S
SororaSign in →
Privacy Policy

How we handle your information

Last updated: 5 June 2026

1.Who we are

Sorora is a product of KASIG (Pty) Ltd (trading as Briggi Tech), based in Midrand, Johannesburg, South Africa.

Information Officer: [Information Officer Name]
The MD will appoint and confirm the Information Officer in writing before the production launch.

2.What personal information we collect

  • Business name and registration details
  • User name and email address
  • Customer contact details (name, email, phone, address, VAT number)
  • Financial transaction data (invoice amounts, payment records)
  • Login credentials — passwords are stored as a bcrypt hash and are never readable in plain text
  • Usage data (audit logs of document actions)

3.Why we collect it

  • To provide the Sorora document management service
  • To generate legally compliant tax invoices and business documents
  • To enable financial reporting and VAT compliance for SARS submissions
  • To maintain an audit trail as required by South African accounting standards

4.How we protect it

  • All data is stored on servers located in South Africa
  • Passwords are hashed using bcrypt (a minimum of 12 rounds) — they are never stored in plain text
  • Data in transit is encrypted via HTTPS (SSL/TLS)
  • Access is restricted to authenticated users within their own organisation only
  • An audit log is maintained for all data changes

5.Who we share it with

We do not sell your data to third parties. The only operational processors we use are:

  • Email delivery: Resend (resend.com) — recipient email addresses only
  • Payment processing: PayFast — transaction amounts only. Sorora does not store card data.
  • No other third-party data sharing

6.Your rights under POPIA

  • Right to access your personal information
  • Right to correct inaccurate information
  • Right to request deletion of your data
  • Right to object to processing
  • Right to lodge a complaint with the Information Regulator: inforegulator.org.za · complaints.IR@justice.gov.za

To exercise your rights, email: [privacy@sorora.co.za — placeholder]
The MD will configure this address once the production domain is live.

7.Data retention

  • Business documents: retained for 5 years (SARS requirement for financial records).
  • User accounts: retained while your subscription is active, deleted on written request — subject to the 5-year document retention rule above.

8.Changes to this policy

We will notify registered users of material changes via email at least 14 days before they take effect.

9.Last updated

5 June 2026

© 2026 KASIG (Pty) Ltd · trading as Briggi Tech · Midrand, Johannesburg
Sign inCreate an account
Powered by Sorora