Micor a division of Super Group Trading Pty Ltd t/a SG Trade Finance (“Trade Finance”)
1. Introduction
This policy outlines the “Trade Finance” Division of Super Group Trading “Holding Company” Pty Ltd.’s (Super Group “BU”) privacy policy that applies when “BU” obtains and uses information belonging to customers, suppliers and other third parties. It has been prepared with reference to internal business practices and applicable laws such as the Protection of Personal Information Act 4 of 2013 (“POPI”). It applies uniformly to all Business Units within Super Group, specifically including processing relating to:
All general processing of personal information for legitimate business purposes and compliance with the law
2. Marketing
This policy applies to any and all marketing and advertising initiatives and promotions undertaken, whether online or otherwise, by “BU” as well as the provision of value added and financial services by said “BU”.
All Super Group Business Units take steps to ensure that marketing and advertising initiatives undertaken:
When marketing to customers and potential customers, Super Group “BU” offers an opt-out functionality to allow anyone who receives marketing material to opt out from future communications from the “BU”.
The law does not require consent for all marketing, but where consent is required, Super Group “BU” will only do marketing with the necessary consent.
Super Group “BU” will not sell your personal information to third parties for marketing or any other purpose.
3. General POPI principles applying to consumer and third party information
(1) PersonalInformation.
In this policy “Personal Information” or “information” means information about a person, including both natural and juristic persons being customers, potential customers, suppliers, and other third parties (collectively referred to as “Data Subjects”), that can be used to identify the Data Subject. Personal Information includes, amongst others, name, identifying numbers, address, contact information, banking information and all other personal information as defined in POPI.
(2) Collecting Personal Information.
As far as possible, Personal Information is collected directly from the Data Subject, but may also be
collected from the following sources if it cannot be collected directly from the Data Subject: Government organisations and public bodies;
(3) Responsibility.
Super Group “BU” shall assume all the responsibilities of a “Responsible Party” in terms of POPI (this is the party that determines the purpose of and means for processing Personal Information). This applies from the time that the Personal Information is obtained the first time until it gets destroyed.
(4) Processing.
Personal Information will be collected and processed lawfully and in accordance with all laws that apply to Super Group “BU”, including but not limited to POPI, PAIA, CPA, FAIS, NCA and ECTA. (Please refer to Annexure A for details on these laws.)
(5) Minimality.
Only Personal Information that is necessary, related to or relevant to the reason for which Super Group “BU” intends to use it will be obtained and processed by Super Group “BU”. Super Group “BU” will not ask for more information than required in the circumstances.
(6) Purposes for processing Personal Information.
Super Group “BU” will process Personal Information for the following purposes in compliance with applicable laws:
o administrative and operational tasks;
o monitoring our business, carrying out market and statistical research, and for business
development;
o financial management, business audits and analyses, and fraud prevention; and o compliance with legal requirements;
– to comply with reporting and other legal obligations in terms of contracts or the law;
– any other purpose if the law allows or requires it.
(7) Marketing.
Super Group “BU” may use your Personal Information to provide you with information regarding any of its other related products, services, or events from time-to-time. You may however request that Super Group “BU” stops sending you such information or request that your Personal Information is removed from Super Group “BU”’s mailing list at any time by e-mailing ITSM.WeCare@supergrp.com . When you opt-out of receiving marketing information, Super Group “BU” may still contact you when it is necessary for our relationship with you, such as performing in terms of our agreement with you, providing you with necessary information, or if required or allowed by law.
(8) Disclosure and use of Personal Information.
Super Group “BU” will not use or disclose Personal Information to any third party for any purpose other than the purpose for which the information was collected, without obtaining the necessary consent to do so or to the extent that legislation permits or requires.
Super Group “BU” will disclose Personal Information to regulatory authorities, accountants, auditors, lawyers or professional advisors if contractually required to or legal obligated to.
Information may also be shared with third party service providers whose products or services are related to or connected with the products or services supplied to you by Super Group “BU”.
Super Group “BU” will also transfer information to third parties if it sells any portion of its business or assets.
Information may be shared with approved Super Group “BU” Service providers or subcontractors when and if required to in order to fulfil our obligations to you, however information will only be transferred to these third parties when and if all the required and relevant confidentiality and data security undertakings and legal requirements have been contractually accepted and agreed to in writing and in the event of a transfer of Personal Information to any third party, details of the transfer will only be retained for as long as is required to fulfil contractual obligations and / as allowed or required by law.
(9) Consent.
Where you have provided consent for Super Group “BU” to process your Personal Information, you may also withdraw your consent where and if our processing or marketing has been based on your consent. Personal Information may continue to be processed when and if legal justification exists for the processing.
In instances, where consent is required in order to process your Personal Information refusal to provide consent may result in Super Group “BU” not being able to maintain the relationship with you, unless other legal grounds to lawfully process your Personal Information without consent exists.
(10) Public disclosure of Personal Information.
Unless the law requires or provides otherwise, Super Group “BU” will only make Personal Information
public with your express consent to do so.
(11) Retention periods.
Super Group “BU” takes reasonable steps to only process Personal Information for the minimum period necessary and retains information in accordance with the retention periods required by law and as described in this policy. Information that is no longer required for the purposes for which it was collected will be destroyed.
(12) Security.
