Privacy Policy
POPIA Compliance Statement
Litson & Associates Group of Companies (L&A) respects the privacy of all individuals (“data subjects”). We are committed to protecting personal information in compliance with the Protection of Personal Information Act 4 of 2013 (POPIA). This statement explains how L&A uses, retains, and safeguards such information.
Our Commitment
In line with POPIA, L&A undertakes to:
- Comply with both the law and recognised best practices
- Respect the rights of individuals
- Retain only quality, relevant information
- Securely store personal information
- Be open and transparent about the collection and use of personal information
- Provide individuals, where reasonably possible, with a choice regarding what data is held
and how it is used
Principle of Minimality
L&A follows the principle of minimality, meaning only information strictly relevant to the stated
purpose is processed. All personal information is:
- Obtained directly from the client (data subject)
- Collected with the data subject’s consent
The information collected depends on the specific L&A service subscribed to and may include:
- Name
- Address
- Home language
- Email address
- Contact number
- Place of work
- Identity number
Purpose of Processing
Personal information is processed solely to deliver the relevant service requested by the client and only for the original stated purpose. No personal information will be shared with a third party without the written consent of the data subject. L&A maintains “quality” personal information, meaning it is complete, accurate, not misleading, and updated where necessary.
Retention of Information
Personal information is retained only for as long as is necessary to fulfil the relevant business purpose or as legally required. Technical data, such as audit reports containing organisational information, may be retained indefinitely for legal reference.
Security of Information
L&A has implemented safeguards to protect personal information against loss, damage, destruction, or unauthorised access. In the event of a data breach, L&A will inform the Information Regulator and, if applicable, the affected persons as soon as possible, unless legally prohibited from doing so.
Marketing Communications
L&A may, from time to time, send stakeholders information on products, services, and upcoming training courses. Data subjects may opt out of such communications by providing documented notice to L&A.
Your Rights as a Data Subject
Data subjects have the right to:
- Request a copy of the personal information L&A holds about them.
- Request that L&A update, correct, or delete inaccurate personal information.
- Object in whole or in part to the processing of their data.
- Withdraw previously given consent at any time.
L&A will take reasonable steps to verify the identity of any person requesting changes to personal information before making amendments.
Contact Details for POPIA Requests
All POPIA-related requests should be directed to:
Quality@litson.co.za
Complaints
If you believe L&A is using your personal information unlawfully, you may lodge a complaint with the Information Regulator:
The Information Regulator South Africa
JD House, 27 Stiemens Street, Braamfontein, Johannesburg, 2001
P.O. Box 31533, Braamfontein, Johannesburg, 2017
popiacomplaints@inforegulator.org.za
Consent
By submitting personal information to L&A, the data subject is deemed to have consented to its use in line with this policy. If a data subject does not agree to these terms, they may choose not to provide personal information to L&A. However, this may limit L&A’s ability to provide the required service.