BodmasBooksAI
POPIA Compliant

Privacy Policy

Last updated: 3 June 2026

1. Introduction

BodmasBooksAI ("we", "us", "our") respects your privacy and is committed to protecting your personal information in compliance with the Protection of Personal Information Act (POPIA) of South Africa and other applicable data protection laws. This Privacy Policy explains how we collect, use, store, and share your information when you use our Service at bodmasbooksai.abacusai.app.

2. Information We Collect

Information You Provide

  • Account information: Name, email address, and password (hashed) when you register
  • Google account data: Name and email address if you sign in with Google SSO
  • Prospect data: Names, roles, companies, and industries you enter to generate emails
  • Payment information: Processed by Paystack — we do not store credit card numbers or bank details

Information Collected Automatically

  • Usage data (pages visited, features used, email generation counts)
  • Device and browser information
  • IP address and approximate location
  • Cookies and similar technologies for session management

3. How We Use Your Information

We use your information to:

  • Provide, maintain, and improve the Service
  • Process payments and manage your subscription
  • Generate personalized cold emails based on prospect data you provide
  • Send account-related communications (billing confirmations, service updates)
  • Monitor usage to prevent fraud and enforce our Terms of Service
  • Comply with legal obligations

We do not sell your personal information to third parties.

4. Data Sharing

We share your information only with:

  • Paystack: To process payments securely (Paystack's privacy policy applies to payment data)
  • Google: If you use Google SSO for authentication (Google's privacy policy applies)
  • AI Service Providers: Prospect data is sent to our AI provider to generate emails. This data is not stored by the AI provider beyond the duration of the request.
  • Legal requirements: If required by law, court order, or governmental authority

5. Data Storage & Security

Your data is stored in secure, encrypted databases. We implement appropriate technical and organizational measures to protect your personal information, including:

  • Password hashing with bcrypt
  • HTTPS encryption for all data in transit
  • Secure session management with JWT tokens
  • Access controls limiting data access to authorized systems only

6. Data Retention

We retain your data as follows:

  • Account data: Retained for the duration of your account, plus 12 months after deletion
  • Generated emails: Stored in your account history until you delete them or your account is closed
  • Payment records: Retained for 5 years as required by South African tax and financial regulations
  • Usage logs: Retained for 90 days for security and troubleshooting purposes

7. Your Rights Under POPIA

As a data subject under the Protection of Personal Information Act, you have the right to:

  • Access: Request a copy of the personal information we hold about you
  • Correction: Request correction of inaccurate or incomplete information
  • Deletion: Request deletion of your personal information (subject to legal retention requirements)
  • Objection: Object to the processing of your personal information
  • Portability: Request your data in a structured, commonly used format

To exercise any of these rights, email us at [email protected]. We will respond within 30 days.

8. Cookies

We use essential cookies for authentication and session management. These are strictly necessary for the Service to function. We use Google Analytics for anonymous usage statistics. You can disable analytics cookies in your browser settings without affecting the Service.

9. Children's Privacy

The Service is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us and we will delete it.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via email or a notice on the Service. The "Last updated" date at the top indicates the most recent revision.

11. Contact & Information Officer

For privacy-related inquiries or to exercise your POPIA rights:

Email: [email protected]

Business: BodmasBooksAI

Website: bodmasbooksai.abacusai.app

If you are not satisfied with our response, you may lodge a complaint with the South African Information Regulator at inforegulator.org.za.