#
This website uses cookies to ensure you get the best experience on our website. Please see our Privacy Policy.

SHOULD BUSINESSES BE CONCERNED?

#

#

THE GDPR

The short answer is Yes.
Besides the stiff fines and penalties, companies also need to know that a failure to comply with the GDPR could result in reputational harm. According to the official GDPR EU site, this is who the regulation will affect: “The GDPR not only applies to organizations located within the EU but it will also apply to organizations located outside of the EU if they offer goods or services to, or monitor the behaviour of, EU data subjects. This applies to all companies processing personal information.
#

POPIA AND PAIA

Companies should now consider what will happen if they don’t comply with the regulation. The Information Regulator can fine you up to R10 million for each instance of a breach. Taking steps to comply now will save you money in the long run and will also save you possible reputational damage. In terms of the Constitution and PAIA, all people in South Africa, including non-nationals, can request information from public and private bodies. Does your company need a PAIA manual?

DATA PROTECTION SERVICES

#

Information Officer as a Service

  • Practical and cost-effective solution
  • Access to expert advice and guidance to your compliance needs
  • The Act allows organisations to outsource the IO role to an external provider
  • You can focus on your business
  • No conflict of interest

#

GDPR Compliance

  • Privacy by Design
  • Dealing with data subject access requests
  • Ensuring personal information impact/risk assessment is performed
  • Implementing measures to mitigate risk
  • Creating and implementing privacy policies
  • Demonstrating consent and compliance with the GDPR

#

POPIA Compliance

  • Ensuring overall compliance with POPIA
  • Assisting the Regulator with investigations
  • Develop, maintain and produce a PAIA manual
  • Dealing with data subject access requests as well as requests made by the Information Regulator
  • Ensuring personal information impact/risk assessment is performed

Privacy Policy

PrivacyWorks (Pty) Ltd - Privacy Policy


PrivacyWorks (Pty) Ltd services, including (without limitation) our website and other interactive properties through which the services are delivered (collectively, the “Service”) are owned, operated and distributed by PrivacyWorks (Pty) Ltd (referred to in this Privacy Notice as “PrivacyWorks (Pty) Ltd” or “we” and through similar words such as “us,” “our,” etc.). This Privacy Notice outlines the personal information that PrivacyWorks (Pty) Ltd may collect, how PrivacyWorks (Pty) Ltd uses and safeguards that information, and with whom we may share it.

PrivacyWorks (Pty) Ltd encourages our customers, visitors, business associates, and other interested parties to read this Privacy Notice, which applies to all users. By using our Service or submitting personal information to PrivacyWorks (Pty) Ltd by any other means, you acknowledge that you understand and agree to be bound by this Privacy Notice, and agree that PrivacyWorks (Pty) Ltd may collect, process, transfer, use, and disclose your personal information as described in this Notice. Further, by accessing any part of the Service, you are agreeing to THE TERMS AND CONDITIONS OF OUR TERMS OF SERVICE (the “Terms of Service”). IF YOU DO NOT AGREE WITH ANY PART OF THIS PRIVACY NOTICE OR OUR TERMS OF SERVICE, PLEASE DO NOT USE ANY OF THE SERVICES.

What personal information do we collect about you?

Personal information (also commonly known as personally identifiable information (PII) or personal data) is information that can be used to identify you, or any other individual to whom the information may relate.

The personal information that we collect directly from those registering for the Service, includes the following categories:

  • Name and contact information (e.g. address; phone number; email, fax)
  • Billing Information (e.g. credit card, bank account, billing contact information)
  • Order Information (e.g. current order/purchase information, purchase history, shipping details)
  • Travel Information (e.g. booking numbers, passport information, flight numbers, and travel details)
  • Company/employer information
  • Geographic or location information
  • Information contained in posts you may on the public forums and interactive features of the Service.
  • Other information that may be exchanged in the course of engaging with the Service. You will be aware of any subsequently collected information because it will come directly from you.

What are the source of personal information collected by PrivacyWorks (Pty) Ltd?

When providing personal information to PrivacyWorks (Pty) Ltd as described in this Notice, that personal information is collected directly from you, and you will know the precise personal information being collected by us. PrivacyWorks (Pty) Ltd does not collect personal information from any other sources, except where it may automatically be collected as described in the section titled “Cookies, Device Data, and how it is used, if the information in that section is considered personal information.

How does PrivacyWorks (Pty) Ltd use personal information?

Subject to the terms of this Privacy Notice, PrivacyWorks (Pty) Ltd uses the above described categories of personal information in several ways. Unless otherwise stated specifically, the above information may be used for any of the following purposes:

  • To administer the Service to you
  • To respond to your requests
  • To distribute communications relevant to your use of the Service, such as system updates or information about your use of the Service
  • As may be necessary to support the operation of the Service, such as for billing, account maintenance, and record-keeping purposes
  • To send to you PrivacyWorks (Pty) Ltd solicitations, product announcements, and the like that we feel may be of interest to you (you may “opt out” of receiving these marketing materials)
  • In other manners after subsequent notice is provided to you and/or your consent is obtained, if necessary

How do we share your Personal Information with third parties?

