We are committed to protecting your personal data and as such would like to update you on our preparations for the commencement of the Protection of Personal Information Act (“POPIA” / “the Act”) on 1 July 2021.
What is POPIA?
The Act aims at giving effect to the constitutional right to privacy by safeguarding personal information and regulates how your personal information must be processed. We will be legally obliged to protect any personal information we hold for our clients and our suppliers.
36ONE’s approach to POPIA
We have for many years actively protected your personal information and the requirements under POPIA are consistent with our historical approach:
our practices are aligned to the requirements of POPIA and international laws, for example GDPR;
personal data is kept secure and confidential at all times.
Personal information we collect
We collect information directly from you where you provide us with your personal details, for example when you invest into a portfolio managed by us or when you submit enquiries to us or contact us.
The type of information will depend on the need for which it is collected and will be processed for that purpose only. Whenever possible, we will inform you as to the information required and the information deemed optional.
We do not collect or processes your personal information for marketing purposes.
How we use your information
We will use your personal information only for the purpose of rendering services to you and for the purpose for which it was collected or agreed with you, for example:
to effectively process your investments;
to communicate to you in respect of your investments;
to verify your identity.
Who we disclose your information to
We shall not disclose your personal information to any product or third-party service providers unless agreements are in place to ensure that all service providers comply with our specific confidentiality and privacy terms.
We may disclose your information where we have a duty or right to disclose your information in terms of applicable legislation, or where it is necessary to protect our legal rights.
How we safeguard your information
We are legally obliged to provide adequate protection of your personal information. We will, on an ongoing basis, continue to review our security controls and related processes in order to ensure your personal information is secure.
Our security policies and procedures cover:
physical security;
computer and network security;
access to personal information;
secure communications;
security in contracting out activities or functions;
retention and disposal of information;
acceptable usage of personal information;
governance and regulatory issues;
monitoring access and usage of personal information;
investigating and reacting to security incidents.
When we contract with third parties, we impose appropriate security, privacy and confidentiality obligations on them to ensure that personal information that we remain responsible for, is kept secure.
Access and correction of information
You have the right to access the personal information we hold about you. You also have the right to ask us to update, correct or delete your personal information. The details of 36ONE’s Information Officer are as follows:
INFORMATION OFFICER DETAILS
Name: Grant Mann
Telephone number: +(27) 10 501 0250
E-mail address: gmann@36one.co.za