MyBizBox
Business OS
Governance & ComplianceCompany Policies

GDPR Privacy Policy

This GDPR Privacy Policy template is designed for Southern African businesses to inform customers and users about how their personal data is collected, processed, and protected in compliance with GDPR principles. It should be used when operating in or offering services to individuals within the European Union.

Updated 15d ago
GDPRPrivacy PolicyData ProtectionComplianceSouthern AfricaPersonal DataLegalBusiness Policy
Download Preview & customize

Company Letterhead

{{company_name}}

{{company_address}}

Phone: {{phone}}

Email: {{email}}

Website: {{website}}

1. Introduction

This Privacy Policy explains how {{company_name}} ('we', 'us', or 'our') collects, uses, and protects your personal data when you use our services or interact with us. We are committed to protecting your privacy and complying with the General Data Protection Regulation (GDPR) as it applies to businesses operating in the specified Southern African context.

2. Data We Collect

We may collect various types of personal data from you, including:

- **Identity Data:** such as {{first_name}}, {{last_name}}, {{username}} or similar identifier, {{title}}, and {{date_of_birth}}.

- **Contact Data:** such as {{billing_address}}, {{delivery_address}}, {{email_address}}, and {{telephone_numbers}}.

- **Financial Data:** such as {{bank_account}} and {{payment_card_details}}.

- **Transaction Data:** details about {{payments_to_and_from_you}} and other details of products and services you have purchased from us.

- **Technical Data:** such as {{internet_protocol_IP_address}}, your {{login_data}}, {{browser_type_and_version}}, {{time_zone_setting_and_location}}, {{browser_plug_in_types_and_versions}}, {{operating_system_and_platform}}, and other technology on the devices you use to access this website.

- **Usage Data:** includes information about how you use our website, products, and services.

- **Marketing and Communications Data:** includes your preferences in receiving marketing from us and our third parties and your communication preferences.

3. How We Use Your Data

We use your personal data for the following purposes:

- To provide and maintain our services.

- To process and manage your {{transactions}} and {{orders}}.

- To manage your {{account}}.

- To send you {{marketing_and_promotional_communications}} (with your consent).

- To improve our {{website}}, {{products}}, and {{services}}.

- To comply with {{legal_obligations}}.

4. Lawful Basis for Processing

We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:

- Where we need to perform the {{contract_we_are_about_to_enter_into_or_have_entered_into_with_you}}.

- Where it is necessary for our {{legitimate_interests}} (or those of a third party) and your interests and fundamental rights do not override those interests.

- Where we need to comply with a {{legal_or_regulatory_obligation}}.

- Where you have given your {{consent}}.

5. Data Retention

We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements. To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.

6. Your Rights Under GDPR

Under certain circumstances, you have rights under data protection laws in relation to your personal data. These include:

- The right to {{access}} your personal data.

- The right to {{rectification}} of your personal data.

- The right to {{erasure}} of your personal data.

- The right to {{object_to_processing}} of your personal data.

- The right to request {{restriction_of_processing}} of your personal data.

- The right to request the {{transfer_of_your_personal_data}}.

- The right to {{withdraw_consent}}.

7. Data Security

We have implemented appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business 'need to know'. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.

8. Contact Us

If you have any questions about this Privacy Policy or our data protection practices, please contact us at:

Email: {{contact_email}}

Address: {{contact_address}}

Signature Block

Date: {{date}}

_____________________________

{{authorised_representative_name}}

{{authorised_representative_title}}

For and on behalf of {{company_name}}

PreviousGDPR Internal Security PolicyNext GDPR Security Policy

Related templates

Graphic Design Brief

Template from the Marketing catalogue. Edit to customise.

1
2w ago

Annual General Meeting Notice

This document provides a template for an Annual General Meeting (AGM) notice, informing shareholders of the meeting details and agenda.

AGMNoticeShareholders
Today

Director Code of Conduct

A document outlining the expected standards of behaviour and ethical conduct for directors of a company.

DirectorCode of ConductGovernance
2w ago

Board Resolution Approving Acquisition of Business Assets

This template provides a formal board resolution for a company to approve the acquisition of business assets. It should be used when the board of directors needs to officially sanction the purchase of assets from another entity.

board resolutionacquisitionassets
3d ago