1. StratAstute will maintain the confidentiality of your personal information and comply with the Protection of Personal Information Act 4 of 2013 (POPIA) when processing your personal information.
1.2. The purpose of this Privacy Statement is to inform StratAstute stakeholders, existing, new and prospective, about the type and use of personal information that we collect in the ordinary course of business, the way in which it is collected, the sharing, protection and storage thereof.
1.3. Personal information refers to information that may be used to identify an individual or a juristic person such as a registered legal entity.
1.4. The Act defines personal information as "information which relates to an identifiable, living, natural person, and where it is applicable, an identifiable, existing juristic person, referred to as the "data subject".
1.5. Personal information includes, inter alia, contact information, financial information, information relating to race, gender, sexual orientation, age, physical or mental health, well-being, disability, religion, conscience, belief, culture, language and birth of the person.
2.1. Personal information collected by StratAstute can include a data subject's name, contact, birth date, identity number, gender, employment details, marital, family, policy, bank account, medical or health information.
2.2. Information collected by StratAstute will be limited to details required for business purposes and completion of requested information is therefore mandatory, unless otherwise stated. Voluntary disclosures may be requested from time to time to further support our client service requirements. Such information will be clearly marked, giving the data subject the option of non-disclosure.
2.3. The company collects information directly from the data subject or through the course and scope of our business processes.
3.1. After obtaining consent, the personal information collected or held by StratAstute may be used, stored, transferred, disclosed or shared for the following purposes:
3.1.1. Communication with stakeholders; and
3.1.2. Direct marketing of StratAstute services to stakeholders.
3.2. StratAstute will only share personal information with third parties where a stakeholder has consented to such disclosure.
3.3. If consent has been obtained, StratAstute may share personal information with persons or organisations within and outside of the organisation where doing so in no way prejudices a stakeholder’s privacy.
3.4. Where StratAstute discloses personal information to others, the third parties will be obliged to use that personal information only for the reasons and purposes it was disclosed for.
3.5. StratAstute may be obliged to disclose personal information to the extent that it is required to do so by law, in connection with any legal proceedings or prospective legal proceedings, or for the purposes of protecting the interest of clients, for example, fraud prevention or to give effect to an agreement.
4.1. StratAstute will retain collected personal information for the period required by law. Once this period has come to an end, all information will be archived or destroyed, as considered appropriate to the foreseeable business purpose.
4.2. Stakeholders can request to review all personal information held by StratAstute at any time to correct or update the information.
4.3. The onus for accurate personal information rests with the data subject.
4.4. Stakeholders may request information held by StratAstute to be removed, where the business relationship is no longer active.
4.5. StratAstute can decline your request to delete the information from its records if other legislation requires the continued retention thereof or if it has been de-identified.
5.1. StratAstute’s websites have standard security measures in place to protect against loss, misuse and alteration of collected personal information under StratAstute’s control.
5.2. However, no data transmission on the Internet can be guaranteed to be 100% secure and, whilst StratAstute strives to protect collected personal information, it cannot guarantee the security of any information submitted. Such information is therefore submitted at the stakeholders’ own risk. StratAstute will apply due processes to ensure the security on the system.
5.3. Cookies are small amounts of information that are sent to and stored on a computer. They are used to identify the user when a user visits our websites to ease the browsing experience, to remember usernames, passwords and preferences and to deliver a faster and more personalised service. StratAstute’s websites may contain adverts created and provided by third parties. These adverts may place cookies on your computer that collect information about you and your use of the Internet. StratAstute does not control the collection or use of your information by such advertisers and this Privacy Statement does not apply to such information. Stakeholders are advised to disable cookies on your internet browser, where preferred.
5.4. StratAstute will take all reasonable precautions to prevent the loss, misuse or alteration of collected personal information.
5.5. All the personal information will be stored in a secure manner, applying reasonable data security protocols.
5.6. Due to the international nature of the world-wide web and our business, the sourcing and processing of collected personal information will, where required for business purposes, involve transferring the information between countries in which StratAstute and its internationally based strategic partners operate.
5.7. There may be referenced links to the StratAstute websites which appear on third party websites over which StratAstute has no control. StratAstute accepts no responsibility or liability for any third-party practices on third party websites. Stakeholders are advised to carefully read third party privacy statements prior to use of their sites. StratAstute will take necessary steps required to authorise third party references to our websites, as far as possible.
6.1. This policy will be reviewed and updated to ensure ongoing compliance with legislation.
6.2. Where required, StratAstute’s internal stakeholders, including directors, employees and representatives, will receive appropriate policy training, awareness and/or communication related to data privacy, data security and more detailed cyber security training.
