Privacy Policy

CricSA (“we”, “our”, “us”) operates the website https://cricsa.co.za (the “Site”), which provides cricket news, live scores, results, fixtures, rankings, and related content.

This Privacy Policy explains how we collect, use, store, protect, and disclose your personal information in accordance with the Protection of Personal Information Act (POPIA) and recognised international data‑privacy standards.

2. Personal Data We Collect

  • Identifying Information
    Name, surname, username, email address, and telephone number (when voluntarily provided).
  • Account‑Related Data
    Password (encrypted), security question answers (encrypted), login timestamps, and IP address.
  • Device & Technical Information
    Device type, operating system, browser type, language settings, unique device identifiers, and mobile‑advertising IDs.
  • Location Data
    Approximate geographic location derived from IP address or, where you permit, GPS coordinates.
  • Usage & Interaction Data
    Pages visited, links clicked, time spent on each page, search queries, content preferences, and score‑alert subscriptions.
  • Cookies & Similar Technologies
    First‑party and third‑party cookies, web beacons, pixel tags, and local‑storage data (see Cookie Policy).
  • Communications
    Content of emails, support tickets, feedback, and any attachments you choose to send.

3. How We Collect Your Data

  • Direct Interactions
    When you register an account, sign up for newsletters, submit a comment, or contact us via the Site’s contact form.
  • Automated Technologies
    Through the use of cookies, server logs, and analytics tools (e.g., Google Analytics, Hotjar).
  • Third‑Party Integrations
    When you use social‑login options (e.g., Google, Facebook) or interact with embedded third‑party widgets (YouTube, Twitter).
  • Marketing & Promotional Activities
    Via contest entries, surveys, or partnership programmes that request personal details.

4. Why We Process Your Data

  • Service Delivery
    To create and manage your account, deliver personalised news feeds, live‑score alerts, and enable comment or forum participation.
  • Communication
    To send newsletters, updates, security notices, and responses to enquiries.
  • User Engagement & Experience
    To remember preferences, optimise site navigation, and present relevant content.
  • Analytics & Improvements
    To analyse traffic patterns, monitor performance, and enhance functionality.
  • Advertising & Marketing
    To deliver targeted advertising, measure campaign effectiveness, and pursue partnership opportunities (subject to your consent).
  • Legal & Regulatory Obligations
    To comply with statutory duties, resolve disputes, enforce our Terms, and protect our legal rights.

5. Storage, Retention & Security

  • Data Centres
    Personal data is stored on secure, ISO‑27001‑certified servers located in South Africa unless otherwise disclosed (see Section 9).
  • Encryption
    All data in transit is protected with TLS 1.2 or higher; passwords and sensitive fields are stored using salted bcrypt hashing.
  • Access Controls
    Only authorised personnel with a legitimate business need may access personal data. Access logs are retained for 12 months.
  • Retention Periods
    • Account information: Retained for the duration of the account plus 2 years after deletion.
    • Newsletter/subscription data: Retained until you unsubscribe, after which we keep a minimal record for 6 months to prevent re‑marketing.
    • Analytics data (aggregated, non‑identifiable): Retained for up to 24 months.
  • Backup & Disaster Recovery
    Daily encrypted backups are performed; backup servers are isolated from production environments and subject to the same security standards.

6. Data Sharing & Disclosures

  • Service Providers
    We share data with third‑party vendors that process it on our behalf (e.g., email‑delivery services, cloud‑hosting providers, analytics platforms, payment processors). All such providers are bound by contractual clauses that enforce POPIA‑compliant confidentiality and security.
  • Advertising Partners
    To deliver personalised ads, we may share limited data (device ID, IP address, demographic aggregates) with advertising networks. No personally identifying information (PII) is sold or transferred without your explicit consent.
  • Legal Requirements
    We may disclose personal data to law enforcement agencies, regulators, or courts when required by law, a court order, or to protect our legal rights.
  • Business Transfers
    In the event of a merger, acquisition, or sale of assets, personal data may be transferred to the acquiring entity, provided the new owner continues to meet POPIA obligations.

7. Your POPIA Rights

You have the following rights regarding your personal information. Exercise of any right must be made in writing to contact@cricsa.co.za (subject to verification of identity).

  • Right of Access
    Request a copy of the personal data we hold about you.
  • Right to Rectification
    Request correction of inaccurate, incomplete, or out‑of‑date data.
  • Right to Erasure (‘Right to be Forgotten’)
    Ask for deletion of your data where it is no longer necessary for the purposes for which it was collected, subject to any legal retention obligations.
  • Right to Restriction of Processing
    Request suspension of processing while a dispute about data accuracy or legality is resolved.
  • Right to Object
    Object to processing for direct‑marketing purposes or where processing is based on legitimate interests that you feel unduly affect you.
  • Right to Data Portability
    Receive your personal data in a structured, commonly used electronic format and transmit it to another controller where technically feasible.
  • Right to Withdraw Consent
    Where processing is based on consent, you may withdraw that consent at any time without affecting the lawfulness of prior processing.

8. Cookies & Tracking Technologies

Our Cookie Policy (Section 9) details the categories of cookies we use, their purposes, and how you can manage them.

In short, by continuing to browse CricSA, you consent to the placement of essential and non‑essential cookies as described.

9. Cross‑Border Data Transfers

  • Primary Hosting
    All core personal data is stored on servers located within the Republic of South Africa.
  • Third‑Party Services
    Certain service providers (e.g., email‑marketing platforms and analytics services) may process data on servers located outside South Africa (e.g., the United States, the European Union). In such cases:
    • We ensure that the recipient is bound by an approved data‑transfer mechanism (Standard Contractual Clauses, EU‑US Privacy Shield (where applicable), or similar).
    • We only transfer the minimum data necessary for the specific service.
    • You are notified of any transfer that may affect your data protection rights.

10. Security of Children’s Data

Our services are not directed at children under 13 years of age. We do not knowingly collect personal data from children. If we become aware that such data has been inadvertently collected, we will promptly delete it.

11. Retention of Policy

We may amend this Privacy Policy from time to time. Any material changes will be posted on the Site with a revised “Effective Date.” Continued use of the Site after such notice constitutes acceptance of the updated policy.

12. Contact Us

If you have questions, concerns, or wish to exercise any of your POPIA rights, please contact us at:

  • Email: 
    cricsacoinfo@gmail.com
  • Address:
    CricSA, P.O. Box 1234, Johannesburg 2000, South Africa
  • Phone:
    +27 19 153 4267 (business hours)
Table Of Contents
  1. 2. Personal Data We Collect
  2. 3. How We Collect Your Data
  3. 4. Why We Process Your Data
  4. 5. Storage, Retention & Security
  5. 6. Data Sharing & Disclosures
  6. 7. Your POPIA Rights
  7. 8. Cookies & Tracking Technologies
  8. 9. Cross‑Border Data Transfers
  9. 10. Security of Children’s Data
  10. 11. Retention of Policy
  11. 12. Contact Us
Scroll to Top