.
15. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. The most current version will always be available on our website. Material changes will be communicated to affected parties.
16. Information Regulator
If you are not satisfied with how we have handled your personal information or your request, you may lodge a complaint with:
- The Information Regulator (South Africa)
- Physical Address: JD House, 27 Stiemens Street, Braamfontein, Johannesburg, 2001
- Postal Address: P.O. Box 31533, Braamfontein, Johannesburg, 2017
- Email: [email protected]
- Telephone: 010 023 5207
17. Contact Us
For any questions, concerns, or requests relating to this Privacy Policy or the processing of your personal information, please contact:
- Information Officer: Andrea van Hirtum
- Email: [email protected]
- Telephone: +27 76 587 5881
- Address: 677 Elvira Street, Garsfontein, Pretoria, 0081