Privacy Policy

Arturf Padel mobile application and related services
(iOS: de.arturf.app · Android: de.arturf.app)

This policy explains how we collect, use, store, and share personal information when you use Arturf Padel. It is intended to align with the Protection of Personal Information Act, 2013 (POPIA) (South Africa) and, where applicable, the General Data Protection Regulation (EU) 2016/679 (GDPR) and other relevant laws. If any provision conflicts with mandatory local law, the local law prevails for users in that jurisdiction.

1. Who we are (data controller / responsible party)

The party responsible for your personal information in connection with Arturf Padel is:

ISMAA-EEL SAMSODIEN
Trading / developer name: Arturf Dev (Arturf Padel)
1 Prunus, Lentegeur, Cape Town, Mitchells Plain 7785
South Africa

Privacy and app-related inquiries: [email protected]

2. Scope

This policy applies to personal information processed through the Arturf Padel app, related websites or deep links (including arturf.de where used for the service), customer support, and operational emails or notifications tied to your account. It does not govern third-party services that you may access via links outside our app; those services have their own policies.

3. Information we may collect

Depending on how you use Arturf Padel, we may process categories such as:

Identity and contact data: e.g. name, email address, phone number.
Account and authentication data: account identifiers; credentials stored using secure methods (e.g. hashed passwords) where applicable; sign-in methods you choose (e.g. social login, if enabled).
Loyalty and programme data: points, tiers or status, reward redemptions, and related transaction history within the app.
Technical and usage data: device or app identifiers, limited IP or network data for security and diagnostics, crash or error logs, aggregated analytics, and approximate usage patterns.
Support communications: content you send when contacting support.
Marketing: preferences and, where we use optional marketing, records of consent or opt-out.

We do not intentionally collect special categories of personal information (such as health data) unless the law requires it or you clearly provide it for a stated purpose.

4. How we use information (purposes and legal bases)

We use personal information for purposes including:

Providing the service — creating and maintaining your account, operating the loyalty programme, and delivering in-app features you request. (Contract; POPIA lawful processing for fulfilling obligations.)
Security and integrity — detecting abuse, fraud, or technical issues, and protecting users and systems. (Legitimate interest / legal duty; POPIA compatible lawful purpose.)
Compliance — meeting legal, tax, or regulatory requirements where applicable. (Legal obligation.)
Communications — transactional messages about your account or service; with your consent where required, promotional communications you have opted into. (Consent or legitimate interest as appropriate.)
Improvement — understanding aggregated usage to improve stability and features, in a way that does not require identifying you unless necessary. (Legitimate interest.)

Where GDPR applies, we rely on the bases indicated above (Articles 6 and, for marketing cookies or similar, Article 7 consent where relevant). Where POPIA applies, processing is limited to lawful, legitimate, and compatible purposes.

5. Retention

We keep personal information only as long as needed for the purposes in this policy, unless a longer period is required by law. Account data is generally retained while your account is active and for a reasonable period afterward to resolve disputes, enforce terms, or comply with legal duties. Logs and security records may be kept for shorter, defined periods. When retention ends, we delete or anonymise data where feasible.

6. Sharing and subprocessors

We may share personal information with:

Service providers who host, operate, or support the app on our instructions (e.g. cloud infrastructure, authentication, analytics, push notifications, email delivery, app distribution, customer support tools). They may only use data to provide those services and must protect it appropriately.
App stores and platforms (e.g. Apple App Store, Google Play) that collect limited technical data under their own policies.
Authorities when required by law or to protect rights, safety, and security.
Business transfers — if ownership of the app or related assets changes, information may transfer to the successor under safeguards.

If personal information is transferred outside South Africa or the EEA, we use appropriate safeguards where required (e.g. contractual clauses or adequacy decisions).

7. Cookies and similar technologies

Our mobile app may use SDKs or similar technologies for essential operation, security, and (where you agree) analytics or marketing. Preferences can often be controlled in device or app settings, and where law requires consent for non-essential tracking, we will ask before enabling it.

8. Automated decision-making

We do not use solely automated decisions that have legal or similarly significant effects on you, unless we clearly disclose otherwise and provide a lawful basis and recourse as required by law.

9. Children

Arturf Padel is not directed at children below the age at which valid consent can be given for data processing in your country. If you believe we have collected a child’s personal information without appropriate authority, contact us and we will take appropriate steps.

10. Security

We implement appropriate technical and organisational measures designed to protect personal information against unauthorised access, loss, or misuse. No method of transmission or storage is completely secure; we encourage strong passwords and device security.

11. Your rights

Depending on your location, you may have rights to access, correct, delete, restrict, or object to certain processing, to withdraw consent where processing is consent-based, to data portability where applicable, and to lodge a complaint with a supervisory authority.

South Africa (POPIA): You may contact us at [email protected] to exercise rights or query our processing. You may also complain to the South African Information Regulator.

European Economic Area (GDPR): You may contact us at the same address. You may lodge a complaint with your local data protection authority.

12. Changes to this policy

We may update this policy from time to time. We will post the revised version and, where appropriate, notify you through the app or by email. Continued use after the effective date may constitute acceptance of material changes where permitted by law.

Last updated: 6 May 2026