Your Privacy Matters

Privacy Policy

Last updated: February 2026 — This policy explains how Slip a Tip (Pty) Ltd collects, uses, stores, and protects your personal information in compliance with the Protection of Personal Information Act (POPIA).

1. Responsible Party

The responsible party for the processing of your personal information is:

Slip a Tip (Pty) Ltd

Information Officer: legal@slipatip.co.za

Republic of South Africa

2. Information We Collect

Identity Information

  • Full legal name
  • South African ID number
  • Selfie / biometric data (Tier 2 FICA)

Contact Details

  • Mobile phone number
  • Email address

Financial Information

  • Bank account details (for payouts)
  • Transaction history and amounts
  • We never store credit/debit card numbers

Verification Documents

  • Proof of address (Tier 2 only)
  • Bank confirmation letter

Technical Data

  • IP address
  • Device fingerprint
  • Browser type and version

Usage Data

  • QR code scan data
  • Tip timestamps
  • Platform interaction logs

3. How We Use Your Information

Platform Operation

To facilitate digital tipping, process transactions, and manage your account.

FICA & AML Compliance

To verify your identity as required by the Financial Intelligence Centre Act and prevent money laundering.

Payout Processing

To process withdrawals to your verified bank account via EFT or Instant Money.

Fraud Prevention

To detect and prevent fraudulent transactions, unauthorized access, and platform abuse through device fingerprinting, velocity monitoring, and risk scoring.

Communication

To send you transaction notifications, verification reminders, and important platform updates.

Legal Compliance

To comply with applicable laws, regulations, and lawful requests from authorities.

4. Third-Party Disclosure

We do not sell, trade, or rent your personal information. We only share data with the following parties, strictly for the purposes stated:

Payment Gateway (Stitch)

Processing payments and EFT payouts securely. PCI-DSS compliant with 3D Secure — we never touch card data.

OTT Mobile / Meta (WhatsApp)

Issuing OTT Vouchers and delivering withdrawal PINs via WhatsApp for cash-out withdrawals.

Department of Home Affairs

Real-time ID validation for FICA Tier 1 verification.

South African Revenue Service (SARS)

Only when required by law or lawful demand.

Financial Intelligence Centre (FIC)

Reporting suspicious transactions as required under the FIC Act.

Biometric Verification Provider

Processing liveness checks for FICA Tier 2 verification.

5. Data Security

Encryption at Rest

All personal data, ID documents, and selfies are encrypted using AES-256 encryption at rest.

Encryption in Transit

All data transmitted between your device and our servers uses TLS 1.3 encryption.

PCI-DSS Compliance

Payment card data is handled exclusively by our PCI-DSS Level 1 certified payment provider.

Access Controls

Strict role-based access controls ensure only authorised personnel can access personal data.

Fraud Monitoring

Real-time fraud detection systems protect against unauthorised access and suspicious activity.

Regular Audits

We conduct regular security audits and vulnerability assessments to maintain data integrity.

6. Data Retention

We retain personal information only for as long as necessary to fulfil the purposes for which it was collected:

Active Account

Data retained for the duration of your active account plus 30 days after closure.

5 Years (AML Requirement)

Transaction records, FICA documents, and audit trails are retained for 5 years as required by the FIC Act and AML regulations.

On Request

If you leave the platform and no legal retention period applies, we will delete your personal data upon request.

7. Your Rights Under POPIA

As a data subject, you have the following rights:

Right of Access

Request confirmation of whether we hold your personal information and access to it.

Right to Correction

Request that we correct or update inaccurate or incomplete personal information.

Right to Deletion

Request that we delete your personal information (subject to legal retention requirements).

Right to Object

Object to the processing of your personal information on reasonable grounds.

Right to Complain

Lodge a complaint with the Information Regulator if you believe your rights have been infringed.

Right to Withdraw Consent

Withdraw your consent to the processing of personal information at any time.

8. Cookies & Tracking

Slip a Tip uses essential cookies and session tokens required for the Platform to function (authentication, security). We do not use advertising or third-party tracking cookies. Device fingerprinting is used solely for fraud prevention purposes as described in our FICA compliance documentation.

9. Children’s Privacy

The Platform is not intended for use by children under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child, we will take steps to delete it immediately.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the updated policy on the Platform and, where appropriate, via email or SMS. Your continued use of the Platform after such changes constitutes acceptance of the revised policy.

11. Information Regulator

If you are unsatisfied with our response to a privacy concern, you have the right to lodge a complaint with:

The Information Regulator (South Africa)

JD House, 27 Stiemens Street, Braamfontein, Johannesburg, 2001

Email: complaints.IR@justice.gov.za

Privacy Enquiries

Contact our Information Officer for any privacy-related questions or to exercise your rights.

Contact: legal@slipatip.co.za

Related Policies

PAIA Compliance →POPIA Compliance →FICA Compliance →Terms & Conditions →