We may provide any of the described categories of personal information to PrivacyWorks (Pty) Ltd employees, consultants, affiliates or other businesses or persons for the purpose of processing such information on our behalf in order to provide the Service to you. In such circumstances, we require that these parties agree to protect the confidentiality of such information consistent with the terms of this Privacy Notice.
We will not share your personal information with other, third-party companies for their commercial or marketing use without your consent or except as part of a specific program or feature for which you have the ability to opt-in or opt-out.

In addition, we may release personal information: (i) to the extent we have a good-faith belief that such action is necessary to comply with any applicable law; (ii) to enforce any provision of the Terms of Service , protect ourselves against any liability, defend ourselves against any claims, protect the rights, property and personal safety of any user, or protect the public welfare; (iii) when disclosure is required to maintain the security and integrity of the Service, or to protect any user’s security or the security of other persons, consistent with applicable laws (iv) to respond to a court order, subpoena, search warrant, or other legal process, to the extent permitted and as restricted by law; or (v) in the event that we go through a business transition, such as a merger, divestiture, acquisition, liquidation or sale of all or a portion of our assets.

Retention of Data

PrivacyWorks (Pty) Ltd will retain your personal information only for as long as is necessary for the purposes set out in this Notice. We will retain and use personal information to the extent necessary to comply with our legal obligations (for example, if we are required to retain your data to comply with applicable laws), resolve disputes and enforce our legal agreements and policies.

PrivacyWorks (Pty) Ltd will also retain usage data for internal analysis purposes. Usage data is generally retained for a shorter period of time, except when this data is used to strengthen the security or to improve the functionality of our Sites and/or Portals, or we are legally obligated to retain this data for longer periods.

Cookies, Device Data, and how it is used

When you use our Service, we may record unique identifiers associated with your device (such as the device ID and IP address), your activity within the Service, and your network location. PrivacyWorks (Pty) Ltd uses aggregated information (such as anonymous user usage information, cookies, IP addresses, browser type, clickstream information, etc.) to improve the quality and design of the Service and to create new features, promotions, functionality, and services by storing, tracking, and analysing user preferences and trends. Specifically, we may automatically collect the following information about your use of Service through cookies, web beacons, and other technologies:

  • Domain name
  • Browser type and operating system
  • Web pages you view
  • Links you click
  • IP address
  • The length of time you visit the Sites, Portals, and/or Services
  • The referring URL or the webpage that led you to the Sites


We may also collect information regarding application-level events, such as crashes, and associate that temporarily with your account to provide customer service. In some circumstances, we may combine this information with personal information collected from you (and third-party service providers may do so on behalf of us).

In addition, we may use “cookies,” clear gifs, and log file information that help us determine the type of content and pages to which you link, the length of time you spend at any particular area of the Service, and the portion of the Service you choose to use. A cookie is a small text file that is sent by a website to your computer or mobile device where it is stored by your web browser. A cookie contains limited information, usually a unique identifier and the name of the site. Your browser has options to accept, reject or provide you with notice when a cookie is sent. Our cookies can only be read by PrivacyWorks (Pty) Ltd; they do not execute any code or virus; and they do not contain any personal information. Cookies allow PrivacyWorks (Pty) Ltd to serve you better and more efficiently, and to personalize your experience with the Service. We may use cookies for many purposes, including (without limitation) to save your password so you don’t have to re-enter it each time you visit the Service, and to deliver content (which may include third party advertisements) specific to your interests.

We may use third party service providers to help us analyse certain online activities. For example, these service providers may help us measure the performance of our online campaigns or analyse visitor activity on the Service. We may permit these service providers to use cookies and other technologies to perform these services for PrivacyWorks (Pty) Ltd. We do not share any personal information about our customers with these third-party service providers, and these service providers do not collect such information on our behalf. Our third-party service providers are required to comply fully with this Privacy Notice.

Information Storage and Security

We employ industry-standard security measures designed to protect the security of all information submitted through the Service. However, the security of information transmitted through the internet or via a mobile device can never be guaranteed. We are not responsible for any interception or interruption of any communications through the internet or for changes to or losses of data.

Users of the Service are responsible for maintaining the security of any password, user ID or other form of authentication involved in obtaining access to password protected or secure areas of the Service. In order to protect you and your information, we may suspend your use of any of the Service, without notice, pending an investigation, if any breach of security is suspected.

Children’s Privacy

The Service is not intended for children under the age of 16, and PrivacyWorks (Pty) Ltd does not knowingly collect the personal information of children under the age of 16.

Changes to this Privacy Notice

PrivacyWorks (Pty) Ltd reserves the right to modify this Privacy Notice from time to time in order that it accurately reflects the regulatory environment and our data collection principles. When material changes are made to this Privacy Notice, PrivacyWorks (Pty) Ltd will post the revised Notice on our website. This Privacy Notice was last modified as of 2021/02/14.