Privacy Policy

Soweto Gateway (Pty) Ltd ("Soweto Gateway", "we", "us", or "our") is committed to protecting your personal information in accordance with the Protection of Personal Information Act 4 of 2013 ("POPIA") and all applicable South African data protection legislation. This Privacy Policy explains how we collect, use, store, and protect your personal information when you visit our website, register your interest in our development, or otherwise interact with us. By using our website or submitting your information to us, you consent to the practices described in this policy.

We collect personal information that you voluntarily provide to us, including: — Full name and contact details (email address, telephone number) — Company or organisation name and professional role — Investment interest and area of focus — Enquiry details and correspondence — Website usage data (via cookies and analytics tools) We do not collect sensitive personal information (as defined under POPIA) without your explicit consent.

We use your personal information for the following purposes: — To respond to your enquiries and provide requested information — To send you updates about the Soweto Gateway development, investment opportunities, and related news (where you have consented) — To process and manage your interest registration — To improve our website and communications — To comply with legal and regulatory obligations We will not use your personal information for any purpose other than those stated above without your prior consent.

We do not sell, rent, or trade your personal information to third parties. We may share your information with: — Our professional advisors (legal, financial, and technical) who are bound by confidentiality obligations — Development partners and co-investors where relevant to your enquiry and with your consent — Service providers who assist us in operating our website and communications (subject to appropriate data processing agreements) — Regulatory authorities where required by law Any third parties with whom we share your information are required to handle it in accordance with POPIA and this Privacy Policy.

We retain your personal information for as long as necessary to fulfil the purposes for which it was collected, or as required by law. Specifically: — Enquiry and registration data: retained for 5 years from the date of submission — Marketing consent data: retained until you withdraw consent — Website usage data: retained for 24 months After the applicable retention period, your personal information will be securely deleted or anonymised.

Under POPIA, you have the following rights in relation to your personal information: — The right to access your personal information held by us — The right to request correction of inaccurate or incomplete information — The right to request deletion of your personal information (subject to legal retention requirements) — The right to object to the processing of your personal information — The right to withdraw consent to marketing communications at any time — The right to lodge a complaint with the Information Regulator of South Africa To exercise any of these rights, please contact our Information Officer at [email protected].

Our website uses cookies and similar tracking technologies to improve your browsing experience and analyse website traffic. We use: — Essential cookies: required for the website to function correctly — Analytics cookies: to understand how visitors interact with our website (via anonymised data) You can control cookie settings through your browser. Disabling certain cookies may affect the functionality of our website.

We implement appropriate technical and organisational measures to protect your personal information against unauthorised access, disclosure, alteration, or destruction. These measures include: — Encrypted data transmission (SSL/TLS) — Access controls and authentication requirements — Regular security assessments — Staff training on data protection obligations While we take all reasonable precautions, no internet transmission is entirely secure. We encourage you to take appropriate steps to protect your own information.

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable law. We will notify you of material changes by posting the updated policy on our website with a revised effective date. Your continued use of our website after such changes constitutes acceptance of the updated policy.

If you have any questions about this Privacy Policy or our data protection practices, please contact our Information Officer: Soweto Gateway (Pty) Ltd Information Officer: [Name] Email: [email protected] Telephone: +27 11 000 0000 Address: Soweto, Johannesburg, South Africa You may also lodge a complaint with the Information Regulator of South Africa: Website: www.justice.gov.za/inforeg/ Email: [email protected]