1. DEFINITIONS
1.1. “Associates” means DCC Technologies (Pty) Ltd, registration number 2019/431561/07 (“DCC Technologies”) shareholders, DCC Technologies’s subsidiaries and the directors, employees and consultants of DCC Technologies or of any of its subsidiaries.
1.2. “Cookie” means a small file that is placed on your device when you visit a website. In this Policy, a reference to a “Cookie” includes analogous technologies such as web beacons and clear Graphic Interchange Format files (“GIFs”).
1.3. “Operator” means any person or entity that Processes Personal Information on behalf of the Responsible Party.
1.4. “Personal Information” means information relating to an identifiable individual or identifiable juristic person, or from which any individual is directly or indirectly identifiable, in particular the reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that individual.
1.5. “POPIA” means the Protection of Personal Information Act 4 of 2013.
1.6. “Process”, “Processing” or “Processed” means anything that is done with any Personal Information, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
1.7. “Responsible Party” means the entity that decides how and why Personal Information is Processed.
1.8. “Sensitive Personal Information” means Personal Information about race or ethnicity, political opinions, religious or philosophical beliefs, trade union membership, physical or mental health, sexual life, any actual or alleged criminal offences or penalties, national identification number, or any other information that may be deemed to be sensitive under applicable law.
1.9. “Service Provider” – third party providers of various services whom we engage, including, but not limited to, providers of information technology, communication, file storage, data storage, copying, printing, accounting or auditing services, legal services and professional advisors;
2. INTRODUCTION
2.1. DCC Technologies is sensitive to the personal nature of the information you provide to us.
2.2. This privacy policy (“this Policy”) explains how we protect and use your Personal Information.
2.3. By providing us with your Personal Information, you –
- 2.3.1. agree to this Policy and authorise us to process such information as set out herein; and
- 2.3.2. authorise DCC Technologies, its Associates and our Service Providers and other third parties to Process your Personal Information for the purposes stated in this Policy.
2.5. Please note that we may review and update this Policy from time to time. The latest version of this Policy is available on request.
2.6. This Policy applies to all external parties with whom we interact, including but not limited to Customers, representatives of Customer organisations, visitors to our offices, and other users of our products and related services (“you”).
3. COLLECTION OF PERSONAL INFORMATION
3.1.We may collect or obtain Personal Information about you –
- 3.1.1 directly from you;
- 3.1.2 in the course of our relationship with you;
- 3.1.3 in the course of selling goods and or rendering services to you;
- 3.1.4 when you make your Personal Information public;
- 3.1.5 when you visit and/or interact with our Website or our social media platforms;
- 3.1.6 when you interact with any third-party content or advertising on our Website; or
- 3.1.7 when you visit our business.
3.3. In addition to the above, we may create Personal Information about you such as records of your communications and interactions with us, including, but not limited to, your attendance at events or at interviews in the course of applying for a job with us, subscription to our newsletters and other mailings and interactions with you during the course of our digital marketing campaigns.
4. CATEGORIES OF PERSONAL INFORMATION WE MAY PROCESS
We may process the following categories of Personal Information about you –
4.1.personal details: name, and photograph;
4.2. demographic information: gender; date of birth / age; nationality; salutation; title; and language preferences;
4.3. identifier information: passport or national identity number; utility provider details; bank statements; company registration and information details;
4.4. contact details: correspondence address; telephone number; email address; and details of your public social media profile(s);
4.5. Application for Dealership details of individuals and juristic persons instructing DCC Technologies including financial information;
4.6. Personal Information included in correspondence, documents, evidence or other materials that we Process in the course of providing legal services;
4.7. Attendance records: details of meetings and other events organised by or on behalf of DCC Technologies that you have attended;
4.8. consent records: records of any consents you may have given, together with the date and time, means of consent and any related information;
4.9. payment details: billing address, payment method, bank account number or credit card number; invoice records, SWIFT details, payment amount and payment date;
4.10. data relating to your visits to our Website: your device type; operating system; browser type; browser settings; IP address; language settings; dates and times of connecting to a Website; and other technical communications information;
4.11. employer details: where you interact with us in your capacity as an employee of an organisation, the name, address, telephone number and email address of your employer, to the extent relevant; and
4.12. content and advertising data: records of your interactions with our online advertising and content, records of advertising and content displayed on pages displayed to you, and any interaction you may have had with such content or advertising (including, but not limited to, mouse hover, mouse clicks and any forms you complete).
4.13. Other information not specified, reasonably required to be processed for business operations.
5. SENSITIVE PERSONAL INFORMATION
Where we need to Process your Sensitive Personal Information, we will do so in the ordinary course of our business, for legitimate purpose, and in accordance with applicable law.
6. PURPOSES OF PROCESSING AND LEGAL BASES FOR PROCESSING
6.1. We will Process your Personal Information in the ordinary course of the business of supplying goods and/or rendering services. We will primarily use your Personal Information only for the purpose for which it was originally or primarily collected. We will use your Personal Information for a secondary purpose only if such purpose constitutes a legitimate interest and is closely related to the original or primary purpose for which the Personal Information was collected. We may subject your Personal Information to Processing during the course of various activities, including, without limitation, the following –
- 6.1.1 operating our business;
- 6.1.2 compliance with applicable law and fraud prevention;
- 6.1.3 transfer of information to our Service Providers and other third parties or
- 6.1.4 recruitment.
