The Diamond Chamber of Commerce and its affiliates (hereinafter referred to as the “DCC” ) understand the importance of protecting your personal data.
This Privacy Statement sets out how the DCC manages your personal data and applies to the DCC’s websites that link to it.
This policy represents the DCC‘s commitment to compliance with its obligations under the Protection of Personal Information Act 4 of 2013 (“POPIA”) and the General Data Protection Regulation (GDPR) European Union (EU) 2016/679, which is a regulation in EU law on data protection and privacy for all individuals within the European Union. It also addresses the export of personal data outside the EU.
2. WHAT PERSONAL DATA WE COLLECT
When you interact with us, we may collect personal data from you. You can choose not to provide personal data when requested. However, if you choose not to, and this is necessary to provide you with our solutions and services or access to our websites, we may be unable to adequately or appropriately service your needs.
Depending on how you interact with us, the personal data we collect may include:
· your first and last name, email address, job title/position, company name, postal address, phone number, mobile number and other contact information;
· log-in and account information for authentication purposes and account access;
· your marketing preferences;
· demographic data such as your gender, age, country and preferred language;
· data about how you and your PC or device interact with the DCC, including web pages you visit when you use our websites and device, connectivity and configuration data; and
· any other information reasonably required in order to enable the DCC to render its services adequately and efficiently.
We do not generally collect sensitive personal data about you, including information relating to your health, religion, political beliefs, race or sexual orientation, except with your consent or unless we are required to do so by law.
If we link other data with your personal data, we will treat that linked data as personal data.
3. HOW WE COLLECT PERSONAL DATA
We may collect your personal data in a variety of ways when you interact with us, including when:
· you are a member or were a member of DCC;
· you purchase our solutions and services;
· you create an account with us;
· we process your orders and payment transactions;
· we respond to your inquiries and requests;
· there are communications between you and our representatives;
· we obtain feedback from you about our solutions and services;
· we conduct our administrative and business functions;
· you register for our events, forums, committee meetings, workshops and seminars;
· you subscribe to our mailing lists and newsletters;
· we market our solutions and services to you;
· you access and use our websites;
· you apply for employment with us.
We may also collect your personal data from third party sources and third parties including public databases, business partners with whom we offer co-branded services or engage in joint marketing activities, and third parties that provide list enhancement or similar services, to the extent permitted by applicable law.
4. PURPOSES FOR WHICH WE COLLECT AND USE PERSONAL DATA
We collect and use personal data to:
· send communications to you;
· establish, manage, and maintain our business relationships;
· respond to inquiries and requests;
· develop, provide, and improve our services and solutions;
· inform you about our services and solutions;
· obtain feedback from you on our services and solutions;
· provide you with a more personalised experience when you interact with us;
· conduct administrative and business functions;
· update our records and keep contact details up to date;
· enable you to effectively use and to improve our websites,
· compile website usage statistics;
· enable you to subscribe to newsletters and mailing lists;
· enable you to register for the DCC’s events, workshops and seminars;
· recruit staff;
· assess the performance of our websites and to improve their operation;
· process and respond to privacy questions, concerns and complaints;
· fulfil legal and contractual obligations.
5. SHARING YOUR PERSONAL DATA
As an organisation which you join for the purpose of securing business opportunities, we facilitate business matchmaking as one of our key offerings. For this purpose, we may share your personal data with:
· Our affiliates and partners, including international chambers of commerce as well as public and private business entities that wish to extend invitations to your business, being a member of the DCC, to participate in business-related meetings (conferences, workshops, seminars,
presentations) as well as relevant business procurement opportunities (trade missions, exhibitions, international procurement delegations and others).
· Business partners, vendors, or contractors to provide requested services or facilitate transactions, including but not limited to processing of orders, assisting with sales-related activities or post-sales support, and providing customer support. Any third parties with whom we share personal data are contractually required to implement appropriate data protection and security measures and are not permitted to use personal data for any purpose other than the purpose for which they are given access.
· In connection with, any joint venture, merger, the sale of company assets, consolidation or restructuring, financing, or acquisition of all or a portion of our business by or to another company.
· In response to a request for information by a competent authority in accordance with, or required by any applicable law, regulation or legal process.
· Where necessary to comply with judicial proceedings, court orders or government orders.
· To protect the rights, property or safety of the DCC, its business partners, you, or others, or as otherwise required by applicable law.
· Where you consent to the sharing of your personal data.
6. ONWARD TRANSFERS
The DCC may transfer your personal data to organisations within the Republic of South Africa as well as other countries where we do business in connection with the purposes identified above and in accordance with this Privacy Statement.
