PRIVACY POLICY

Last Updated: July 23, 2025

​

We, Compass Mining, provide fully managed Bitcoin-mining services on behalf of individuals and businesses. Clients choose a mining plan, we operate the hardware, host and manage the mining operations, and clients receive mining proceeds. We do not sell mining hardware to clients. We respect your privacy, and this Privacy Policy describes how we collect, use, disclose and secure your personal information when you interact with us, including via our website, when you sign up for a mining plan, or otherwise engage our services.

​

Some of the information we collect and process may include personal information or personal data. In South Africa under POPIA, “personal information” means information relating to an identifiable, living natural person (and in some cases an identifiable juristic person) that is held by a responsible party. This Policy applies only to such personal information unless otherwise stated.

This policy covers:

​

1. Collection and Use

2. Disclosure

3. Payments

4. Third Parties

5. Security

6. Your Rights

7. Data Retention

8. Cookies

9. South African Residents & POPIA

10. Age of Consent

11. Changes to this Privacy Policy

12. Questions & Contact Information

​​

Section 1 – Collection and Use

​

What categories of personal information do we collect?

Compass Mining collects information to provide our managed mining services. We collect information:

• When you provide it directly (e.g., sign up for a mining plan, fill in our registration form, ask a question).

• Automatically when you use our website.

• From third-party sources (for example payment processors or identity verification services).

 

The categories of information collected depend on your role (visitor, client, job applicant, service provider).

​

Definitions:

• Activity information: Data collected indirectly about your use of our site (IP address, device info, browsing history).

• Volunteered information: Data you submit via forms, enquiries, or direct contact.

• Biographical information: Name, address, email, phone number, etc.

• Payment/account information: Billing, transaction records, plan funding data.

 

Under POPIA, processing of personal information must comply with the eight conditions set out in Chapter 3 of POPIA. We collect and use your personal information for these lawful purposes: performance of contract (your mining plan), legitimate interests (our service provision), compliance with legal obligations, your consent where required.

​

Section 2 – Disclosure

​

We may disclose your personal information in the following circumstances:

• To our service providers (hosting facilities, payment processors, identity verification services, maintenance providers) who need the information to provide services to us.

• Where required by law (e.g., court order, regulatory request).

• To investigate misuse of our services, to protect our rights, customers’ rights, or others’ safety.

• To a prospective buyer or successor entity if our business is merged, sold, or reorganised; in such event we will endeavour to provide notice to you.

• With your consent or at your direction.

​

Section 3 – Payments

 

When you fund a mining plan, payments may be made via credit card, bank transfer, cryptocurrency or other means. These payment flows may be handled by third-party payment service providers and identity/fraud-prevention services. We do not operate as a payment gateway ourselves in all cases. We require that our payment partners adhere to applicable security standards (e.g., PCI-DSS) when handling card payments. However, we cannot guarantee that all transmission or storage of data is completely secure once it leaves your system.

​

Section 4 – Third Parties

 

Our third-party service providers collect, use and disclose your personal information only on our behalf, and only to the extent necessary to provide services to us (for example hosting, payment processing, identity verification, maintenance). You may have relationships with other third-party sites; we are not responsible for the privacy practices of other websites and you should review their policies.

​

Section 5 – Security

 

Protecting your personal information is taken seriously. We employ reasonable administrative, technical and physical safeguards to guard against loss, misuse, unauthorised access, disclosure, alteration or destruction of your personal information. For example, encryption (TLS/AES) may be used for payment data, access controls for databases, monitoring of systems. However, no system is entirely secure, so we cannot guarantee absolute protection of all personal information. If you suspect your data is no longer secure, contact us immediately.

​

Section 6 – Your Rights

​

If you are a resident of South Africa, under POPIA you have certain rights:

• Right to be notified when your personal information is collected (Condition 6 – Openness) 

• Right to access personal information we hold about you (Section 23 of POPIA) 

• Right to correct or delete (destroy/de-identify) your personal information (Section 24) 

• Right to object to processing on reasonable grounds relating to your particular situation (Section 11(3)(a)) 

• Right to object to direct marketing (Section 11(3)(b)) 

• Right to complain to the Information Regulator (established under POPIA) if you believe your rights have been infringed.

 

To exercise any of these rights, you may contact us at the details provided below. We will verify your identity before responding. We aim to respond within a reasonable time period and provide information in a format that is usable.

​

Section 7 – Data Retention

​

We retain your personal information only for as long as is necessary to fulfil the purposes for which it was collected (for example to operate your mining plan, to comply with legal obligations) or as required by law. Once the information is no longer needed, we will delete or de-identify it in a manner that prevents reconstruction, unless an exception under POPIA applies (e.g., records required for proof of claim, legal proceedings). 

​

Section 8 – Cookies

 

Our website uses session and persistent cookies to enable the services we provide, and to collect usage data. Some cookies are essential for our website to function. You may opt out of non-essential cookies (where legally required). Please refer to our Cookie Notice for detailed information about our cookie use and how to control your preferences.

​

Section 9 – South African Residents & POPIA

 

If you are a resident of South Africa, the processing of your personal information by a responsible party must comply with POPIA. In summary, the responsibilities include: ensuring lawful basis for processing, minimal data collection, purpose specification, security safeguards, data subject rights, and limitations on cross-border transfers of personal information (Chapter 9 of POPIA)

 

Section 10 – Age of Consent

 

Our services are not directed to children (typically under the age of 16 in our jurisdiction). We do not knowingly collect personal information from children without the consent of a parent or guardian. If you believe we have collected information of a child without consent, please contact us to request deletion or correction.

​

Section 11 – Changes to This Privacy Policy

 

We may update this Privacy Policy from time to time to reflect changes in our practices or legal/regulatory changes. We will update the “Last Updated” date at the top of this document to show when the policy was last modified. We encourage you to review this policy periodically.

​

Section 12 – Questions & Contact Information

 

If you have questions, or you would like to exercise any of your rights, please contact us:
Email: support@compassminingza.com
Address: [Insert physical address in South Africa or operating entity’s details]
Attention: Data Protection / Privacy Officer

​

​