- 6.1.5 Performing duties in terms of any agreement with Customers;
- 6.1.6 Make, or assist in making, credit decisions about Customers;
- 6.1.7 Operate and manage Customer’s accounts and manage any application, agreement or correspondence Customer’s may have with DCC Technologies;
- 6.1.8 Performing all administrative and operational purposes;
- 6.1.9 Communicating (including direct marketing” with Customer’s by email, SMS, letter, telephone or in any other way about DCC Technologies’s products/goods and services, unless Customer’s indicate otherwise.
- 6.1.10 Recovering any debt Customer’s may owe to DCC Technologies;
- 6.1.11 Any other reasonably required purpose relating to the DCC Technologies business
6.3. We may Process your Personal Information for safety and security purposes.
7. DISCLOSURE OF PERSONAL INFORMATION TO THIRD PARTIES
7.1. We may disclose your Personal Information to our Associates and Service Providers, for legitimate business purposes, in accordance with applicable law. In addition, we may disclose your Personal Information –
- 7.1.1 if required by law;
- 7.1.2 legal and regulatory authorities, upon request, or for the purposes of reporting any actual or suspected breach of applicable law or regulation;
- 7.1.3 third party Operators (including, but not limited to, data processors such as providers of data hosting services and documents review technology and services), located anywhere in the world, subject to 6.2;
- 7.1.4 where it is necessary for the purposes of, or in connection with, actual or threatened legal proceedings or establishment, exercise or defence of legal rights;
- 7.1.5 to any relevant party for the purposes of the prevention, investigation, detection or prosecuting of criminal offences or the execution of criminal penalties, including, but not limited to, safeguarding against, and the prevention of threats to, public security;
- 7.1.6 to any relevant third-party acquirer(s), in the event that we sell or transfer all or any portion of our business or assets (including, but not limited to, in the event of a reorganization, dissolution or liquidation); and
- 7.1.7 to any relevant third-party provider, where our Website uses third party advertising, plugins or content.
- 7.2.1 only Process such Personal Information in accordance with our prior written instructions; and
- 7.2.2 use appropriate measures to protect the confidentiality and security of such Personal Information.
8. INTERNATIONAL TRANSFER OF PERSONAL INFORMATION
8.1. We may transfer your Personal Information to recipients outside of the Republic of South Africa.
8.2. Subject to 6.2, Personal Information may be transferred outside of the Republic of South Africa provided that the country to which the data is transferred has adopted a law that provides for an adequate level of protection substantially similar to POPIA, the Operator/third party undertakes to protect the Personal Information in line with applicable data protection legislation and the transfer is necessary in order to provide the legal and other related services that are required by DCC Technologies’s clients.
9. INTERNATIONAL TRANSFER OF PERSONAL INFORMATION
9.1. We implement appropriate technical and organizational security measures to protect your Personal Information that is in our possession against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, unauthorized access, in accordance with applicable law.
9.2. Where there are reasonable grounds to believe that your Personal Information that is in our possession has been accessed or acquired by any unauthorized person, we will notify the relevant regulator and you, unless a public body responsible for detection, prevention or investigation of offences or the relevant regulator informs us that notifying your will impede a criminal investigation.
9.3. Because the internet is an open system, the transmission of information via the internet is not completely secure. Although we will implement all reasonable measures to protect your Personal Information that is in our possession, we cannot guarantee the security of any information transmitted using the internet and we cannot be held liable for any loss of privacy occurring during the course of such transmission.
10. DATA ACCURACY
The Personal Information provided to DCC Technologies should be accurate, complete and up-to-date. Should Personal Information change, the onus is on the provider of such data to notify DCC Technologies of the change and provide DCC Technologies with the accurate data.
11. DATA MINIMISATION
DCC Technologies will restrict its processing of Personal Information to data which is sufficient for the fulfilment of the primary purpose and applicable legitimate purpose for which it was collected.
12. DATA RENTENTION
DCC Technologies shall only retain and store Personal Information for the period for which the data is required to serve its primary purpose or a legitimate interest or for the period required to comply with an applicable legal requirement, whichever is longer.
13. YOUR LEGAL RIGHTS
You may have rights under the South African and other laws to have access to your Personal Information and to ask us to rectify, erase and restrict use of, your Personal Information. You may also have rights to object to your Personal Information being used, to ask for the transfer of Personal Information you have made available to us and to withdraw consent to the use of your Personal Information.
14. COOKIES AND SIMILAR TECHNOLOGIES
14.1. We may Process your Personal Information by our use of Cookies and similar technologies.
14.2. When you visit our Website we may place Cookies onto your device, or read Cookies already on your device, subject always to obtaining your consent, where required, in accordance with applicable law. We use Cookies to record information about your device, your browser and, in some cases, your preferences and browsing habits. We may Process your Personal Information through Cookies and similar technologies, in accordance with our Cookie Policy.
15. DIRECT MARKETING
15.1. We may Process your Personal Information for the purposes of providing you with information regarding services that may be of interest to you. You may unsubscribe for free at any time.
15.2. If you currently receive marketing information from us which you would prefer not to receive in the future, please email us at sandra.ayerst@drivecon.net.
16. CONTACT DETAILS
You may contact us at:
- The Data Protection Offices
- DCC Technologies (Pty) Limited
- Attention: Andries De Jager
- Telephone: 011 201 8927
- Email: andriesd@drivecon.net
© 2023 DCC Technologies (DCC). All rights reserved.