We are serious about the privacy of the personal information of our clients and third parties that deal with us and therefore treat it in the most secure way as reasonably possible and in a way that is aligned to the requirements of the Protection of Personal Information Act4 of 2013 (“POPIA”).
Below we explain how and when we collect and use personal information. If at any time you have enquiries that are not dealt with in this document, please visit our website at www.camcraftsa.com, or contact us on (0)21 447 1615. You can also contact our Information Officer, Sean Dorrington, at email@example.com.
2.THE INFORMATION WE COLLECT AND RECORD
2.1 When we receive an enquiry, request or order, we may request, receive, store and record many details that are defined as personal information in POPIA. We collect and record only the minimum personal information that is required for us to attend to the request, enquiry or order. In doing so, we comply with POPIA in that we implement reasonable practices to ensure the private information is protected.
2.2 In addition, if you are not a client of us as explained in 2.1 above, but approach us via our internet, we will collect and retain your email address and additional details you provided when visiting our website. We will collect only so much information as is required for us to be able to respond to you.
2.3 If you browse our website and/or download any information, we will not record any of your personal details. We do collect a record of the visit for our own information purposes, but the personal information collected in this way is de-personalized and we will not be able to trace you as a result.
3. YOUR PERSONAL INFORMATION WILL BE USED OR SHARED IN THE FOLLOWING WAYS
3.1 We keep your personal information confidential and only use, process, share, record or delete it as is required by POPIA, other legislation and/or the requirements of the service that we are providing for you.
3.2 We may share certain information with service providers as part of our business operations, such as companies that manage deliveries for us, and only if these service providers have undertaken to protect the personal information that we share with them for a particular purpose. We only share such personal information as are required for purposes of performing the tasks lawfully following from and required by the task(s) we are mandated to perform.
4. OTHER INTERACTION WITH YOUR PERSONAL INFORMATION
4.1 POPIA requires us to ensure that we hold correct and updated personal information and, hence, we may need to update your personal information from time to time and request your assistance in doing so. The request will be sent via email or otherwise, whatever is most reasonable in the circumstances.
4.2 We use cloud storage. This means that some of your personal information may be stored outside our national borders. We have obtained undertakings from these service providers that will keep the personal information confidential but cannot be held liable should they breach their undertakings.
4.3 We will:
4.3.1 not sell or give your personal information away, use it, other than in terms of this policy;
4.3.2 retain personal information only for as long as we are required by law to do so.
5. YOUR RIGHTS
5.1 You may at any time request us to confirm what personal information we have relating to you and by whom it was accessed. We may charge a fee for the latter.
5.2 You may ask us to update or delete your information or to refrain from using it. Note that if the information you ask us to delete is required by us for purposes of a transaction that we are legitimately processing, it may result in us being unable to complete the transaction on your behalf or in which you are involved. Should any damage arise from your request in these circumstances, you indemnify us against any claim for damages that may follow as a result hereof.
5.3 Also, if we are by law required to retain the information, we will only delete the information once we have complied with the regulatory period for retaining the information.
5.4 You may further unsubscribe from any of our electronic material by simply clicking on the unsubscribe option provided. In that event, we will remove your details from our database, in a secure way.
5.5 You may otherwise ask us to delete any information we have about you but we might refuse if we need your personal information to protect our rights, or if the law obliges us to keep it. In these circumstances, if we refuse to delete your personal information, we will advise you of the fact that we did not delete the personal information and provide you with a reason therefor.
5.6 You may enquire from us about the personal information that we have, and how, if at all, it was used.
6. SECURITY BREACH
6.1 We have specialised and strict measures in place to make sure that our information systems are not breached.
6.2 However, should this occur, we will ascertain how and where the breach occurred and make sure that the exposed area is addressed immediately.
6.3 We will ascertain which data has become vulnerable as a result and notify you if the breach may affect you and assist you to minimize any potential damages that you may suffer as a result, where possible. Such notification may take place by way of email to you, or by way of notice on our website, or otherwise.
7. TYPES OF PERSONAL INFORMATION WE COLLECT
7.1 The types of personal information that we may collect include information necessary to provide our services. This may include personal information which contains identifiable information such as (amongst other things) your first and last name, screen name, email address, postal address, telephone number, details about your telephone device (e.g. mobile phone), and your telephone service provider (“personal information”).
