QuantixrQuantixr← Back to home

Privacy Policy

Last updated: 27 June 2026

1. Who we are

Quantixr is a product operated by Quantrix ("we", "us"), the responsible party / data controller under the Protection of Personal Information Act, 2013 (POPIA) for information processed through this platform. Quantixr provides risk intelligence assessments of South African small and medium enterprises to authorised reviewer organisations.

2. Information we process

  • Reviewer account details (name, email, organisation).
  • SME business details submitted by a reviewer (name, registration, address, contact, financial documents).
  • Publicly available area-level economic and environmental indicators.
  • Publicly visible digital signals (e.g. business listing, website) for the SME.

3. Why we process it

Information is processed solely to generate a risk assessment requested by the reviewer organisation and to maintain the security and integrity of the platform. We do not sell personal information and do not use it for marketing.

4. Data sharing and recipients

We do not sell personal information and do not share it with third parties for marketing. We share personal information only with the following categories of recipients, and only as needed to operate the Service:

  • Paddle.com Market Limited ("Paddle") — our payment provider and Merchant of Record. Paddle receives reviewer billing details (name, email, billing address, payment instrument, transaction data) to process subscription payments, calculate and remit applicable taxes, issue invoices, and handle refunds. Paddle acts as an independent controller for payment data. See Paddle's Privacy Notice.
  • Infrastructure and hosting providers processing data on our instructions to run the platform (database, storage, email delivery).
  • Professional advisers and authorities where required by law or to protect our rights.

5. Lawful basis

Processing is carried out on the basis of the reviewer organisation's legitimate interest in conducting a risk review on behalf of an SME that has engaged with them, and to fulfil the contract between the reviewer organisation and Quantixr.

6. Retention

Assessment records are retained for the duration of the reviewer's subscription and for a further reasonable period to meet record-keeping requirements. Bank statement files are deleted after extraction and aggregation; only the calculated summary is retained.

7. Security

Information is stored on managed infrastructure with row-level access controls, encrypted in transit, and accessible only to the reviewer who submitted it and to Quantixr administrators for support purposes.

8. Your rights under POPIA

Data subjects have the right to access, correct, or request deletion of their personal information, and to lodge a complaint with the Information Regulator of South Africa. Requests can be sent to privacy@quantixr.co.za.

9. Contact

For privacy questions, contact privacy@quantixr.co.za.