Legal
Privacy Notice
Effective date: 24 March 2026. This notice explains how Evoke LedgerBridge handles personal information across the website, firm workspace, client portal, automation features, and support processes.
1. Scope
This Privacy Notice explains how Evoke LedgerBridge (Pty) Ltd collects, uses, stores, and protects personal information when you use the Evoke LedgerBridge website, firm workspace, client portal, integrations, and support channels. It is designed for accounting firms, their staff, and invited client users.
2. Information We Collect
We collect only the information reasonably required to provide the platform. This can include account details such as name, email address, role, client or firm association, authentication records, workflow data, uploaded documents, messages, audit events, integration metadata, billing records, and support communications.
3. How We Use Information
We use personal information to operate secure workspaces, authenticate users, route tasks and approvals, deliver notifications, maintain audit trails, support automation features, process billing, investigate incidents, and improve service reliability and security. We do not sell personal information.
4. Lawful Basis and POPIA Alignment
Where POPIA applies, we process personal information on the basis of contractual necessity, legitimate interests in operating and securing the service, legal obligations, and consent where consent is specifically requested. We aim to collect the minimum information needed for the workflow being performed.
5. Client and Firm Responsibilities
Accounting firms remain responsible for the lawful collection and use of the information they introduce into the platform. Firms should only upload or request information they are entitled to process and should configure retention and access controls appropriately for their clients and engagements.
6. Storage, Security, and Retention
Data is stored using hosted infrastructure selected by the account owner, with role-based access controls, tenant isolation, signed file access patterns, audit logging, and encrypted secrets for configured integrations. Records are retained for as long as needed to provide the service, meet compliance obligations, resolve disputes, and support legitimate business operations, unless shorter retention controls are configured.
7. Sharing and Service Providers
We may use subprocessors and infrastructure providers such as hosting, storage, email, and integration services strictly to deliver the platform. Information may also be shared where required by law, to protect rights and security, or when directed by the customer through configured integrations.
8. International Transfers
Depending on the chosen hosting or integration providers, personal information may be processed in jurisdictions outside South Africa. Where that occurs, we rely on appropriate contractual, technical, and organisational safeguards that are reasonable for the service and the selected providers.
9. Your Rights
Subject to applicable law, data subjects may request access to their information, correction of inaccurate data, deletion where appropriate, restriction or objection to certain processing, and export of available account history. Requests may be initiated through the platform owner or support process.
10. Cookies and Analytics
The marketing site and application may use essential cookies for authentication, security, and session continuity. Optional analytics may be used to understand product usage and improve reliability.
11. Contact
Questions about this notice or requests relating to personal information can be directed through the Evoke LedgerBridge contact form or the designated support channels used by your firm.
12. Updates
We may update this notice from time to time to reflect legal, operational, or product changes. Material updates will be published on this page with a revised effective date.