MyPayrollOnMyPayrollOn

Privacy Policy

Last updated: 28 May 2026 — South Africa edition

MyPayrollOn (“we”, “us”) takes your privacy seriously. Payroll data is among the most sensitive data a business holds — employee salaries, tax numbers, and banking details. This policy explains what we collect, why, and how to exercise your rights under the Protection of Personal Information Act (POPIA).

What we collect

  • Account info — your name, email, company name, and password hash. We never store passwords in plain text.
  • Employee payroll data — employee names, ID/passport numbers, tax reference numbers, banking details, salary structures, leave balances, and payroll run history. This is your data; we hold it only to provide the Service.
  • Usage data — request logs (IP, user-agent, timestamp) used to operate and protect the Service.
  • Cookies — a session cookie for authentication. We do not use third-party tracking cookies on the marketing site.

Why we collect it

To run the Service, communicate with you about it, secure it against abuse, and meet our legal obligations under the Protection of Personal Information Act (POPIA) and SARS record-keeping requirements.

Where it lives

Application servers run on Vercel. Your payroll data lives in an AWS RDS Postgres database in af-south-1 (Cape Town). We do not transfer your data outside South Africa and we do not share it with third parties for marketing.

Subprocessors

We rely on a small number of trusted services to operate:

  • Vercel — application hosting
  • Amazon Web Services (RDS, S3) — database and file storage, hosted in af-south-1 (Cape Town)
  • Email provider — transactional email delivery (specific provider available on request)

Your rights under POPIA

You can:

  • Access and export your data — payroll reports and employee records are exportable at any time.
  • Delete your data — close your account from Settings or email privacy@mypayrollon.com.
  • Correct your data — directly in the product or via support.
  • Object to processing — email us and we'll resolve as quickly as we can.

Retention

We keep your data for as long as your account is active. After closure, we retain payroll records for 5 years as required by SARS, and delete all other data promptly.

Contact

Questions or rights requests: privacy@mypayrollon.com.

This page is a starting point and not legal advice. We will publish the binding version when we go GA.