All reasonable measures will be taken to ensure the security, integrity and confidentiality of Personal Information that we hold by taking appropriate, reasonable, technical and organisational security measures to protect Personal Information and prevent accidental or unlawful destruction, loss, alteration, disclosure, access and other unlawful or unauthorised forms of processing.
Super Group “BU” cannot be held liable for any losses or damages that may occur as a result of security breaches unless directly attributed to the gross negligence or misconduct on the part of Super Group “BU” or any of its employees, contractors or service providers.
(13) Security breach.
In the event of a security breach of any Personal Information, Super Group “BU” will notify all affected Data Subjects and the applicable regulatory authorities of the breach. If you want to report any concerns about our privacy practices or if you suspect any breach regarding your Personal Information, kindly notify us by sending an email to ITSM.WeCare@supergrp.com .
The internet is an open and often vulnerable system and the transfer of information via the internet is not completely secure. Although we will implement all reasonable measures to protect Personal Information, we cannot guarantee the security of your Personal Information transferred to us when using the internet.
Therefore, you acknowledge and agree that any transfer of Personal Information via the internet is at your own risk and you are responsible for ensuring that any Personal Information that you send is sent securely.
(14) Third party information and websites.
Super Group “BU” is not responsible for and gives no warranties, undertakings and makes no representations in respect of the privacy policies or practices of any websites linked to Super Group “BU” website. Your use of and reliance on these links is at your own risk.
(15) Objection to processing.
You may, on reasonable grounds, object to Super Group “BU” using your Personal Information for certain purposes. If you object, we will stop using your Personal Information and delete it, except if applicable laws allow its use or retention. To exercise this right or to discuss it with us, please contact us on ITSM.WeCare@supergrp.com .
(16) Quality of Personal Information.
We want to ensure that your Personal Information is accurate and kept up to date. You may ask us to correct or remove any Personal Information that you think is inaccurate, by sending us an email on ITSM.WeCare@supergrp.com .It is your responsibility to update us if any of your Personal Information changes.
(17) Access to Personal Information.
You have the right to request whether Super Group “BU” holds any Personal Information about you. If you would like us to provide you with the Personal Information that we hold about you, you may send in a request in the prescribed format (link) and email it to ITSM.WeCare@supergrp.com . This request may be subject to you verifying your identity and the rights that you are wishing to exercise and to an administration fee in terms of applicable laws. We will provide you with the requested information, or if in terms of the law we are not required to share the information with you, we will inform you accordingly as soon as is reasonably possible in the circumstances but no later than 30 days after request has been received.
(18) Complaints.
If you want to raise any objection or have any queries about our privacy practices, you can contact our data protection officer on ITSM.WeCare@supergrp.com . In the event that you believe that Super Group “BU” or any of its divisions, have infringed on any of your rights or have contravened the provisions of POPI in any manner that has prejudiced you, you have the right to raise your complaint in the prescribed format
with the Information Regulator of South Africa. Details on how to lodge a complaint may be obtained from http://www.justice.gov.za/inforeg, and complaints can be submitted to the Information Regulator of South Africa with the following contact details:
Address:
Braampark Forum,
Forum 3, 3rd Floor
33 Hoofd Street,
BRAAMFONTEIN
Complaints email: complaints.IR@justice.gov.za General enquiries email: inforeg@justice.gov.za Fax: 086 500 3351
4. Social Media
Super Group “BU” encourages all of their employees to explore and engage in social media interactions, but in a manner that is respectful, responsible and with sound judgement and common sense. At all times, they are expected to adhere to Super Group “BU” values, and ensure that they follow the Policies and Procedures that apply to Social Media interaction.
Please note that if you communicate with us through a Social Media channel, we may use the same channel to communicate back to you. This also applies to communications regarding a sales or service contract, for example sending documentation over WhatsApp. Using social media channels may expose your information to security risks, and by choosing to use these channels, you accept this risk.
5. Supplier Procurement
This policy also applies to the personal information processed during procurement and appointment of all and any suppliers and/or outsourced service providers of products and/or services, including the following:
Super Group “BU” endeavours to ensure that all suppliers of products and services are assessed and vetted to ensure that they comply with:
6. Customer Complaints and Dispute Resolution Super Group “BU”s are bound by the Consumer Protection Act 68 of 2008 .
Should you be dissatisfied with your experience at “BU” please forward the details of your complaint to our Head Office at ITSM.WeCare@supergrp.com , for further investigation.
7. B-BEEE/Transformation
Super Group “BU” supports our Government’s initiatives for transformation and is committed to the promotion of sustainable economic growth and social development in South Africa.
B-BBEE is a critical and key component to achieving this aim and not only ensures that we comply with our Government’s B-BEEE Code of Conduct, but it enables us to better serve the needs of both our customers and our business, and contribute more positively to society as a whole.
In this regard customers may be requested to complete a BBBEE declaration in certain instances when dealing with “BU”. This is always on a voluntary basis and with the consent of the customer and no customer is under any obligation to disclose information regarding race if it does not want to.
8. General
Super Group “BU” may use cloud storage services which will result in your information being transferred cross border. We will only transfer Personal Information to third parties in countries with adequate data protection laws or do so in terms of a written agreement with the recipient which imposes data protection requirements on that party as required by POPI.
Super Group “BU” reserves the right to alter the terms and conditions of this policy at any time.
You will be responsible for reviewing any such changes each time you access the websites and your continued use of the website after changes have been posted online constitutes your acceptance of this policy as modified by the posted changes.