POPIA Compliance
Last updated: December 2024
1. Our Commitment to POPIA
Imbertech (Pty) Ltd is committed to complying with the Protection of Personal Information Act, 2013 (POPIA). We process personal information lawfully, responsibly, and transparently. This page explains how we handle personal information in accordance with POPIA requirements.
2. Information Officer
Our designated Information Officer is responsible for ensuring compliance with POPIA and handling all data protection inquiries: Information Officer: Sybrand de Kock. Email: Sybrandd@imbertech.co.za. Address: 57 Oak Avenue, Riverclub, Sandton. You may contact the Information Officer for any queries regarding the processing of your personal information.
3. Purpose of Processing
We collect and process personal information for the following purposes: To provide our IT services including cybersecurity, development, and consulting; To communicate with clients and respond to inquiries; To issue invoices and process payments; To comply with legal and regulatory requirements; To improve our services and client experience.
4. Lawful Grounds for Processing
We process personal information based on one or more of the following lawful grounds: Consent - Where you have given explicit consent for specific processing; Contract - Where processing is necessary to fulfill a contract with you; Legal Obligation - Where we are required to process by law; Legitimate Interest - Where processing is necessary for our legitimate business interests, balanced against your rights.
5. Your Rights Under POPIA
As a data subject, you have the following rights: Right to Access - Request confirmation of whether we hold your personal information and access to that information; Right to Correction - Request correction of inaccurate, incomplete, or misleading personal information; Right to Deletion - Request deletion of your personal information in certain circumstances; Right to Object - Object to the processing of your personal information on reasonable grounds; Right to Withdraw Consent - Withdraw previously given consent at any time; Right to Complain - Lodge a complaint with the Information Regulator if you believe your rights have been violated.
6. Exercising Your Rights
To exercise any of your rights under POPIA, please submit a request in writing to our Information Officer. We will respond to your request within a reasonable time, and no later than the timeframes prescribed by POPIA. We may request proof of identity before processing your request to ensure we are communicating with the correct data subject.
7. Security Measures
We implement appropriate technical and organizational measures to protect personal information, including: Encryption of data in transit and at rest; Access controls limiting who can access personal information; Regular security assessments and updates; Staff training on data protection; Secure disposal of personal information when no longer needed.
8. Third-Party Processing
Where we share personal information with third parties (such as service providers), we ensure they are bound by appropriate data processing agreements and maintain adequate security measures. We do not sell personal information to third parties.
9. Cross-Border Transfers
If personal information is transferred outside South Africa, we ensure the recipient country has adequate data protection laws or that appropriate safeguards are in place, as required by POPIA.
10. Data Breach Notification
In the event of a security compromise that may result in risk to data subjects, we will notify the Information Regulator and affected individuals as required by POPIA.
11. Information Regulator
If you are not satisfied with our handling of your personal information, you have the right to lodge a complaint with the Information Regulator: The Information Regulator (South Africa). Website: www.justice.gov.za/inforeg. Email: inforeg@justice.gov.za
12. Company Details
Imbertech (Pty) Ltd. Registration: 2022/260393/07. VAT: 4560322671. Address: 57 Oak Avenue, Riverclub, Sandton. Email: Sybrandd@imbertech.co.za