Privacy Policy – Secure Express

Secure Express (Pty) Ltd – Privacy Policy

Last updated: 27 November 2025

1. Introduction

Secure Express (Pty) Ltd (“Secure Express”, “we”, “us”, or “our”) provides secure, on‑demand transport services through our website www.secureexpress.co.za

and our mobile applications (the “Services”).

We respect your right to privacy and are committed to protecting your personal information in accordance with the Protection of Personal Information Act 4 of 2013 (“POPIA”) and other applicable laws.

This Privacy Policy explains how we collect, use, share, and safeguard your personal information when you:

Visit or use our website

Use our mobile apps (Secure Express passenger app and related platforms)

Interact with us via phone, email, WhatsApp, or social media

Apply for employment or to become a Secure Express driver

By using our Services, you consent to the processing of your personal information as described in this Policy.

2. Who we are

Company name: Secure Express (Pty) Ltd

Registered address: Unit 17, Block C, Blueberry Office Park, Honeydew, Johannesburg, South Africa

Telephone: +27 87 133 2333

General email: info@secureexpress.co.za

Support email: support@secureexpress.co.za

For POPIA purposes, Secure Express is the “responsible party” (data controller).

We have appointed an Information Officer in terms of POPIA. Their details are available in our PAIA/POPIA manual and can be requested via the contact details above.

3. Scope of this Privacy Policy

This Policy applies to:

Website visitors

Users of our mobile apps (passengers and, where applicable, drivers)

Job applicants and prospective drivers

Individuals who contact us via phone, email, WhatsApp, or social media

Any other person whose personal information we process

This Policy does not apply to third-party websites, apps, or services that we do not own or control (e.g., recruitment portals, app stores).

4. Key Definitions

Personal information: Information relating to an identifiable, living person, such as name, contact details, ID number, location data, and online identifiers.

Special personal information: Sensitive information including race, health, biometric information, or criminal behavior, which requires additional protections.

Processing: Any operation involving personal information, including collection, use, storage, disclosure, modification, destruction, or de‑identification.

5. What personal information we collect

5.1 Passengers and app users

Identification: Name, mobile number, email, profile photo (if uploaded)

Ride information: Pickup/drop-off addresses, journey routes, real-time/approximate location, ride dates/times, ride preferences

Device/technical info: Device type, OS, app version, IP address, app logs

Payment info: Limited info (method type, transaction references). Full card details are not stored unless explicitly disclosed.

Communications/support: Queries, complaints, feedback, and WhatsApp correspondence

5.2 Safety and security information

In-vehicle camera footage for safety, incident investigation, and security purposes

Location tracking data monitored by our 24-hour Global Security Operations Centre

Special personal information captured (health, religion, etc.) is handled with additional care under POPIA.

5.3 Driver and employee information

Identification, contact, license/professional permits

Employment history, qualifications, background checks, training/assessment results

Payroll/HR info and any CV/application data

Special personal information (criminal or health checks) is processed only where legally permitted.

5.4 Website visitors and contact-form users

Name, phone, email, message content

Technical data (IP, browser, device, cookies)

5.5 Social media & marketing interactions

Public profile info and messages on platforms like Facebook, Instagram, LinkedIn, X (Twitter), and YouTube

Marketing preferences (opt-in/opt-out records)

6. How we collect personal information

Directly from you: Account creation, Ryde booking, forms, employment applications

Automatically: App, vehicle systems, website (location, telemetry, cookies, logs, camera footage)

From third parties: Recruitment providers, payment processors, analytics providers (where allowed), law enforcement authorities

7. Legal grounds for processing (POPIA & other laws)

Consent: Location tracking, marketing communications, etc.

Contractual necessity: To provide Services and manage accounts

Legal obligations: Compliance with laws, PAIA/POPIA, tax, transport regulations

Legitimate interests: Safety, fraud prevention, service improvement

Special personal information or data about children is only processed under conditions allowed by POPIA.

8. How we use personal information

Provide Services: Account management, bookings, real-time tracking, safe Rydes

Safety & security: Ride monitoring, camera use, incident investigation, identity verification

Customer support & communication: Queries, complaints, ride confirmations, operational alerts

Billing & payments: Process payments/refunds, prevent fraud

Service improvement & personalisation: Usage analysis, feature testing

Marketing & promotions: Only with consent; opt-out allowed

Legal & regulatory purposes: Compliance, defending claims, audits

9. Cookies and similar technologies

Used to: Ensure site functionality, remember preferences, understand usage, support security, analytics, and marketing. Managed via browser settings or our Cookie Policy.

10. When and how we share personal information

Internal teams & drivers: To fulfill rides and ensure safety

Service providers: Hosting, payment processing, communications, analytics, recruitment, HR

Business transfers: In case of mergers, sales, or restructuring

Legal/regulatory disclosures: Required by law or to protect legal interests

All third parties are bound by contracts ensuring compliance with POPIA.

11. Your privacy rights

Under POPIA, you may:

Access, correct, or delete your personal information

Object to processing on reasonable grounds

Opt out of marketing or withdraw consent

Verification may be required. Some requests may be limited if legal obligations exist.

Residents of other jurisdictions may have additional rights.

12. Data retention

Only retained as necessary for the purpose collected

Exceptions: legal compliance, legitimate business purposes, or de-identified data

Examples: ride/transaction records (tax/safety), camera footage (incident investigation), recruitment records

13. Security of personal information

We implement reasonable measures:

Encryption in transit

Access controls and role-based permissions

Secure hosting/network protections

Monitoring via operations centre

Staff training

Security incident procedures

If compromised, we will notify affected parties and the Information Regulator as required.

14. Children’s information

Services not directed at children

Children may ride with adults; info processed via adult account and legally permitted under POPIA

15. Third-party websites, apps, and services

Linked or integrated third-party platforms (app stores, recruitment portals, social media)

Their privacy policies apply; review before submitting personal information

16. Changes to this Privacy Policy

Policy may be updated to reflect Services, legal requirements, or privacy practices

Material changes update the “Last updated” date and may include in-app, email, or website notifications

Continued use constitutes acceptance

17. Contact us

Secure Express (Pty) Ltd

Email: info@secureexpress.co.za

Support email: support@secureexpress.co.za

Telephone: +27 87 133 2333

Address: Unit 17, Block C, Blueberry Office Park, Honeydew, Johannesburg, South Africa

18. Your right to lodge a complaint

If unresolved, contact the Information Regulator (South Africa):

Address: Woodmead North Office Park, 54 Maxwell Drive, Woodmead, Johannesburg, 2191

Email (general): enquiries@inforegulator.org.za

Email (POPIA complaints): POPIAComplaints@inforegulator.org.za

Phone: 010 023 5200 / Toll-free: 0800 017 160