Privacy Policy

Mpia Services (PTY) Ltd (“Mpia”, “we”, “us” or “our”) is a Non-Destructive Testing (NDT) and rail radiography company registered in the Republic of South Africa. For the purposes of POPIA, Mpia is the responsible party that determines why and how your personal information is processed.

This policy applies to personal information we process through this website (www.mpiaserv.co.za), our enquiry and contact channels, and in the ordinary course of providing inspection and related services to our clients. It does not apply to third-party websites we link to, which have their own privacy practices.

By using this website or submitting an enquiry to us, you confirm that you have read and understood this policy.

We may collect and process the following categories of personal information:

Information you give us

• Identity & contact details — your first and last name, the company you represent, email address and telephone number.
• Enquiry details — the service you are interested in and any information you include in your message (for example site location, scope, timelines and standards required).
• Correspondence — records of communications between you and us by email, telephone or web form.

Information collected automatically

• Technical & usage data — your IP address, approximate location, browser type and version, device information, referring pages, and the dates/times you access the site, captured in standard server logs for security and operational purposes.
• Cookie data — limited information stored by your browser (see section 5).

We do not intentionally collect special personal information (such as health, race, religion or biometric data) or the personal information of children through this website. Please do not submit such information to us via the website.

• Directly from you — when you complete the enquiry form, email us, call us, or otherwise correspond with us.
• Automatically — through your device and browser when you visit the website (server logs and cookies).
• From third parties — occasionally from your employer, a project principal, or publicly available business sources where relevant to a quotation or contract.

We process your personal information only where the law allows us to. Under POPIA, the lawful bases we rely on are: your consent; the performance of a contract or steps taken at your request before entering into one; compliance with a legal obligation; and our (or a third party’s) legitimate interests in operating and growing our business, where these are not overridden by your rights.

We use personal information to:

• Respond to your enquiries and provide quotations.
• Provide, manage and invoice our inspection and related services.
• Communicate with you about projects, scheduling and results.
• Operate, secure, maintain and improve this website.
• Keep proper business, accounting and compliance records.
• Comply with applicable laws, regulations and lawful requests from public authorities.
• Establish, exercise or defend legal claims.

We do not sell your personal information, and we do not use it for automated decision-making that produces legal effects about you.

Cookies are small text files placed on your device. This website uses only the cookies and similar technologies necessary for it to function and to remain secure. Where any non-essential or analytics cookies are introduced in future, we will update this policy and, where required, request your consent.

You can set your browser to refuse some or all cookies, or to alert you when sites set them. Disabling cookies may affect parts of the site’s functionality.

Some pages display embedded content from third parties — most notably an embedded Google Maps view on our Contact page. When such content loads, the provider may receive technical data (such as your IP address) and may set its own cookies. This processing is governed by that provider’s privacy policy, not ours. For Google, see the Google Privacy Policy.

We also rely on reputable service providers (“operators” under POPIA) to host the website and infrastructure on our behalf. These providers may process personal information only on our documented instructions and under appropriate confidentiality and security obligations.

We may share personal information with:

• Service providers / operators — hosting, IT, email and similar suppliers who process information on our behalf under contract.
• Professional advisors — auditors, accountants, insurers and lawyers, where reasonably necessary.
• Clients & project principals — where you are engaging with us on behalf of, or in relation to, a specific project or contract.
• Authorities & regulators — where we are required to disclose information by law, court order, or a lawful regulatory request.
• Business transfers — to a successor entity in connection with a merger, acquisition or reorganisation, subject to this policy.

We do not disclose your personal information to third parties for their own marketing purposes.

Some of our service providers may store or process information outside South Africa. Where personal information is transferred across borders, we take reasonable steps to ensure it is protected by a recipient that is subject to laws, binding rules or contractual terms providing an adequate level of protection consistent with POPIA.

In line with section 19 of POPIA, we maintain appropriate, reasonable technical and organisational measures to safeguard personal information against loss, damage, unauthorised access and unlawful processing. These include access controls, encryption in transit, secure hosting, and limiting access to those who need it.

No method of transmission or storage is completely secure. While we work to protect your information, we cannot guarantee absolute security. If we become aware of a compromise that affects your personal information, we will notify you and the Information Regulator where required by law.

We keep personal information only for as long as necessary for the purposes set out in this policy, including to satisfy any legal, accounting, tax or reporting requirements, and to resolve disputes or enforce our agreements. When information is no longer required, we securely delete, destroy or de-identify it.

Subject to applicable law, you have the right to:

• Be informed about how your personal information is processed.
• Access the personal information we hold about you.
• Request correction or deletion of information that is inaccurate, irrelevant, excessive, out of date, incomplete, misleading or unlawfully obtained.
• Object to processing in certain circumstances, including direct marketing.
• Withdraw consent where we rely on consent (this does not affect processing already carried out).
• Lodge a complaint with the Information Regulator (see section 16).

To exercise any of these rights, contact our Information Officer using the details in section 12. We may need to verify your identity before acting on a request. Requests for access to records may be made under the Promotion of Access to Information Act, 2000 (“PAIA”).

Our Information Officer is responsible for compliance with POPIA and for handling requests and complaints relating to personal information. You can reach us at:

This website is intended for businesses and adults. We do not knowingly collect the personal information of children under 18 through the website without the consent of a competent person. If you believe a child has provided us with personal information, please contact us so we can remove it.

Our website may contain links to external websites and resources. We are not responsible for the content or privacy practices of those sites. We encourage you to review the privacy policy of every website you visit.

We may update this policy from time to time to reflect changes in our practices or in the law. The “Last updated” date at the top of this page shows when it was last revised. Material changes will be posted on this page; please review it periodically.

If you have a concern about how we handle your personal information, please contact our Information Officer first so we can try to resolve it. You also have the right to lodge a complaint with the Information Regulator of South Africa: