1. Introduction

This Protection of Personal Information Act (POPIA) Compliance Policy outlines how DAISA (Database for the Accommodation Industry in South Africa) collects, processes, stores, and protects personal information in accordance with the Protection of Personal Information Act, 4 of 2013 (POPIA).

By using our website, services, or submitting personal information to DAISA, you consent to the practices described in this policy.

2. Purpose of Processing Personal Information

DAISA collects and processes personal information for the following purposes:

  • To maintain the guest behavior database for the accommodation industry in South Africa.

  • To verify guest behavior records and provide access to registered accommodation businesses.

  • To communicate with members, respond to inquiries, and manage accounts.

  • To improve our website, services, and user experience.

  • To comply with legal and regulatory obligations.

3. Personal Information Collected

DAISA may collect the following types of personal information:

  • Full names, ID or passport numbers

  • Contact details (email address, phone number)

  • Business or accommodation establishment information

  • Guest behavior data and verification records

  • Payment and transaction details (processed securely through third-party payment portals such as PayFast or Stripe)

4. How Personal Information Is Collected

Personal information is collected through:

  • Online forms completed by users or members

  • Account registration and verification processes

  • Email or direct communication with DAISA

  • Payment transactions handled via secure payment gateways

5. Lawful Basis for Processing

DAISA processes personal information lawfully, based on one or more of the following grounds:

  • The data subject has provided consent.

  • Processing is necessary to perform a service or contract.

  • Processing is required by law or regulation.

  • Processing is in the legitimate interest of DAISA and the accommodation industry in South Africa, to maintain an accurate, trusted, and fair guest behavior database.

6. Data Storage and Security

DAISA is committed to keeping all personal information secure.
Appropriate technical and organizational measures are implemented to prevent unauthorized access, loss, or misuse of information.
All data is stored on secure servers and protected using SSL encryption and firewall technology.

7. Sharing of Personal Information

Personal information will only be shared when necessary to:

  • Verify guest behavior with registered accommodation businesses.

  • Comply with legal obligations or court orders.

  • Facilitate payments through third-party portals such as PayFast or Stripe.

DAISA does not sell or rent personal information to any third parties.

8. Data Retention

Personal information is retained only for as long as necessary to fulfill the purpose for which it was collected, or as required by law.
Once the information is no longer needed, it will be securely deleted or anonymized.

9. Your Rights Under POPIA

In accordance with the POPI Act Of 2013, you have the right to:

  • Request access to your personal information held by DAISA.

  • Request correction or deletion of inaccurate or outdated information.

  • Withdraw consent for processing, where applicable.

  • Lodge a complaint with the Information Regulator of South Africa.

Information Regulator of South Africa
Website: https://www.justice.gov.za/inforeg
Email: inforeg@justice.gov.za

10. Updates to This Policy

DAISA reserves the right to update or amend this POPIA Compliance Policy at any time.
All changes will be published on this page with an updated effective date.

11. Contact Information

For any POPIA-related inquiries or requests, please contact:

Information Officer: Daniel Terblanche
Email: admin@daisa.co.za
Location: Worcester, Western Cape, South Africa

Scroll to Top