TemplatesFeaturesHow it worksPricing
Log inBuild my CV — free

POPIA Compliance

Last updated: June 23, 2026

Under the **Protection of Personal Information Act (POPIA)** of South Africa, cvitae is committed to protecting your personal information and ensuring lawful data processing. Here is how we ensure POPIA compliance:

Consent First

You have full control over your CV contents and when you publish it.

Secure Data

Data is encrypted on Supabase servers using secure RLS structures.

Privacy Controls

Contact details remain hidden until you approve access.

1. Purpose Specification

We collect personal details (employment history, email address, phone number, etc.) for the sole purpose of enabling you to create a professional CV and share it securely with prospective employers.

2. The Contact-Reveal Flow

To respect POPIA data-minimization guidelines, our **Contact-Reveal flow** allows you to publish your CV online without publicly exposing your email address or phone number. When recruiters request access:

  • We notify you via email with the requester's name, company, and phone.
  • Your contact details are only shared once you click "Approve".
  • The secure access link sent to the recruiter automatically expires after 7 days.

3. Access and Deletion Rights

You can review, modify, or completely delete your personal details at any time from your account dashboard. Deleting a CV or deleting your profile completely purges it from our databases immediately and permanently.

4. Information Officer Contact

If you have queries regarding data handling under POPIA, please reach out to our team at **privacy@cvitae.co.za**.