Security & Privacy

Security, privacy, and consent are part of how this site and product are being built.

This page explains what the website collects now, how contact data is used, how analytics consent works, and the direction GrapeFinance is taking for product security and privacy.

What we collect on this site

The site currently collects only what it needs for contact and consent handling.

  • GrapeFinance is a product of Noubou Industries, and this site operates as part of that business.
  • Contact submissions collect your name, email address, message, and your acknowledgement that we may use those details to reply.
  • Basic technical details such as IP address and browser user agent are stored with form submissions to reduce abuse and help investigate delivery problems.
  • Consent choices for analytics and marketing categories are stored in your browser so the site can remember your cookie preferences.
  • Account signup happens in the app at app.grapefinance.co.za, not through this marketing-site contact form.
Website analytics

Analytics is now consent-based

Google Analytics is only loaded after you opt in to analytics cookies. If you keep analytics off, the site stays functional and the analytics tag does not load.

Marketing tools

Marketing tracking is held behind separate consent

Meta Pixel or similar ad-measurement tools are not loaded by default. If they are enabled later, they will stay behind separate marketing consent and this notice will be updated.

How your data is used

Purpose limitation matters more than vague promises.

Here is how GrapeFinance uses information collected through the site today and how that connects to the planned product.

Signup

Account creation happens in the app

If you choose to create an account, signup happens in the app rather than through the marketing site contact flow.

Contact

Used to respond to your enquiry

Contact-form details are used to reply to your message, provide support or product clarification, and maintain a basic record of the conversation.

Analytics

Used to understand what content is working

Analytics helps measure visits, pages, and successful lead actions after consent, so the site can be improved without forcing tracking on every visitor.

Security

Used to reduce abuse and protect the site

Technical submission data, server-side logging, and rate limiting are used to reduce spam, protect the inbox, and keep the public forms usable.

Storage and processors

Form submissions are stored on the server and sent to the GrapeFinance inbox.

  • Form submissions are stored server-side as a backup record and emailed to info@grapefinance.co.za.
  • Google Analytics is used only after analytics consent has been given.
  • If marketing measurement tools are added later, they will be described here and loaded only after marketing consent.
  • Because third-party tools may process data outside South Africa, some data may be handled across borders when those services are enabled.
Retention

We aim to keep records only as long as needed

Contact-form data is kept for support follow-up and operational record-keeping, then reviewed and removed when no longer needed for that purpose.

Your choices

You can change preferences later

You can reopen cookie preferences from the site at any time, and you can contact us if you want submitted contact details reviewed or removed.

Product direction

The app itself is being designed around narrower access and clearer boundaries.

Some of these controls relate to the app itself, not just the marketing site.

Accounts

Single-user scope keeps access boundaries clearer

The product direction avoids unnecessary account complexity and keeps ownership and access simpler.

Authentication

2FA and password-reset controls matter

Authentication is being treated as part of the trust model rather than an afterthought added only once people complain.

Documents

Statement handling should minimise stored secrets

If a statement PDF is password protected, the direction is to use the password only for document access and not store it as an ongoing credential.

Scope

Tax readiness is not tax filing or personal advice

GrapeFinance is being positioned to support organisation and clarity, not to impersonate SARS filing software or regulated financial advice.

If you need advice tailored to your personal financial situation, please contact us. We can help point you toward a personal financial advisor rather than presenting the app itself as that service.
Questions about privacy?

Ask directly or sign up with clear expectations.

See the product, review the privacy approach, manage cookie preferences, or contact us if you want clarity before creating your account.