Privacy
Policy

This Privacy Policy describes how Jarida Africa ("Jarida", "we", "us", or "our") collects, uses, stores, shares, and protects your personal information when you access or use our website, mobile application, and logistics platform (collectively, the "Platform"). It applies to all users of the Platform, including customers, transporters, drivers, fleet operators, and visitors.

By using the Platform, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with our practices, please do not use our services. We are committed to handling your personal information responsibly and transparently, in compliance with all applicable data protection laws.

Jarida Africa is headquartered in South Africa. Our primary data protection obligations are governed by the Protection of Personal Information Act, 2013 (POPIA), which sets out conditions for the lawful processing of personal information.

Where our Platform operates in or is accessible from other African jurisdictions, we also observe applicable data protection frameworks, including:

• Kenya — Data Protection Act, 2019, enforced by the Office of the Data Protection Commissioner (ODPC).
• Nigeria — Nigeria Data Protection Act, 2023, enforced by the Nigeria Data Protection Commission (NDPC).
• Ghana — Data Protection Act, 2012 (Act 843), administered by the Data Protection Commission.
• Tanzania, Uganda, Rwanda, and other East African Community states — applicable national data protection legislation where enacted.
• Any other jurisdiction-specific data protection law that applies to the processing of personal information through our Platform.

If you use the Platform from a country with specific data protection requirements, the applicable local law will supplement this Policy to the extent required. Please contact us if you have questions about how your local law applies.

We collect personal information that is necessary to provide, maintain, and improve our logistics services. The categories of data we collect include:

We process your personal information for the following purposes:

Under POPIA and equivalent African data protection laws, we process personal information on the following lawful grounds:

• Consent — where you have given us clear, voluntary, and informed consent to process your personal information for a specific purpose.
• Contract — where processing is necessary to fulfil our contractual obligations to you or to take steps at your request before entering into a contract.
• Legal obligation — where processing is required to comply with a legal duty, including tax, transport regulation, and anti-money laundering obligations.
• Legitimate interest — where processing is necessary for our legitimate business interests, provided these are not overridden by your rights and freedoms. This includes fraud prevention, platform security, and service improvement.
• Vital interest — where processing is necessary to protect someone's life or physical safety.
• Public interest — where processing is carried out in the public interest or in the exercise of official authority.

We do not sell your personal information. We share your data only where necessary to provide our services, comply with legal obligations, or protect the rights and safety of our users and the public.

We may share your data with:

Jarida Africa operates across multiple African countries. Your personal information may be transferred to, stored, or processed in countries other than the one in which it was collected. When we transfer data across borders, we implement appropriate safeguards in accordance with POPIA Section 72 and equivalent provisions in other applicable laws.

These safeguards include:

• Ensuring the recipient country has adequate data protection legislation.
• Obtaining your consent for the transfer where required.
• Entering into binding data processing agreements with recipients.
• Implementing technical and organisational security measures to protect your information during and after transfer.

We use cookies, local storage, and similar technologies on our website and application to enhance your experience, remember your preferences, analyse usage, and support security.

The types of cookies we use include:

• Essential cookies — required for the Platform to function correctly, including authentication and session management.
• Analytics cookies — help us understand how users interact with the Platform so we can improve performance and usability.
• Preference cookies — store your settings and preferences, such as language and region.
• Marketing cookies — used to deliver relevant communications and measure the effectiveness of our campaigns, where you have consented.

You can control cookie preferences through your browser or device settings. Disabling certain cookies may affect your ability to use some Platform features.

We retain your personal information only for as long as necessary to fulfil the purposes described in this Policy, unless a longer retention period is required or permitted by law.

Factors we consider when determining retention periods include:

• The duration of your relationship with Jarida Africa.
• Whether there are ongoing contractual or legal obligations.
• Applicable statutory retention periods (such as tax, transport regulation, or employment law requirements).
• Whether retention is necessary for legal claims, audits, or regulatory proceedings.
• Fraud prevention and platform security requirements.

When personal information is no longer required, we will securely delete or anonymise it in accordance with applicable law and our internal data management policies.

Under POPIA and equivalent African data protection laws, you have specific rights in relation to your personal information. The availability and scope of these rights may vary depending on your jurisdiction.

Your rights include:

• Access — the right to request confirmation of whether we hold personal information about you, and to request a copy of that information.
• Correction — the right to request that we correct or update inaccurate or incomplete personal information.
• Deletion — the right to request that we delete your personal information, subject to any legal obligation or legitimate interest that requires us to retain it.
• Objection — the right to object to the processing of your personal information on grounds of legitimate interest, direct marketing, or automated decision-making.
• Restriction — the right to request that we restrict processing of your personal information in certain circumstances.
• Data portability — the right to receive your personal information in a structured, commonly used, and machine-readable format, where technically feasible.
• Withdrawal of consent — the right to withdraw consent at any time, without affecting the lawfulness of processing that occurred before withdrawal.
• Complaint — the right to lodge a complaint with the Information Regulator (South Africa), the ODPC (Kenya), the NDPC (Nigeria), or the relevant supervisory authority in your jurisdiction.

To exercise any of these rights, please contact us at info@jaridafrica.com. We will respond to your request within a reasonable timeframe and in accordance with applicable law. We may need to verify your identity before processing your request.

We implement appropriate technical and organisational measures to protect your personal information against unauthorised access, alteration, disclosure, loss, or destruction.

Our security measures include:

• Encryption of data in transit and at rest.
• Access controls and role-based permissions.
• Regular security assessments, vulnerability testing, and system monitoring.
• Incident response procedures for data breaches.
• Employee and contractor training on data protection obligations.
• Secure coding practices and infrastructure hardening.

While we take all reasonable steps to protect your data, no system is completely secure. If you become aware of any security incident or suspect unauthorised access to your account, please notify us immediately at info@jaridafrica.com.

The Platform is not intended for use by anyone under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child, we will take steps to delete it promptly. If you believe a child has provided us with personal information, please contact us at info@jaridafrica.com.

Jarida Africa may use automated processes to support certain aspects of our services, including transporter matching, route optimisation, pricing, compliance screening, and fraud detection. These processes analyse relevant data to improve efficiency, reliability, and safety across the Platform.

Where automated decisions have a significant effect on you, you have the right to request human review of the decision. To exercise this right, please contact us at info@jaridafrica.com.

The Platform may contain links to third-party websites, applications, or services that are not operated by Jarida Africa. We are not responsible for the privacy practices or content of these third parties. We encourage you to read the privacy policies of any third-party service before providing your personal information.

In accordance with POPIA, Jarida Africa has appointed an Information Officer who is responsible for ensuring compliance with data protection legislation and handling data subject requests.

You can contact the Information Officer at:

• Email: info@jaridafrica.com
• Post: Information Officer, Jarida Africa, 33 Angus Rd, Bedfordview, Germiston, 2008, South Africa.

If you are not satisfied with our response, you have the right to lodge a complaint with the Information Regulator of South Africa (https://inforegulator.org.za) or the relevant data protection authority in your jurisdiction.