Your privacy matters to us. This Privacy Policy explains what personal information we collect, why we collect it, how we use and protect it, and what rights you have — in compliance with the Protection of Personal Information Act 4 of 2013 (POPIA) of the Republic of South Africa.
This policy applies to all users of the Repairers Hub platform operated by McSbuSing (Pty) Ltd ("we", "us", "our"), including customers who submit service requests, track repairs, or browse the Platform; repair shop owners and their staff members.
We collect different categories of personal information depending on how you interact with the Platform:
| Category | Examples | Collected From |
|---|---|---|
| Identity Information | Full name, ID/passport number | Customers, Shop Owners, Staff |
| Contact Information | Mobile number (10 digits), email address, WhatsApp number | Customers, Shop Owners, Staff |
| Device Information | Device make, model, serial number, device type | Customers submitting repairs |
| Repair Information | Repair description, fault details, status history, technician notes | Customers & Shop Staff |
| Financial Information | Repair cost, payment amounts, payment method type (not card details) | Shop Owners & Staff |
| Business Information | Shop name, address, company registration number, logo | Shop Owners |
| Location Information | GPS latitude and longitude | Customers & Shop Owners (optional) |
| Digital Signatures | Customer & staff signatures captured at device collection | Customers & Staff (at collection) |
| Account Credentials | Email address, hashed password | Shop Owners & Staff |
| Profile Pictures | Photograph uploaded by owner or staff | Shop Owners & Staff (optional) |
| Feedback & Ratings | Star ratings, written comments | Customers (after repair) |
| Technical Data | Session tokens, browser cookies, IP address, timestamps | All users automatically |
We do not collect or store full financial card details. Payment method types (e.g. "Cash", "EFT") are recorded for record-keeping only. All actual financial transactions occur directly between customers and repair shops.
When you register an account, submit a service request, complete a repair intake form, or fill in any field on the Platform, you provide information directly to us.
When you visit the Platform, your browser may share technical information such as your IP address, browser type, and operating system. We also use browser session storage and cookies to maintain your login state.
If you click "Detect My Location" on the service request form or store settings, your browser will request permission to access your GPS coordinates. This is entirely optional and requires your explicit consent. We never access your location without your action and approval.
We do not currently purchase or receive personal data from third-party data brokers. Information about staff members is provided by their Shop Owner employer when creating staff accounts.
| Purpose | Information Used |
|---|---|
| Create and manage user accounts | Name, email, password, contact number |
| Match service requests with nearby repair shops | Client geolocation, device details, description |
| Enable repair shops to contact customers | Name, contact number, email, delivery preference |
| Allow customers to track their repairs | Invoice number, ID number, repair status history |
| Create a repair record and audit trail | Repair details, technician notes, state changes |
| Process device collection & generate confirmation | Customer signature, return policy acceptance |
| Generate QR codes for device tracking | Invoice number, device UUID |
| Send email notifications (leads, confirmations, passwords) | Email address |
| Enable staff management by Shop Owners | Staff name, email, position, profile picture |
| Track payments for repair services | Repair cost, amount paid, payment method type |
| Display customer feedback and ratings | Star ratings, written reviews |
| Maintain platform security and prevent abuse | IP address, session data, login activity |
We do not use your personal information for automated decision-making that produces significant legal or similarly significant effects without human oversight.
Under POPIA, we process personal information on the following grounds:
When you submit a service request, your contact details, device description, budget, and collection preference are shared with Repair Shops that accept your request. Before acceptance, shops only see the request details — your full contact details are revealed only after a shop accepts your request.
Staff members at a Repair Shop can access customer and device information for repairs assigned to their store. This access is limited to their assigned store only.
We may share limited technical data with trusted third-party service providers who assist us in operating the Platform (e.g. email delivery providers, hosting services). These providers are contractually obligated to protect your data and may only use it to provide services to us.
We may disclose your information if required to do so by law, or if we believe in good faith that such disclosure is necessary to comply with a legal obligation, protect our rights, or prevent fraud or abuse.
If McSbuSing (Pty) Ltd is involved in a merger, acquisition, or sale of assets, your personal information may be transferred as part of that transaction. We will notify affected users before data is transferred and becomes subject to a different privacy policy.
We do not sell, rent, or trade your personal information to third parties for marketing purposes.
