Lio Global

Legal

Privacy Policy

This policy explains how LIO Global (Pty.) Ltd. collects, uses, shares, and protects personal information. It satisfies South Africa's Protection of Personal Information Act (POPIA), with parallel commitments to the GDPR and UK GDPR.

Effective date: 2026-05-08  ·  Last reviewed: 2026-05-08

1. Who we are and how to contact us

LIO Global (Pty.) Ltd. (referred to as "Lio Global", "we", "us", or "our") is a private company registered in the Republic of South Africa under the CIPC.

  • Registered office: Unit 103, The Foundry, 74 Prestwich Street, De Waterkant, Cape Town, South Africa
  • Registration number: [PLACEHOLDER — confirm with client]
  • VAT number: [PLACEHOLDER — confirm with client]
  • Contact: info@lio-global.boostrai.com · +27 (83) 221 6109

For the purposes of POPIA we act as a Responsible Party. For GDPR and UK GDPR we act as a Data Controller. Our Information Officer (POPIA section 55) is [PLACEHOLDER — confirm with client] and can be reached at info@lio-global.boostrai.com.

2. Information we collect about you

Information you give us directly

When you contact us, book a consultation, attend an event, or correspond with us, we may collect your name, email address, phone number, country of residence, current passport(s), family composition, intended investment range, and any free-text information about your circumstances and objectives.

Information we collect automatically

When you visit our website, we collect technical information including IP address, browser type, device type, operating system, referring URL, and pages visited. This is collected through cookies described in our Cookies Policy.

Information from third parties

In the course of an advisory engagement we may receive personal information about you from regulators, government programme units, due-diligence providers, and your professional advisers. Where we receive such information, we tell you what we have received and from whom. We do not knowingly collect personal information from children under 18 except where you provide it as part of a family application.

3. How we use your information

We use your personal information to: respond to your enquiry; advise you on investment migration programmes; prepare and submit applications; carry out due-diligence checks; send event and editorial updates (where you have opted in); meet legal and regulatory obligations; and analyse website use to improve content and performance.

Lawful basis (GDPR and UK GDPR)

  • Contract (Art. 6(1)(b)) — To perform an advisory engagement you have requested.

  • Legitimate interests (Art. 6(1)(f)) — To respond to your enquiry, administer our business, and keep our editorial audience informed.

  • Legal obligation (Art. 6(1)(c)) — To meet AML, source-of-funds, and tax-reporting requirements.

  • Consent (Art. 6(1)(a)) — For non-essential cookies and direct-marketing emails where required.

4. When we share information

We share personal information only when necessary, and only with parties bound by appropriate confidentiality and data-protection obligations:

  • Government programme units and regulators — to submit applications you instruct us to submit.

  • Due-diligence providers — programme-mandated background-check firms.

  • Your professional advisers — where you have instructed us to coordinate with them.

  • Service providers — hosting, email infrastructure, analytics, and CRM providers on our documented instructions.

  • Successors in interest — in the event of a corporate restructuring or sale.

  • Where legally required — to courts, regulators, and law enforcement under applicable law.

We do not sell personal information to third parties for marketing.

5. Your rights under POPIA, GDPR, and UK GDPR

Rights under POPIA (Chapter 3, Part B)

  • Right to be notified that personal information is being collected (sections 18 and 22).

  • Right to request access to personal information we hold (section 23).

  • Right to request correction or deletion of inaccurate or irrelevant information (section 24).

  • Right to object to processing (section 11(3) and section 69(3)(c) for direct marketing).

  • Right to submit a complaint to the Information Regulator of South Africa (section 74).

Rights under GDPR and UK GDPR

  • Right of access — Article 15.

  • Right to rectification — Article 16.

  • Right to erasure ("right to be forgotten") — Article 17.

  • Right to restriction of processing — Article 18.

  • Right to data portability — Article 20.

  • Right to object (absolute right for direct marketing) — Article 21.

  • Rights related to automated decision-making — Article 22 (we do not currently use automated decision-making).

  • Right to withdraw consent — Article 7(3).

  • Right to lodge a complaint with a supervisory authority — Article 77.

To exercise any of these rights, contact info@lio-global.boostrai.com. We will respond within 30 days under POPIA and within one calendar month under GDPR / UK GDPR.

6. How long we keep your information

  • Enquiry correspondence

    Up to 24 months from last contact, then deleted unless an engagement has begun.

  • Active advisory engagements

    For the duration plus the AML retention period (typically five years from end of engagement under South African law; longer where the programme regulator requires).

  • Application files

    As required by the programme regulator and applicable law.

  • Website analytics

    As set out in our Cookies Policy.

7. International transfers

Our advisory work is global. To deliver it, we transfer personal information across borders — for example, to a Caribbean programme regulator on your instructions, or to an EU programme unit.

Where personal information is transferred outside South Africa, we comply with POPIA section 72. Where transferred outside the EEA or UK, we rely on European Commission adequacy decisions, the UK Adequacy Regulations, or Standard Contractual Clauses (with the UK Addendum where applicable).

8. Cookies and similar technologies

This website uses cookies and similar technologies. The categories we use, your choices, and how to manage them are set out in full in our Cookies Policy.

Read our Cookies Policy →

9. How we keep your information secure

We use technical and organisational measures designed to protect your personal information against unauthorised access, loss, alteration, or disclosure. The detail — encryption in transit and at rest, access controls, third-party processor governance, and incident response — is set out in full on our Data Security page.

Data Security statement →

10. Updates to this policy

We review this policy at least annually and whenever a material change to our processing activities or regulatory environment requires it. Material changes will be communicated to you where you have an active relationship with us.

11. How to make a data request

To exercise any right described in this policy:

Email: info@lio-global.boostrai.com

Post: Information Officer, LIO Global (Pty.) Ltd., Unit 103, The Foundry, 74 Prestwich Street, De Waterkant, Cape Town, South Africa

Phone: +27 (83) 221 6109

If you are not satisfied with our response:

  • POPIA: Information Regulator of South Africa — inforegulator.org.za
  • GDPR: the supervisory authority in the EU member state of your habitual residence.
  • UK GDPR: Information Commissioner's Office — ico.org.uk