Where we transfer your personal data from a location within the European Economic Area (the “EEA”) or Switzerland to a country outside the EEA or Switzerland and that country does not provide a level of protection for personal data which the European Commission (“Commission”) deems adequate, we adhere to the standard contractual clauses (“SCCs”) approved by the Commission, and applicable data protection laws in the EEA which give you the following rights:
· where the DCC processes your personal data based on your consent, you may withdraw your consent at any time for future processing;
· you may request access to and correction of your personal data which is held by us at any time;
· you may object to the processing of your personal data at any time;
· you may lodge a complaint with a data protection authority if you believe that your rights relating to the protection of your personal data have been breached or that your personal data has been compromised.
Where the DCC transfers your personal data to third parties, the DCC requires those third parties to sign agreements which include the SCCs (or other data transfer mechanism approved by the Commission).
7. SECURITY OF YOUR PERSONAL DATA
The DCC is committed to protecting your personal data from misuse, loss, unauthorised access, modification or disclosure by using a combination of physical, administrative and technical safeguards and contractually requiring that third parties to whom we disclose your personal data do the same.
When you submit or post personal data online, you should be aware that the internet is not completely secure. The DCC cannot guarantee the security of any personal data that you
submit or post online.
8. DIRECT MARKETING
You can choose whether you wish to receive marketing communications from the DCC by email, SMS, post and phone. Even when you have agreed to this, you may opt out of receiving marketing materials from us at any time and manage your communication preferences by:
· following the unsubscribe instructions included in each marketing email or SMS text message from us;
· sending an email to firstname.lastname@example.org; or
· writing to us at the DCC, 89A Oak Avenue, Cullinan, Pretoria, 1000 including your details and a description of the marketing material you no longer wish to receive from us. We will comply with your request as soon as is reasonably practicable.
If you opt out of receiving marketing-related communications from us, we may still send you administrative messages as part of your ongoing use of our websites, solutions or services.
We do not provide your personal data to unaffiliated third parties for direct marketing purposes or sell, rent, distribute or otherwise make personal data commercially available to any third party.
9. HOW YOU CAN ACCESS, CORRECT, UPDATE, BLOCK OR DELETE YOUR PERSONAL DATA
If you wish to access, correct, update, block, or delete personal data that we hold about you, ther is two options 1.please write to us using the contact details set out at the end of this Privacy Statement. We will respond within a reasonable period and, at the latest, within 30 days of the date of your request. 2. You can manage your contact details on our website on what can be viewed or not viewed, please contact us within this regard.
10. COOKIES AND SIMILAR TECHNOLOGIES
· enabling you to sign in;
· authenticating you;
· keeping track of the information you have provided to us;
· improving your browsing experience;
· customising our interactions with you;
· storing and managing your preferences and settings;
· compiling statistical data;
· analysing the performance and usability of our websites;
· measuring website traffic patterns;
· determining which areas of our websites have been visited.
These technologies collect information that your browser sends to our websites including your browser type, information about your IP address (a unique identifier assigned to your computer or device which allows your PC or device to communicate over the Internet), together with the date, time and duration of your visit, the pages you view and the links you click.
Our sites may also contain web beacons or similar technologies from third-party analytics providers, through which they collect information about your online activities across our websites to help us
compile aggregated statistics about the effectiveness of marketing campaigns or other business operations.
11. LINKS TO THIRD PARTY WEBSITES AND APPLICATIONS
Our websites may contain links to sites and applications operated by third parties. We make no representations or warranties in relation to the privacy practices of any third-party site or application, and we are not responsible for any third-party content or privacy statements. Your use of such sites and applications is subject to the relevant third-party privacy statements.
12. RETAINING YOUR PERSONAL DATA
We retain your personal data for as long as is necessary to fulfil the purposes for which it was collected or to comply with legal obligations, resolve disputes, protect our assets, or enforce agreements. Depending on the purpose, retention periods will vary. The criteria we use to determine retention periods include whether:
· we are under a legal, contractual or other obligation to retain personal data including pursuant to data retention laws, as part of an investigation or for litigation purposes;
· personal data is needed to provide our solutions and services business including performance improvement and to maintain accurate business and financial records;
· there are automated means to enable you to access and delete your personal data at any time. We will generally retain personal data for a shorter period of time, where this is not the case;
· the personal data is sensitive personal data in which event we will generally retain this for a shorter period of time;
· you have consented to us retaining your personal data for a longer retention period, in which case, we will retain personal data in line with your consent.
13. CHANGES TO OUR PRIVACY STATEMENT
We may update this Privacy Statement from time to time. If we do, we will post the revised version, with an updated revision date.
14. HOW TO CONTACT US
If you have any questions about how your personal data is handled by the DCC, you have a privacy concern, or you wish to make a complaint, please contact our Chief information officer as follows:
Phone: +27 12 305 2501
The Diamond Chamber of Commerce
Chief Information Officer
89A Oak Avenue,