← For providers

Data Processing Agreement

For listed providers. Version 2026-06-25.

This Data Processing Agreement (DPA) governs how a listed provider ("you") handles personal information of Life-Line users that we share with you. It is binding the moment you tick the DPA box at signup and from every lead you receive afterwards.

1. Roles

Life-Line is the responsible party. You are an independent responsible party for any personal information we share with the user's explicit consent. You are not our operator.

2. Purpose limitation

You may use shared personal information ONLY to respond to the user's lead and provide the service the user explicitly requested. No marketing, profiling, resale, or onward transfer to third parties.

3. Security

  • Encrypt personal information at rest and in transit.
  • Restrict access on a need-to-know basis. Maintain access logs.
  • Notify Life-Line within 24 hours of any suspected breach involving Life-Line user data.

4. Retention & deletion

Delete user personal information when the engagement ends, or within 30 days of a user revoking consent (we will notify you), whichever comes first. Retain only what the law requires.

5. User rights

You must honour reasonable POPIA requests (access, correction, deletion) within 21 days, and copy our Information Officer at privacy@life-line.co.za.

6. No cold-calling

You may not contact users who did not tick "Share my contact details". Pseudonymised leads must be answered through our in-platform channel.

7. Audit & termination

We may suspend your account on reasonable suspicion of breach. Material or repeat breaches terminate the agreement and forfeit any prepaid fees.

8. Governing law

South African law. Jurisdiction: the courts of the Western Cape.