Cutter & Buck is committed to protecting your personal information and complies with the Protection of Personal Information Act (POPIA). We collect, use, and store personal data lawfully, responsibly, and transparently.
The Protection of Personal Information Act, 4 of 2073 (POPIA) came into effect on 1 July 2020. POPIA regulates how personal information of natural and juristic entities must be processed (‘data subjects’) and sets out certain obligations that must be complied with when processing personal information.
POPIA provides for eight lawful processing conditions which a responsible party must comply with when processing personal information of data subjects. The conditions are:
1. Accountability: The responsible party must implement measures to ensure compliance with the lawful processing conditions.
2.Processing Limitation: The purpose of the processing of personal information must be justifiable and must take place in a lawful, reasonable, and non-excessive manner.
3.Purpose Specification: Personal information must be collected and processed for a specific and defined purpose.
4.Further Processing Limitation: Personal information may not be processed for an additional purpose where such purpose is not compatible with the original purpose of the collection or where so authorised by the Information Regulator.
5.Information Quality: The responsible party must ensure the personal information being processed is complete, accurate, not misleading, and updated where necessary.
6.Openness: The responsible party must notify the data subject of its processing activities.
7.Security Safeguards: The responsible party must implement security safeguards to protect the integrity and confidentiality of personal information.
8.Data Subject Participation: Data subjects have certain rights regarding their personal information held by a responsible party, including the right to request access to and correction or deletion of such information.
Under the robust POPIA compliance programme, Cutter & Buck has:
1. Reviewed its internal processes and created new processes to ensure compliance with the lawful processing conditions, including processes related to the collection, storage, and destruction of personal information.
2. Updated our internal policies to allow for the monitoring of compliance with the provisions of POPIA.
3.Created a privacy policy, which will apply to Cutter & Buck, its contractors, and any third parties processing personal information on behalf of Cutter & Buck, requiring compliance with the provisions of data privacy legislation, including POPIA, when processing personal information.
4.Reviewed and updated all our agreements to provide for data privacy and protection in accordance with the requirements of POPIA.
5.Implementing new and updating current security safeguards to ensure the proper protection of personal information processed by Cutter & Buck.
6.Created a process which allows data subjects to request access to, or the correction or deletion of, their personal information held by Cutter & Buck.
7.Provided training to the various business areas within Cutter & Buck to ensure they remain aware and up to date with their obligations under POPIA.
8.Created a privacy statement to ensure data subjects are notified of all of Cutter & Buck’s processing activities in relation to their personal information.
9.Improved Cutter & Buck’s security and data breach processes to meet the requirements of POPIA.
Cutter & Buck is committed to protecting individual and corporate personal information. Cutter & Buck will only process personal information in accordance with the provisions of POPIA and other applicable data privacy legislation.
In order to ensure compliance, Cutter & Buck may contact you to request consent for specific processing activities, require you to sign a new agreement or addendum to provide for data privacy provisions, ask you to complete an additional form or document, request you to verify and/or update your personal information, or any other adhoc request which relates to complying with the provisions of POPIA.
Please view our privacy statement for further details on Cutter & Buck’s processing activities. If you have any questions, please contact us at connect@cutterbuck.co.za.
Where you are processing Cutter & Buck’s personal information, or processing personal information on behalf of Cutter & Buck, such processing must take place in accordance with Cutter & Buck’s privacy policy, which will be shared with you by Cutter & Buck and will be available upon request.
This privacy notice informs you of the information we collect from you. In collecting this information, we are acting as a responsible party and, by law, we are required to provide you with information about us, why and how we use your data, and what rights you have over your data.
The information you provided us, i.e. your personal information, will be used solely to enable you to purchase our products online, and will under no circumstances be used for any other reason but to allow us to create a profile for you, and to use your information for billing purposes.
Cutter & Buck commits to protecting your privacy and ensuring that your personal information is used appropriately, transparently, securely, and in accordance with applicable laws.
All personal information that our company collects is used in accordance with the purpose for which it was collected. Information collected will not be used for any other purpose before obtaining the individual’s approval, unless the new purpose is required by law.
All data received by our company is handled with the strictest data security, and no data is provided to any third party without proper consent.
By law, you can ask us what information we hold about you, see it, and ask us to correct it if it is inaccurate. You can also ask for it to be erased, and we can provide you with a copy of the information.
You can also ask us to stop using your information at any time, either by clicking the unsubscribe link at the end of any email communication or by emailing us at connect@cutterbuck.co.za.
If you have a complaint about our use of your personal information, we would prefer you raise it with us in the first instance to allow us to put it right, but you can also contact the Information Regulator’s office via their website at https://inforegulator.org.za/ or by email at inforeg@justice.gov.za. Alternatively, you can write to them at:
The Information Regulator (South Africa) JD House
27 Stiemens Street
Braamfontein
Johannesburg
2001
This privacy notice informs you of the personal information we process whilst you are an employee of our organisation and, in some cases, after you cease to be an employee.
In collecting this information, we are acting as a responsible party and, by law, we are required to provide you with information about us, why and how we use your data, and what rights you have over your data.