.png)
.svg)
.svg)
Privacy Policy
This Privacy Policy explains how and why MENSCH collects, uses, stores and protects personal data when you:
โ
- Visit our website (www.mensch.club);
- Contact us via our website;
- Engage with us in a professional capacity; or
- Receive business-to-business communications from us.
โ
It also explains your rights under applicable data protection laws, including the Protection of Personal Information Act (POPIA), the UK General Data Protection Regulation (UK GDPR), and the EU General Data Protection Regulation (EU GDPR). We collect limited personal data and only process it where we have a lawful basis to do so. We may update this Privacy Policy from time to time. The latest version will always be published on this page. If we make material changes, we will update the โLast updatedโ date. If you have questions about this Policy or how we handle personal data, contact: weare@mensch.club
1. WHO WE ARE
โ
This website is operated by:
K2019049395 Pty Ltd Trading as MENSCHRegistered address: 3 Vesperdene Road, Greenpoint, Cape Town, Western Cape, 8005, South AfricaEmail: weare@mensch.club
For the purposes of data protection law, we act as a data controller unless otherwise stated.
2. PERSONAL DATA WE COLLECT
โ
2.1 Contact Form Data
When you contact us via our website, we may collect:
- Name
- Email address
- Company name
- Any information you include in your message
We use this data to respond to your enquiry and assess potential business relationships.
2.2 Analytics and Technical Data
We use Google Analytics and similar technologies to collect:
- IP address
- Device type and browser information
- Operating system
- Pages visited
- Time spent on pages
- Referral source
This information is used to understand website performance and improve user experience. Non-essential cookies are only activated with your consent via our cookie banner.
2.3 Business-to-Business Outreach
We may collect professional contact details such as:
- Name
- Job title
- Company
- Work email address
We do this where we identify a legitimate professional alignment with our services. This processing is based on legitimate interest. You may object at any time (see Section 9).
2.4 Client and Project Data (Not Collected via Website)
In the course of delivering brand services, we may process:
- Client contact details
- Workshop participant names and professional information
- Project-related communications
- Information voluntarily shared during brand or strategy sessions
We do not process payments or billing data via our website. Client and project data may be stored in secure cloud-based systems, including platforms such as Google Drive, Notion, or equivalent tools used in our operations.
Depending on the engagement, we may act as:
- A data controller (where we determine how and why personal data is processed); or
- A data processor (where we process data on a client's documented instructions).
3. Lawful Basis for Processing
โ
We process personal data on the following lawful bases:
- Consent โ where you accept cookies or voluntarily submit information
- Legitimate Interest โ for B2B outreach, website improvement and business development
- Contractual Necessity โ where processing is required to deliver agreed services
- Legal Obligation โ where required under applicable law
Where we rely on legitimate interest, we ensure that such processing does not override your rights and freedoms.
4. Cookies
โ
We use cookies to:
- Ensure core website functionality
- Analyse traffic and usage
- Improve performance and user experience
You can manage or withdraw consent to non-essential cookies at any time through our cookie banner.
5. Sharing of Personal Data
โ
We may share personal data with trusted service providers, including:
- Website hosting providers
- Google (analytics services)
- Cloud storage providers (e.g. Google Drive, Notion or similar platforms)
- Professional advisers where legally required
We do not sell personal data.
We may disclose personal data where required by law or regulatory authorities.
6. International Transfers
โ
Because we operate globally and use international service providers, personal data may be transferred outside South Africa, the UK or the European Economic Area.
Where this occurs, we implement appropriate safeguards, including:
- Standard Contractual Clauses
- Contractual data protection commitments
- Transfers to jurisdictions with recognised adequacy decisions
All international transfers are conducted in compliance with POPIA and applicable GDPR requirements.
7. Data Retention
โ
We retain personal data indefinitely unless:
- You request deletion;
- We determine the data is no longer necessary; or
- We are legally required to retain or delete it for a specific period.
Where legally permissible, we will delete personal data upon verified request.
8. Data Security
โ
We implement appropriate technical and organisational measures to protect personal data against:
- Unauthorised access
- Loss
- Misuse
- Alteration
- Unlawful disclosure
However, no internet-based system can be guaranteed to be completely secure.
9.Your Rights
โ
Depending on your location, you may have the right to:
- Request access to your personal data
- Request correction of inaccurate data
- Request deletion of your data
- Object to or restrict processing
- Withdraw consent (where processing is based on consent)
- Request data portability
- Lodge a complaint with your relevant data protection authority
If you are located in:
- South Africa โ You may contact the Information Regulator.
- United Kingdom โ You may contact the Information Commissioner's Office (ICO).
- European Union โ You may contact your local Data Protection Authority.
To exercise your rights, contact: weare@mensch.club
โ
10. Updates to This Policy
โ
We may update this Privacy Policy from time to time. The most current version will always be published on this page with the updated date. This Privacy Policy was last updated on 2nd March 2026.
.svg)
.png){kind=logo}
