PROTECTION OF PERSONAL INFORMATION POLICY
Ikhono Thrive Global is a Professional Conference Organiser and Event Management Company. We specialise in end to end project Management Services within the Tourism Industry.
We are committed to ensuring the safeguarding of all personal information in the companies possession as well as all information obtained by the company, in line with the requirements of the Protection of Personal Information Act (“POPIA”) South Africa. We strive to ensure all personal information is collected and used properly, lawfully and transparently.
This policy will also highlight how we obtain, use, disclose and destroy personal information, in accordance with the requirements of the Protection of Personal Information Act (“POPIA”).
Ikhono Thrive Global has registered Ms. NP Mlotshwa as the dedicated information officer and Mrs. BT Mosia as the deputy information officer, as appointed/delegated by the group Chair Ms. ZP Msimang.
The Information Officer is responsible for:
- Conducting a preliminary assessment
- Ensuring that this policy is supported within the organisation and accompanied by appropriate documentation
- Ensuring that documentation is relevant and kept up to date
- Ensuring this policy and subsequent updates are communicated to the organisation staff
- Ensure the policy is implemented accordingly at all times
OUR ONLINE PLATFORMS
HANDLING OF INFORMATION/DATA
The information we collect, namely personal information such as name, surname, ID numbers and contact details will be solely the event at hand that we would be managing at the time. This information/data will be collected from individuals transparently and with consent to be used for the intended purpose of managing events efficiently and effectively and ensuring that the needs of our clients and guests are met.
The collected personal information is only for the purposes for which it was collected and agreed with those individuals.
We may disclose your personal information to our service providers, venues etc. who are involved in the delivery of products or services to you. We have agreements in place with them to ensure that they comply with the privacy requirements as required by the Protection of Personal Information Act.
We may also disclose your information in the following cases:
- Where we have a duty or a right to disclose in terms of law or industry codes;
- Where we believe it is necessary to protect our rights.
We are dedicated and responsible to ensuring that all information obtained is complete, correct/accurate, updated and relevant before the information is utilised for intended purposes.
Therefore to ensure quality will entail a request to individuals to confirm relevance and accuracy of certain details.
If consent is not obtained we will not go ahead with processing such information.
DATA SECURITY/RISK MANAGEMENT
We are legally obliged to provide adequate protection for the personal information we hold and to stop unauthorized access and use of personal information. We will, on an on-going basis, continue to review our security controls and related processes to ensure that all personal information remains safe secure, therefore protect our information assets from threats, whether internal or external.
Our security policies and procedures cover:
- Physical security;
- Computer and network security;
- Access to personal information;
- Secure communications;
- Security in contracting out activities or functions;
- Retention and disposal of information;
- Acceptable usage of personal information;
- Monitoring access and usage of private information;
- Investigating and reacting to security incidents (security/data breaches)
When we contract with third parties, we impose appropriate security, privacy and confidentiality obligations on them as well to ensure that personal information that we remain responsible for, is kept secure.
We will ensure that anyone to whom we pass your personal information to agrees to treat your information with the same level of protection as we are obliged to.
RETENSION OF INFORMATION/DATA
Information/data collected will be retained for the agreed upon period and thereafter deleted or disposed of in a safe manner.
TRANSFER OF INFORMATION/DATA
We are based in and operate from South Africa. All information, including personal information, may be transferred to and maintained on servers located outside of South Africa especially in instances where we have international clients. Data privacy laws, regulations and standards, may not be equivalent to the laws in South Africa or your country of residence.
Third parties may have access to personal information for the purpose of providing relevant products and services. . We have agreements in place with them to ensure that they comply with the privacy requirements as required by the Protection of Personal Information Act.
RESPONSIBILITY OF EMPLOYEES
With reference to the company’s HR Manual, it is further highlighted in this policy that employees are prohibited from using any information/data obtained in the line of duty for their own personal use without obtaining prior permission from the company.
Employees may not share in any way, shape or form individual’s personal information for any reason other than the intended purpose the information was initially collected for.
All employees, business units, departments and individuals directly associated with Ikhono Thrive Global are responsible for adhering to this policy and for reporting any data/security breaches to the Information Officer.