Privacy Policy

LegalCaseManager (“we”, “us”, “our”) is committed to protecting the personal information of its users in accordance with the Protection of Personal Information Act, 2013 (POPIA) and all applicable South African legislation.

This Privacy Policy explains how we collect, use, store, and protect your personal data when you use our platform at legalcasemanager.co.za.

Account Information: Name, email address, password (hashed), phone number (optional).

Case Data: Case details, witness information, statements, testimonies, notes, documents, and analysis results that you enter into the platform.

Payment Information: Billing details processed securely through Flutterwave. We do not store credit card numbers directly.

Usage Data: Login timestamps, device sessions, audit logs, and platform interaction data.

Cookies: We use essential session cookies for authentication and platform functionality. No third-party tracking cookies are used.

We process your personal information for the following purposes:

• Providing and maintaining the LegalCaseManager platform and services
• User authentication and account security (OTP, device session management)
• Processing payments via our payment partner, Flutterwave
• AI-powered case analysis and witness comparison tools
• Communicating with you about your account, billing, and platform updates
• Complying with legal obligations and law enforcement requests

We share your personal information only with:

• Flutterwave: Payment processing (name, email, payment amounts)
• Cloud Infrastructure Providers: Secure hosting and data storage (encrypted)
• AI Processing: Anonymised case data for AI analysis (no personally identifiable information is sent to AI models)

We do not sell, rent, or trade your personal information to any third parties for marketing purposes.

We retain your data for as long as your account is active. Upon account deletion or written request:

• Account data is deleted within 30 days
• Case data is soft-deleted and permanently removed after 90 days
• Audit logs may be retained for up to 12 months for security and compliance purposes
• Payment records are retained as required by South African tax legislation (5 years)

Under POPIA, you have the right to:

• Access: Request a copy of the personal information we hold about you
• Correction: Request correction of inaccurate or incomplete data
• Deletion: Request deletion of your personal data (subject to legal retention requirements)
• Objection: Object to the processing of your personal information
• Portability: Request your data in a portable format

To exercise any of these rights, contact us at [email protected].

We implement industry-standard security measures including:

• Encryption in transit (TLS/SSL) and at rest
• Secure password hashing (bcrypt)
• Two-factor authentication (OTP)
• Audit trails for all data modifications
• User-level data isolation between accounts

For full details, see our Security Statement.

For privacy-related queries or requests:

Email: [email protected]

Website: legalcasemanager.co.za

You may also lodge a complaint with the Information Regulator (South Africa) at inforegulator.org.za.