Privacy Policy

Marlbank One Loft Race (“Marlbank OLR”, “we”, “us” or “our”) respects privacy and is committed to protecting personal information processed through our website, digital systems, marketplace features, communication channels and related services.

This Privacy Policy explains how information may be collected, used, shared, stored, protected and retained when you use the Platform, create an account, register birds, buy or sell through the marketplace, submit documents, make payments, receive payouts, communicate with us or otherwise interact with our services.

We may collect identity and profile information, including names, surnames, usernames, passwords, email addresses, phone numbers, billing addresses, delivery addresses, city, province, country and related account details.

We may collect race-related and marketplace-related information, including fancier details, bird details, pedigrees, entry data, seller data, buyer data, listing details, transaction history, auction details, support requests and communications records.

We may collect verification information, including identity numbers, company registration details, proof-of-identity records, proof-of-address records, banking confirmation details, seller verification documents and other records reasonably required for verification, compliance, anti-fraud controls or payout administration.

We may collect financial and payout-related information, including bank account holder names, bank names, branch information, account numbers, payment references, payout identifiers, processor tokens, invoice data, refund history and transaction records.

We may collect payment-related data, including payment method metadata, processor tokens, transaction status information, billing information and anti-fraud indicators. Where card payments are offered, card data may be handled through approved payment service providers or payment infrastructure rather than directly exposed across ordinary Platform operations.

We may collect technical and device information, including IP-related data, browser information, operating system information, device identifiers, referral data, crash data, usage data, page interactions, timestamps, session information and approximate location information inferred from device or network activity.

We may collect communications data, including messages sent through contact forms, support forms, marketplace messaging, email interactions, WhatsApp interactions or administrative communication channels.

Some information processed through the Platform may be sensitive or high-risk in nature, including identity numbers, payment-related information, bank details, location-linked data, verification documents and records relating to account access or fraud prevention.

Where such information is processed, Marlbank OLR aims to apply stricter access controls, processing limits, retention controls and security safeguards appropriate to the sensitivity and purpose of the information.

Information may be collected directly when you complete registration forms, marketplace listing forms, checkout flows, payout forms, seller onboarding flows, support forms, newsletter forms, contact forms or compliance forms.

Information may be collected when you upload documents, communicate with us, submit race information, purchase items, sell items, request support, request payouts, interact with auctions or otherwise use Platform functionality.

Technical information may also be collected automatically through cookies, logs, analytics systems, device/browser interactions and standard website technologies.

We may process information to create and manage accounts, process race registrations, manage entries, administer marketplace listings, process purchases, process seller payouts, support auctions, prevent fraud, verify users, support customer service, improve Platform performance, communicate operational notices, respond to legal obligations and protect the safety and integrity of the Platform.

We may also use personal information for transaction support, identity verification, payment verification, chargeback management, dispute resolution, internal audit trails, fraud investigations, listing moderation, account security, compliance checks and business continuity.

POPIA sets conditions for lawful processing of personal information and requires responsible parties to protect the integrity and confidentiality of personal information through appropriate safeguards. :contentReference[oaicite:2]{index=2}

Where Marlbank OLR uses operators or service providers to process information on its behalf, written arrangements and security obligations may be required under POPIA. :contentReference[oaicite:3]{index=3}

Payment account data requires additional security controls. PCI DSS is maintained by the PCI Security Standards Council as a baseline of technical and operational requirements designed to protect payment account data. :contentReference[oaicite:4]{index=4}

Accordingly, Marlbank OLR may use PCI-aligned or PCI-compliant service providers, hosted checkout tools, tokenisation, payment gateways or related controls rather than exposing raw card data broadly across internal systems.

We reserve the right to refuse, limit or delay payment functionality until payment-security, fraud-control and operational requirements are satisfied.

We may share information with payment processors, banking partners, hosting providers, analytics providers, messaging providers, customer-support tools, anti-fraud tools, verification providers, auction administration tools, legal advisers, accountants, auditors, insurers, technical contractors and other service providers where reasonably necessary for Platform operation and lawful purposes.

We may also share information with buyers, sellers, participants, logistics providers or race administrators where necessary to complete a transaction, facilitate a payout, support a listing, manage race participation or administer an auction or dispute.

We may disclose information where required by law, court order, lawful request, regulatory requirement or to protect rights, safety, property, Platform integrity or fraud-prevention interests.

Race-related and marketplace-related activity may involve the publication or display of certain information such as fancier names, bird details, listing details, seller profile information, auction details, buyer/seller transaction status indicators, race results, timings, bird counts or related reporting content.

By using the Platform in race, listing or auction contexts, you acknowledge that some information may be made visible where reasonably required for competition administration, marketplace functionality, transparency, reporting or transaction performance.

We may use cookies and analytics technologies to recognise sessions, understand usage, improve performance, support security, maintain preferences, troubleshoot technical issues and analyse Platform traffic.

We may process IP-related information and approximate location-related information for security monitoring, fraud prevention, diagnostics, geolocation controls, transaction review and service optimisation.

Marlbank OLR may implement reasonable technical and organisational measures to reduce the risk of unauthorised access, unlawful disclosure, data loss, misuse, alteration, fraud or operational compromise.

Such measures may include access controls, authentication measures, encryption or hashing where appropriate, processor controls, logging, role-based permissions, audit trails, fraud checks, backup procedures and incident-response processes.

No digital environment can guarantee absolute security, but security safeguards may be maintained and updated in line with operational risk and legal obligations.

POPIA requires notification of the Information Regulator and affected data subjects where there are reasonable grounds to believe personal information has been accessed or acquired by an unauthorised person, subject to the Act and its practical requirements. :contentReference[oaicite:5]{index=5}

Where relevant, Marlbank OLR may investigate security incidents, preserve logs, suspend access, engage specialists, notify users, notify regulators, require password resets, freeze payouts or take other protective steps.

We may retain information for as long as reasonably necessary for account administration, race administration, transaction processing, fraud prevention, audit trails, legal compliance, tax/financial recordkeeping, dispute resolution, enforcement of terms, insurance matters and operational continuity.

Retention periods may vary depending on the type of data, the user relationship, regulatory obligations, dispute risk and the nature of the transaction or service.

Some service providers or infrastructure providers may process or store information outside South Africa.

Where cross-border processing occurs, Marlbank OLR may rely on contractual, operational or provider-level safeguards considered appropriate for the relevant service relationship and legal context.

Subject to applicable law, you may request access to, correction of or deletion of certain personal information, or object to certain processing activities where such rights are available and applicable.

Requests may be subject to identity verification, legal exceptions, recordkeeping requirements, contractual obligations, fraud-prevention considerations and operational necessity.

POPIA contains protections relating to the processing of personal information of children. Where information relating to minors is submitted through the Platform, it should be submitted only by or under the authority of a parent, guardian or otherwise competent person where applicable. :contentReference[oaicite:6]{index=6}

We may update this Privacy Policy from time to time to reflect legal, operational, technical or business changes.

Updated versions become effective when published on the Platform or otherwise communicated through reasonable notice mechanisms.

For privacy, data-protection, verification or security-related questions, please contact Marlbank OLR through the website contact page.