7.2 We may on occasion combine personal information we receive online with other records (such as those from telephone or completion of membership application forms) to develop a membership profile relating to you.
7.3 We will attempt to limit the types of personal information we collect to only that to which you consent (for example, in the context of online membership registration, message boards, surveys, polls, receiving newsletters, SMS, and other mobile services).
7.4 When you visit our website, our web server also automatically records the name of your ISP (Internet Service Provider), the website from which you visit us, the pages on our sites you visit and in what sequence, and the date and length of your visit. This information is aggregated and anonymous data and does not identify you specifically.
7.6 We may also use “web beacons” that monitor your use of our sites. Web beacons (or web bugs) are small strings of code that provide a method for delivering a graphic image on a web page for the purpose of transferring data, such as the IP (Internet Protocol) address of the computer that downloaded the page on which the web beacon appears, the URL (Uniform Resource Locator) of the page on which the web beacons appear, the time the page containing the web beacon was viewed, the types of browser that fetched the web beacon and the identification number of any cookie on the computer previously placed by that server. When corresponding with you via HTML capable e-mail, web beacons let us know whether you received and opened our email. On their own, cookies or web beacons do not contain or reveal any personal information. However, if you choose to provide us with personal information, it can be linked to the anonymous data stored in the cookies and/or web beacons. Most browsers are initially set to accept cookies. However, if you prefer, you may adjust your browser to reject cookies from us or from any other website. Additionally, by setting your web browser to display HTML emails as text only, you may be able to prevent the use of some web beacons. However, please note that certain areas of our sites can only be accessed in conjunction with cookies or similar devices.
7.7 We may passively collect some of your personal information from the mobile device which you use to access and navigate through our website, using various technological means, for instance, using server logs to collect and maintain log information. The information which we may passively collect from your mobile device may include your identifying information, contact details, device and device event information, site activity information, log information, telephony log information, location information, unique application numbers, and any other information which you permit us, from time to time, to passively collect from your device.
8. HOW YOUR PERSONAL INFORMATION MAY BE USED
We may use your personal information to:
8.1 provide services you request (e.g. send you by email or other electronic means our newsletters or other services in which you express an interest);
8.2 allow you to participate in recreational activities on the website (e.g. participate in our message boards), to organize or carry out educational or promotional activities, games, or promotional events;
8.3 inform you of changes made to our website;
8.4 inform you of content, services, promotions, offers, and competitions which you may find interesting;
8.5 respond to any queries you may have;
8.6 develop a more direct relationship with you for the purposes described in this section;
8.7 develop your online membership profile if you are a member;
8.8 understand general trends and patterns so we can develop and support existing and ongoing strategies for our services and educational content; and
8.9 for security, administrative and legal purposes.
9. PERSONAL INFORMATION USED FOR MARKETING PURPOSES
If we obtain your prior express consent, we may use your personal information for the purposes of:
9.1 promoting our services;
9.2 marketing upcoming events and services on behalf of selected third parties which are in accordance with our vision and goals and provided that you have agreed to your details being passed onto third parties.
9.3 You are entitled to request that we desist from using your personal information for the purposes of marketing, and we will provide you with the necessary functionality for you to do so with ease, each time we market to you.
10. SECURITY MEASURES TO PROTECT YOUR PERSONAL INFORMATION
10.1 Although absolute security cannot be guaranteed on the internet, we have in place up-to-date, reasonable technical and organisational security measures to protect your personal information against accidental or intentional manipulation, loss, misuse, destruction or against unauthorised disclosure or access to the information we collect online.
10.2 While we cannot ensure or warrant the security of any personal information you provide us, we will continue to maintain and improve these security measures over time in line with legal and technological developments.
11. STORING YOUR PERSONAL INFORMATION
11.1 We store your personal information in South Africa. We may also or alternatively store your personal information on and transfer your personal information to a central database located in South Africa. If the location of the central database is located in a country that does not have substantially similar laws which provide for the protection of personal data, we will take the necessary steps to ensure that your personal information is adequately protected in that jurisdiction.
12. WILL MY PERSONAL INFORMATION BE SHARED WITH ANYONE ELSE?
13. MOBILE APPLICATION AND USE OF FACEBOOK USER DATA (WHERE APPLICABLE)
Our Facebook page may access information from your Facebook accounts once you give us permission to do so. Once permission is granted, the application accesses a user’s name, gender, birthday, locale, email address, and spice result.