ProHighLevel (Pty) Ltd respects your privacy. This policy explains what personal information we collect, why we collect it, how we use it, who we share it with, and the rights you have under the Protection of Personal Information Act, 4 of 2013 (POPIA).
On this page
1. Who we are
ProHighLevel (Pty) Ltd ("ProHighLevel", "we", "us", "our") is a South African business that provides CRM implementation, automation, AI integration, and digital infrastructure services built around the GoHighLevel platform. For the purposes of POPIA, we are the responsible party for personal information collected through this website and during the provision of our services to clients.
2. Information we collect
We only collect personal information that you provide to us or that we need in order to deliver our services.
2.1 Information you give us
- Contact form submissions: name, email address, phone number, company name, and the message you choose to send.
- Email correspondence: any information you include when you email us directly.
- Engagement information: details you share when scoping or running a project with us, including operational information about your business, your team, and your customers (only as required for delivery).
2.2 Information collected automatically
- Basic server logs: IP address, browser type, the page you requested, the time of the request, and the referring page. These are generated by the web server for security and operational diagnostics.
2.3 Information from third parties
- Where you provide your details through a third-party platform we operate on your behalf (such as a CRM enquiry form, WhatsApp, or social media channel we manage for a client), the information flows into the systems we are managing under instruction from our client.
3. How we use information
We use the personal information we collect to:
- Respond to enquiries you submit through the website.
- Provide proposals, scopes of work, and contracts.
- Deliver, support, and maintain the services we have agreed with you.
- Send service-related communications, including project updates, invoices, and operational notices.
- Improve the security, quality, and performance of our services.
- Comply with our legal, regulatory, and contractual obligations.
We do not sell your personal information. We do not use your personal information for advertising profiling.
4. Lawful basis
Under POPIA we process personal information on one or more of the following lawful bases:
- Consent: when you submit a contact form or sign up for a service.
- Contractual necessity: when processing is required to deliver a service you have engaged us for.
- Legitimate interest: for activities such as security monitoring, fraud prevention, and the ordinary running of our business, where this is balanced against your rights.
- Legal obligation: where the law requires us to process certain information (for example, tax and financial record-keeping).
5. Sharing and sub-processors
We do not share your personal information with third parties for their own marketing purposes. We do use trusted service providers to operate our business and deliver services. These providers process personal information only on our instructions and under appropriate contractual safeguards.
Our principal sub-processors include:
- GoHighLevel: CRM, automation, communications, and AI platform that underpins the services we deliver.
- Hostinger: website hosting and email infrastructure.
- Google Fonts: typography served from Google's CDN; loading the font triggers a request that exposes basic connection metadata to Google.
Where a client engages us to operate platforms on their behalf, the client is the responsible party for personal information held inside those platforms and we act as an operator under POPIA, processing personal information only on the client's documented instructions.
6. Where we store information
Personal information collected through this website is stored on infrastructure located in or accessible from South Africa and the European Union. Where personal information is transferred outside South Africa, we take reasonable steps to ensure the recipient is subject to laws, binding corporate rules, or contractual terms providing an adequate level of protection.
7. How long we keep information
We keep personal information only for as long as we need it for the purposes set out above, or for any longer period required or permitted by law.
- Contact enquiries that do not become engagements: deleted within 24 months.
- Client records and project files: retained for the duration of the engagement and for a period of 5 years thereafter for legal, tax, and audit purposes.
- Server logs: retained for up to 12 months.
8. Your rights under POPIA
You have the following rights in respect of your personal information:
- The right to be notified that your personal information is being collected.
- The right to access, correct, or delete the personal information we hold about you.
- The right to object to the processing of your personal information.
- The right to withdraw a previously given consent.
- The right to lodge a complaint with the Information Regulator of South Africa.
To exercise any of these rights, please contact us using the details at the end of this policy. We may ask you to verify your identity before acting on your request.
The Information Regulator can be contacted at inforegulator.org.za.
9. Cookies and tracking
Our website does not currently set its own tracking cookies. The site does, however, load assets from third-party services that may set their own cookies or generate connection metadata:
- Google Fonts: when the page loads, your browser fetches typography files from Google. Google may log the request, including your IP address and user-agent.
If we add analytics, advertising, or other tracking technologies in future, we will update this policy and provide an appropriate notice or consent mechanism.
You can configure your browser to block cookies and tracking. Some parts of websites may not function correctly if cookies are disabled.
10. Security
We take reasonable technical and organisational measures to protect personal information against loss, misuse, unauthorised access, alteration, and disclosure. These measures include encrypted transport (HTTPS) on this website, access control on internal systems, and ongoing review of sub-processors. No method of transmission or storage over the internet is fully secure, and we cannot guarantee absolute security.
If a security incident affecting your personal information occurs, we will notify the Information Regulator and affected individuals in accordance with POPIA.
11. Children
Our services are intended for businesses and the people who run them. We do not knowingly collect personal information from children under the age of 18. If you believe a child has provided us with personal information, please contact us and we will take appropriate steps to delete it.
12. Changes to this policy
We may update this policy from time to time to reflect changes in our practices, our services, or the law. The "Last updated" date at the top of this page shows when the policy was last revised. Material changes will be highlighted on the website or communicated to active clients by email.
13. How to contact us
For any questions about this policy, requests relating to your personal information, or to contact our Information Officer:
ProHighLevel (Pty) Ltd
Email: info@prohighlevel.co.za
Country: South Africa