We retain your personal information for as long as necessary for the purposes described in this policy or as required by South African law:
| Data Type | Retention Period |
|---|---|
| Repair records (invoice, device, status history) | Minimum 5 years (Consumer Protection Act requirement) |
| Collection confirmations & signatures | Minimum 5 years |
| Payment records | Minimum 5 years (financial records requirement) |
| Customer records (name, contact, device) | Duration of relationship + 5 years |
| Shop Owner & Staff accounts | Until account deletion + 5 years for associated records |
| Service requests (leads) | 2 years from submission |
| Security & session logs | 90 days |
| Email logs | 12 months |
Upon expiry of the relevant retention period, personal information is deleted or anonymised.
We take the security of your personal information seriously and have implemented appropriate technical and organisational measures, including:
While we strive to protect your personal information, no method of transmission over the internet or electronic storage is 100% secure. In the event of a data breach that poses a risk to your rights, we will notify affected individuals and the Information Regulator as required by POPIA.
When you submit a service request, you may optionally click "Detect My Location". This uses the HTML5 Geolocation API in your browser, which prompts you for permission. If you grant permission, your latitude and longitude coordinates are:
If you do not grant location permission, your request is still submitted and all active shops may be notified.
Shop Owners may set their store's geographic coordinates in Store Settings using the "Detect My Location" button. This location is used to calculate proximity to service requests and is not publicly displayed.
We do not continuously track your location. Location is captured only at the explicit moment you click the "Detect My Location" button. We do not use background location tracking on any device.
We use the following minimal cookies and session mechanisms:
| Name | Purpose | Type |
|---|---|---|
repairershub_session |
Maintains your authenticated session (login state, selected store) | Essential — session cookie |
XSRF-TOKEN |
Cross-site request forgery protection | Essential — security cookie |
remember_* |
"Remember me" persistent login token (if used) | Functional — persistent cookie |
We currently use no third-party analytics, advertising, or tracking cookies. All cookies used are strictly necessary for the Platform's operation or your convenience.
As a data subject under the Protection of Personal Information Act 4 of 2013, you have the following rights:
You have the right to request a copy of the personal information we hold about you.
You have the right to request that we correct inaccurate or incomplete personal information. Shop Owners and Staff can update most information directly in their account settings.
You have the right to request deletion of your personal information, subject to our legal retention obligations. Where we are legally required to retain records (e.g. financial or repair records), we will inform you of the basis for retention.
You have the right to object to the processing of your personal information on the grounds of legitimate interest.
Where processing is based on your consent (e.g. geolocation), you may withdraw consent at any time without affecting the lawfulness of processing before withdrawal.
If you believe we have handled your personal information unlawfully, you have the right to lodge a complaint with the Information Regulator of South Africa:
To exercise any of the above rights, contact our Information Officer at privacy@repairershub.co.za. We will respond within 30 days.
Customers who submitted a service request without creating an account may request deletion of their information by contacting us directly with their service request reference number.
The Platform is not directed at children under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child without verifiable parental consent, we will take steps to delete that information promptly.
If you believe a child has provided us with personal information, please contact us at privacy@repairershub.co.za.
The Platform uses the following third-party services. Each has its own privacy practices:
| Service | Purpose | Data Shared |
|---|---|---|
| Email delivery provider (SMTP) | Send notification and account emails | Recipient email address, email content |
| Google Fonts | Load Inter and Baumans typefaces | IP address (standard CDN request) |
| Icons8 | Display interface icons | IP address (standard CDN request) |
| Browser Geolocation API | Optional location detection | Coordinates shared only with our server on your action |
Links to external websites from our Platform are provided for convenience only. We are not responsible for the privacy practices of those websites.
Repairers Hub is operated from South Africa and primarily stores data within South Africa. If any personal information is transferred to a country outside of South Africa for processing (e.g. via a cloud email provider), we ensure that such transfers comply with the requirements of POPIA Section 72, including that the recipient country provides adequate levels of protection or is bound by an agreement that upholds similar protections.
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or for other operational reasons. When we make material changes, we will:
The current version of this policy is always available at /privacy-policy.
We have appointed an Information Officer as required by POPIA. For any privacy-related queries, requests, or concerns, please contact us:
| Company | McSbuSing (Pty) Ltd |
| Platform | Repairers Hub |
| Information Officer | Privacy Officer, McSbuSing (Pty) Ltd |
| Privacy Email | privacy@repairershub.co.za |
| General Enquiries | support@repairershub.co.za |
| Website | repairershub.co.za |
We will acknowledge all privacy requests within 3 business days and respond fully within 30 days as required by POPIA.