We Value Your Privacy

Country-Specific Privacy Addendum for South Africa, last updated: 14 November 2024

This Country-Specific Privacy Addendum for South Africa (“Addendum”) applies to all IDC customers and website visitors based in South Africa. This Addendum supplements the information contained in the Privacy Policy.

IDC is respectful of data privacy and adopts best practices in compliance with applicable privacy law and regulations, including the Protection of Personal Information Act, 2013 (Act 4 of 2013), as amended (“POPIA”) and the Promotion of Access to Information Act (“PAIA”).

With respect to the processing of personal information that is subject to POPIA, the term data subject shall include both natural and legal persons to whom the personal information relates.

The following terms included in the Privacy Policy shall be replaced by their corresponding counterparts under POPIA:

• The “controller” shall mean the “responsible party”,
• The “processor” shall mean the “operator”,
• The “personal data” shall mean the “personal information”,
• The “special categories of personal data” shall mean the “special personal information”,
• The “privacy compliance officer” shall mean the “information officer”,
• The term “child” shall mean individuals under the age of 18.

1. Data Subject Rights

   This clause fully replaces clause 8 of the Privacy Policy.

   Under POPIA, data subjects have the following rights:

   1. Right to be informed about the processing of personal information – IDC provides the information via the Privacy Policy supplemented by this Addendum.
   2. Right to be informed about any unauthorized access to personal information – IDC implements robust security measures to ensure that your personal information is protected against unauthorized access. In the event of a security compromise, we will notify you in accordance with Section 22 of POPIA.
   3. Right to access to personal information – if you wish to request access to your personal information within the meaning of Section 23 of POPIA, you may contact us via the email address set out below. If you wish to request access to your records within the meaning of, please use the Form 2 Issued by the Information Regulator.
   4. Right to request correction, destruction or deletion of personal information – if you wish to exercise this right, please use the following Form 2 Issued by the Information Regulator.
   5. Right to object to the processing of personal information – if you wish to exercise this right, please use the following Form 1 Issued by the Information Regulator.
   6. Right to object to the processing of personal information for direct marketing purposes – you may change your marketing preferences at any time by following the instructions in such communications or by contacting us via the email address set out below.
   7. Right to not be subject to a decision based solely on the basis of automated processing of personal information or profiling – please note that IDC does not carry out any profiling or decision-making based on purely automated processing.
   8. Right to lodge a complaint with the regulator – please note that the regulator is the Information Regulator of South Africa. You may use the Part I of Form 5 issued by the Information Regulator. More information can be found at https://inforegulator.org.za/.
   9. Right to institute civil proceedings regarding the alleged interference with the protection of your personal information.

   All completed forms should be delivered to us via privacy@idc.com and please put POPIA Request in the subject line. Should you need any assistance with completing the form, please also contact us via privacy@idc.com.

2. Changes to this Addendum

   1. We may periodically modify the provisions of this Addendum and encourage you to review it from time to time in order to stay up to date with the most recent developments in the area of the protection of your personal information. In the event of significant changes, we may also choose to notify you via email should we have your email address in our records.
   2. Updated versions of this Addendum will be published on our website.
   3. This Addendum was last updated on 14 November 2024.