Privacy Policy

← Back

Effective: 21 April 2026  ·  Sphynx Motion (Pty) Ltd  ·  Governed by POPIA & GDPR

1. Who We Are

Sphynx Motion (Pty) Ltd operates the SphynxPlay streaming platform — a vertical African drama service available on iOS, Android, and the web. By using the Service you agree to this policy.

2. Information We Collect

You provide: name, email address, password, profile display name, and payment details. We never store card numbers — payments are processed entirely by Apple (App Store) or Google (Play Store).

Automatically collected: device type and OS, IP address (approximate location), session tokens, watch history and playback positions, in-app behaviour (clicks, screen views), Soul Token balance and transaction history.

3. How We Use Your Data

• Authenticate and manage your account
• Personalise content recommendations and your For You feed
• Process Soul Token purchases and track balances
• Send transactional emails (password reset, purchase confirmations)
• Detect fraud and enforce our Terms of Use
• Comply with applicable law

We do not sell, rent, or trade your personal information to third parties for marketing purposes.

4. Sharing Your Data

We share data only with:

• Service providers — hosting (Supabase), video delivery (Mux), analytics — under strict confidentiality obligations
• Platform stores — Apple and Google process all in-app purchases under their own privacy policies
• Law enforcement — when required by valid legal process
• Business successors — in a merger or acquisition, with 30 days prior notice

5. Data Retention

• Account data: retained until deletion, then purged within 30 days
• Watch history: account lifetime + 6 months
• Payment records: 7 years (statutory requirement)
• Server logs: 12 months

6. Security

All data is encrypted in transit (TLS 1.2+) and at rest. Access is restricted by role-based controls. We conduct regular security reviews. No method of transmission over the internet is 100% secure; we cannot guarantee absolute security.

7. Cookies & Tracking

• Essential: authentication session cookies — required for the service to function
• Preference: language and playback settings stored in localStorage
• Analytics: aggregated, anonymised usage data — no cross-site tracking

You can clear cookies and localStorage in your browser or device settings at any time.

8. Soul Tokens

Soul Tokens are a virtual in-app currency with no monetary value. Purchases are processed exclusively via Apple IAP or Google Play Billing — not by SphynxPlay directly. Token balances are stored in your account and are non-refundable except as required by applicable platform policy.

9. Children's Privacy

The Service is intended for users aged 16 and older. We do not knowingly collect personal data from children under 16. If you believe a child has registered, contact privacy@sphynxplay.com for immediate deletion.

10. Your Rights

Under POPIA (South Africa) and GDPR (where applicable) you have the right to:

• Access a copy of your personal data
• Correct inaccurate information
• Request deletion of your account and data
• Restrict or object to processing
• Data portability
• Opt out of marketing communications
• Lodge a complaint with the Information Regulator of South Africa

To delete your account: open the app → Profile → Delete Account. Or email privacy@sphynxplay.com.

11. International Data Transfers

Your data may be processed by providers outside South Africa. We ensure appropriate safeguards are in place (standard contractual clauses or equivalent) for all such transfers.

12. Policy Changes

Material changes will be notified by email and in-app notification at least 14 days before they take effect. Continued use of the Service constitutes acceptance of the updated policy.

13. Contact

We aim to respond to all privacy requests within 5 business days.