Privacy Policy

Last updated: 4 June 2026

1. Introduction

Welcome to InfiniteBlue ("we," "our," or "us"). We are committed to protecting your personal information in accordance with the Protection of Personal Information Act, 2013 (POPIA) and other applicable data protection legislation. This policy explains how we collect, use, store, and safeguard your personal information when you visit our website or engage our services.

2. Responsible Party

For the purposes of POPIA, the responsible party is:
InfiniteBlue
Email: info@infinitebluelabs.com
Website: https://infiniteblue.africa

3. Personal Information We Collect

We may collect and process the following categories of personal information:

  • Identity Information – first name, last name, or similar identifiers.
  • Contact Information – email address, telephone number, and company name.
  • Technical Information – IP address, browser type and version, time zone, operating system, and device information collected via cookies and analytics tools.
  • Usage Information – information about how you interact with our website, including pages visited and referral sources.
  • Communication Information – any information you provide when you contact us through our forms or email.

4. Purpose of Processing

We process your personal information only for the following lawful purposes:

  • To respond to enquiries and provide the services you have requested.
  • To send project-related communications when you engage us for work.
  • To improve our website, services, and user experience.
  • To comply with legal obligations.
  • To protect the legitimate interests of our business, provided your rights are not overridden.

5. Lawful Basis for Processing

Under POPIA, we rely on the following conditions for lawful processing:

  • Consent – where you have voluntarily provided information (e.g., submitting our contact form or accepting cookies).
  • Contract – where processing is necessary to perform a contract with you or to take steps at your request before entering into a contract.
  • Legitimate interest – where processing is necessary for our legitimate business interests, such as improving our services, provided this does not prejudice your rights.
  • Legal obligation – where we are required to process your information by law.

6. Cookies and Analytics

Our website uses cookies and Firebase Analytics to understand how visitors interact with our site. Analytics are only activated after you provide explicit consent via our cookie banner. You may withdraw consent at any time by clearing your browser cookies or contacting us.

We also use Google reCAPTCHA to protect our forms from abuse. This service may collect technical data in accordance with Google's privacy policy.

7. Data Sharing and Third Parties

We do not sell your personal information. We may share your information with:

  • Service providers – such as Google (Firebase, reCAPTCHA) and email delivery services, solely to provide our services.
  • Legal authorities – where required by law or to protect our rights.

Where personal information is transferred outside of South Africa, we ensure appropriate safeguards are in place as required by POPIA Section 72.

8. Data Retention

We retain personal information only for as long as necessary to fulfil the purposes for which it was collected, or as required by law. Contact form submissions are retained for a maximum of 24 months, after which they are securely deleted.

9. Data Security

We implement appropriate technical and organisational measures to protect your personal information against unauthorised access, loss, destruction, or damage. These measures include encryption in transit (TLS), secure cloud hosting, and access controls limited to authorised personnel.

10. Your Rights Under POPIA

As a data subject, you have the right to:

  • Access – request confirmation of whether we hold your personal information and request a copy.
  • Correction – request that inaccurate or incomplete information be corrected.
  • Deletion – request the deletion of your personal information where it is no longer necessary.
  • Object – object to the processing of your personal information on reasonable grounds.
  • Withdraw consent – where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of prior processing.
  • Lodge a complaint – submit a complaint to the Information Regulator of South Africa if you believe your rights have been infringed.

11. Information Regulator

If you are not satisfied with how we handle your personal information, you have the right to lodge a complaint with:
The Information Regulator (South Africa)
Website: https://inforegulator.org.za
Email: enquiries@inforegulator.org.za

12. Changes to This Policy

We may update this privacy policy from time to time. Any changes will be posted on this page with an updated "Last updated" date. We encourage you to review this page periodically.

13. Contact Us

If you have questions about this privacy policy, wish to exercise your rights, or want to make a complaint, please contact us at:
Email: info@infinitebluelabs.com