Privacy Policy

Last updated: January 2025

πŸ”’ Your Privacy Matters

At e-skoloto, we prioritize your privacy and data security. This policy explains how we handle your information with the highest standards of protection.

πŸ“Š Data We Collect

Account Information

Name, email, ID number (for FICA compliance), phone number

Financial Data

Bank statement analysis (processed locally, not stored permanently)

Usage Analytics

Anonymous usage patterns to improve our service

πŸ›‘οΈ How We Protect Your Data

πŸ” Firebase Authentication

Google-grade security for login and account management

🏦 No Bank Details Stored

We never store your banking credentials or account numbers

πŸ“± Local Processing

Bank statements processed in-browser, then deleted

πŸ”’ Encrypted Storage

All data encrypted at rest and in transit

☁️ Serverless Architecture

No persistent servers - functions run on-demand and auto-scale

πŸ”— Secure APIs

All APIs protected with authentication tokens and rate limiting

⏰ Data Retention

Bank Statements: Processed immediately, not stored permanently
Financial Analysis: Kept for 12 months for loan history
Account Data: Retained while account is active
Usage Analytics: Anonymous data kept for 24 months

🎯 How We Use Your Data

  • Analyze your financial health for loan qualification
  • Provide personalized financial insights and recommendations
  • Comply with South African financial regulations (NCA, FICA)
  • Improve our service through anonymous usage analytics
  • Send important account and loan notifications

🚫 What We Don't Do

❌ Sell your data to third parties
❌ Store your banking passwords
❌ Share data without your consent
❌ Use data for marketing to others

πŸ—οΈ Serverless Security Architecture

⚑ Google Cloud Functions

Code runs in isolated, stateless containers that auto-destroy after execution

πŸ›‘οΈ No Attack Surface

No persistent servers to hack - infrastructure managed by Google

πŸ” API Security

JWT authentication, CORS protection, and request validation on all endpoints

πŸ“Š Auto-Scaling

Functions scale to zero when not in use - no idle servers storing data

🀝 Third-Party Services

Google Firebase

Authentication and secure data storage

Payment Processors

Secure loan disbursement and repayment processing

Credit Bureaus

Credit checks as required by law (with your consent)

πŸ‘€ Your Rights

Access

Request a copy of your data

Correction

Update incorrect information

Deletion

Request account and data deletion

Portability

Export your data in standard format

πŸ“ž Contact Us

Questions about your privacy? Contact us:

πŸ“§ Email: privacy@e-skoloto.co.za

πŸ“§ Data Protection Officer: dpo@e-skoloto.co.za

πŸ“± Phone: +27 (0) 11 123 4567

🏒 Address: Johannesburg, South Africa

πŸ›οΈ Information Regulator: inforegulator.org.za

πŸ‡ΏπŸ‡¦ POPIA Compliance Statement

e-skoloto is fully compliant with South Africa's Protection of Personal Information Act (POPIA).

βœ… Lawful Processing

We process personal information only with your consent and for legitimate financial services

🎯 Purpose Limitation

Data used only for loan assessment, financial analysis, and regulatory compliance

πŸ”’ Security Safeguards

Bank-grade encryption, secure authentication, and serverless architecture

πŸ“Š Data Minimization

We collect only essential information required for financial services

πŸ“‹ Regulatory Compliance

This policy complies with:

  • Protection of Personal Information Act (POPIA) - Full compliance with data protection requirements
  • National Credit Act (NCA) - Responsible lending and consumer protection
  • Financial Intelligence Centre Act (FICA) - Customer due diligence and identity verification
  • General Data Protection Regulation (GDPR) - International data protection standards
← Back to Dashboard

By using e-skoloto, you agree to this Privacy Policy.