Privacy Policy

This Privacy Policy explains how Subtle Estimates collects, uses, stores, shares, and protects personal information and project documents when you use our website, contact us, upload information, request an estimate, make a payment, or use a client portal.

Subtle Estimates is based in South Africa and aims to handle personal information in a practical, purpose-limited way consistent with POPIA principles.

We collect information that you provide directly, information generated through your use of the website or portal, and limited information from service providers needed to operate the service.

Please do not send unnecessary identity documents, banking documents, medical information, children information, access credentials, or other sensitive personal information unless we specifically request it for a legitimate purpose.

If sensitive information is included in project documents by mistake, we will handle it only as needed for the service, support, security, legal compliance, or deletion where practical.

We use personal information and project documents for specific service, communication, payment, security, compliance, and business administration purposes.

Depending on the context, we process personal information because you have consented, because processing is necessary to respond to your request or perform a service, because we have a legitimate business interest, because we must comply with a legal obligation, or because processing is needed to protect a lawful interest.

We aim to collect only information that is relevant to the purpose, use it in a reasonable way, keep it reasonably accurate, protect it with appropriate safeguards, and retain it only for as long as reasonably needed.

Drawings, specifications, schedules, photographs, and related project documents are treated as confidential business information. We use them for the requested estimate, support, quality review, record keeping, and lawful administration unless you instruct us otherwise or disclosure is required by law.

We do not sell project documents or client personal information.

Online payments are processed through Paystack. We may receive payment references, payment status, transaction amount, payer contact details, and related reconciliation information.

We do not store your full card number or card security code. Paystack processes payment information under its own terms, privacy notices, and security controls.

We may share limited information with trusted service providers where needed to operate the website, client portal, storage, email, payment, security, analytics, support, accounting, or document handling workflows.

Service providers are expected to process information only for the authorised purpose and to apply appropriate confidentiality and security measures.

Some service providers may store or process information outside South Africa. Where this happens, we aim to use providers and arrangements that support appropriate privacy and security safeguards for the type of information involved.

We use reasonable technical and organisational steps to protect information against unauthorised access, loss, misuse, alteration, or disclosure. These steps may include access controls, protected routes, encrypted transport, role-based administration, logging, and separation of public and internal evidence.

No internet service, email system, or storage platform can be completely risk-free. If you believe your information or project documents have been exposed, please contact us promptly.

We retain personal information, project documents, estimate outputs, payment records, and communications for as long as reasonably needed for service delivery, client support, operational records, tax and accounting obligations, dispute handling, audit, security, or lawful business administration.

Where information is no longer reasonably needed, we may delete, archive, anonymise, or aggregate it, depending on the record type and operational requirements.

The website may use cookies or similar technologies for basic site operation, security, session handling, preference storage, analytics, and performance monitoring.

You can manage cookies through your browser settings. Some website or portal features may not work correctly if required cookies are disabled.

Subject to applicable law and practical verification, you may ask us to confirm whether we hold your personal information, request access to it, request correction, request deletion where appropriate, object to certain processing, or withdraw consent where processing is based on consent.

Some records may need to be retained where required for payment records, accounting, security, legal compliance, dispute handling, or legitimate business administration.

We may send service messages related to enquiries, orders, payments, reports, support, policy updates, or security. Where we send optional marketing messages, you may opt out using the available unsubscribe or contact method.

Opting out of optional marketing does not stop necessary service, payment, legal, or security messages.

Subtle Estimates is intended for adults and businesses planning residential building work. We do not knowingly request personal information from children. If a child has supplied personal information without appropriate consent, please contact us so that we can review and delete it where appropriate.

If we become aware of a security compromise affecting personal information, we will assess the incident and take reasonable steps required by applicable law, which may include notifying affected persons and the Information Regulator where required.

Privacy questions, correction requests, access requests, or deletion requests can be sent to estimates@subtleconsulting.co.za or raised through our official WhatsApp contact channel.

We may need to verify your identity before acting on a privacy request.

We may update this Privacy Policy from time to time. The latest version displayed on this page applies from the last updated date below.