THE PROTECTION OF PERSONAL INFORMATION ACT
PRIVACY NOTICE

This Notice explains how we obtain, use and disclose your personal information, in accordance with the requirements of the Protection of Personal Information Act (“POPIA”).

At Cloud 29 (Pty) Ltd we are committed to protecting your privacy and to ensure that your personal information is collected and used properly, lawfully and transparently.

About the Company

For the purpose of the Protection of Personal Information Act (POPIA) and the Electronic Communications and Transactions Act 2002, the Responsible Party is Cloud 29 (Pty) Ltd, 197 Peter Mokaba Road, Morningside, Durban, Kwa-Zulu Natal, 4001

The information we collect

We collect and process your personal and company information in our legitimate interest to contact you for the purposes of understanding your requirements and delivering our services accordingly.  For this purpose, we will collect contact details including your name and organisation, job title, company details, including Limited Company financial details. The provision of this information is voluntary.

We collect information directly from you where you provide us with your personal details. If you do not provide us with this information, we would not be able to deliver our services to you or respond to your enquiries or requests.

Website usage information may be collected using “cookies” which allows us to collect standard internet visitor usage information, where you provide us with your consent.

How we use your information 

We will use your personal information only for the purposes for which it was collected.  In addition, where necessary your information may be retained for legal or research purposes.

For example:

• To gather contact information and respond to enquiries.
• To conduct market or customer satisfaction research or for statistical analysis.
• For audit, assessment, certification and record keeping purposes;
• In connection with legal proceedings.

Disclosure of information 

We may disclose your personal information to our service providers, resellers and suppliers who are involved in the delivery of products or services to you, such as Cloud storage, IT Infrastructure and internet security providers.

We have agreements in place to ensure that they comply with the privacy requirements as required by the Protection of Personal Information Act.

We may also disclose your information:

• Where we have a duty or a right to disclose in terms of law or industry codes;
• Where we believe it is necessary to protect our rights.

Information Security 

We are legally obliged to provide adequate protection for the personal information we hold and to stop unauthorised access and use of personal information.

Our security policies and procedures cover:

• Physical security;
• Computer and network security;
• Access to personal information;
• Secure communications;
• Security in contracting out activities or functions;
• Retention and disposal of information;
• Acceptable usage of personal information;
• Governance and regulatory issues;
• Monitoring access and usage of private information;
• Investigating and reacting to security incidents.

When we contract with third parties, we impose appropriate security, privacy and confidentiality obligations on them to ensure that personal information that we remain responsible for, is kept secure.

We will ensure that anyone to whom we pass your personal information agrees to treat your information with the same level of protection as we are obliged to.

You have the qualified right to request: access to your data, rectification, erasure or to object to the processing.

Your Rights: Access to information 

You have the right to request a copy of the personal information we hold about you. To do this, simply contact us at the numbers/addresses as provided on our website or as contained in our PAIA Manual and specify what information you require.  We will need a copy of your ID document to confirm your identity and complete the appropriate forms, before providing details of your personal information.

Please note that any such access request may be subject to a payment of a legally allowable fee.

Correction of your information 

You have the right to ask us to update, correct or delete your personal information. We will require a copy of your ID document to confirm your identity before making changes to personal information we may hold about you. We would appreciate it if you would keep your personal information accurate.

You have the right to submit a complaint to the “Information Regulator” regarding an alleged interference with the protection of your personal information.

You have the right to institute civil proceedings regarding an alleged interference with the protection of your personal information processed in accordance with this policy.   Complaints can be addressed to:

The Information Regulator
JD House 27 Stiemens Street, Braamfontein, Johannesburg 2001
P O Box 31533, Braamfontein, Johannesburg, 2017

Complaint’s email: complaints.IR@justice.gov.za /  POPIAComplaints@inforegulator.org.za.

Definition of personal information 

According to the Act ‘‘personal information’’ means information relating to an identifiable, living, natural person, and where it is applicable, an identifiable, existing juristic person.  Further to the POPI Act, Cloud 29 (Pty) Ltd also includes the following items as personal information:

• All addresses including business, postal and email addresses.
• ID Number
• Online Identifiers
• Change of name – for which we require copies of the marriage certificate or official change of name document issued by the state department.

How to contact us 

If you have any queries about this notice; you need further information about our privacy practices; wish to withdraw consent; exercise preferences or access or correct your personal information, please contact us at info@cloud29.co.za