1. CUSTOMER PRIVACY NOTICE
Origen (including this website, POPIAct-Compliance) is committed to protecting privacy and to ensure that personal information is collected and used properly, lawfully and transparently. This Notice explains how Origen Engineering Solutions obtains, uses and discloses personal information, in accordance with the requirements of the Protection of Personal Information Act (“POPIA”).
1.1. About the Company
Origen is a service based organisation that provides forensic engineering based services to industry.
1.2. The information we collect
We collect and process your personal information mainly for the purposes of marketing, understanding your requirements, and delivering services accordingly. For this purpose we will collect contact details including names, contact details and organisational details.
We collect information directly from you where you provide us with your personal details. Where possible, we will inform you what information you are required to provide to us and what information is optional.
Website usage information may be collected using “cookies” which allows us to collect standard internet visitor usage information.
1.3. How we use your information
Origen will use your personal information only for the purposes for which it was collected and it use was agreed. In addition, where necessary your information may be retained for legal compliance purposes.
- To confirm and verify your identity or to verify that you are an authorised user for security purposes;
- For the detection and prevention of fraud, crime, money laundering or other malpractice;
- To conduct market or customer satisfaction research or for statistical analysis;
- For audit and record keeping purposes;
- In connection with legal proceedings.
1.4. Disclosure of information
Where necessary we may disclose your personal information to our service providers who are involved in the delivery of products or services to you. We have agreements in place to ensure that they comply with the privacy requirements as required by the Protection of Personal Information Act.
We may also disclose your information in instances:
- Where we have a duty or a right to disclose in terms of law or industry codes;
- Where we believe it is necessary to protect our rights.
1.5. Information Security
We are legally obliged to provide adequate protection for the personal information we hold and to stop unauthorized access and use of personal information. We will continue to review our security controls and related processes to ensure that your personal information remains secure.
Our security policies and procedures cover: KVKV I think we need to discuss how we achieve all of these and where they are covered
- Physical security;
- Computer and network security;
- Access to personal information;
- Secure communications;
- Security in contracting out activities or functions;
- Retention and disposal of information;
- Acceptable usage of personal information;
- Governance and regulatory issues;
- Monitoring access and usage of private information;
- Investigating and reacting to security incidents.
When we contract with third parties, we impose appropriate security, privacy and confidentiality obligations on them to ensure that personal information that we remain responsible for, is kept secure. At best we have a Non Disclosure Agreement – we need to check we include POPIA requirements in our general NDA
We will ensure that anyone to whom we provide personal information agrees to treat your information with the same level of protection as we are obliged to. How do we do this – if we don’t we must not include it
1.6. Your Rights: Access to information
You have the right to request a copy of the personal information we hold about you. To do this, simply contact us using the contact information as provided on our website and specify what information you require. We will need a copy of your ID document to confirm your identity before providing details of your personal information.
Please note that any such access request may be subject to a payment of a legally allowable fee.
1.7. Correction of your information
You have the right to ask us to update, correct or delete your personal information. As with the case when accessing your personal information, we will require a copy of your ID document to confirm your identity before making changes to personal information we may hold about you. We would appreciate it if you would keep your personal information accurate.
KV do we need this – why not just let the act define it – not sure that the last two points differ from the opening sentence.
1.8. How to contact us
If you have any queries about this notice; you need further information about our privacy practices; wish to withdraw consent; exercise preferences or access or correct your personal information, please contact us using the contact information listed on our website.