Data Protection

Privacy Policy

POPIA & FICA Compliant

1. Compliance Statement

Crestline Advisory is committed to protecting your personal information. We operate in strict compliance with the Protection of Personal Information Act (POPIA) of South Africa. We function as the responsible party for data processing required to execute our advisory mandate.

2. Mandatory Data Collection (FICA)

To comply with the Financial Intelligence Centre Act (FICA) and our contractual obligations, we are legally required to collect and verify:

  • Identity Data: Certified copies of Passports, National IDs.
  • Contact Data: Residential addresses, phone numbers, and email addresses.
  • Financial Data: Proof of bank account, Source of Funds declarations, and tax residency information.

3. Data Sharing with Authorized Partners

Your personal data is never sold. It is shared strictly on a 'need-to-know' basis with the following execution partners as defined in your Service Agreement:

  • Standard Bank: For account opening, FICA verification, and payment processing.
  • CanvasCrest Properties: For property registration, Title Deed processing, and NHBRC enrolment.
  • Government Bodies: Department of Home Affairs (DHA) and VFS Global for visa/residency processing; SARS for tax compliance.
  • Legal: Appointed Conveyancing Attorneys for property transfer.

4. Data Retention Period

In accordance with FICA regulations and our internal audit requirements, we are required to retain transaction records and client verification documents for a minimum period of five (5) years from the conclusion of a transaction or the termination of a business relationship.

5. Your Rights & Contact

Under POPIA, you have the right to request access to, correction of, or deletion of your personal data (subject to FICA retention laws). For any privacy concerns, please contact our Information Officer at:

[email protected]