Creative Business Solutions (CREBUS) was created in bringing experts together to achieve more by making a real difference in the lives of participating communities.
This policy explains how CREBUS obtains, use and disclose personal information, in accordance with the requirements of the South African Protection of Personal Information Act (POPIA).
CREBUS is committed to protecting your privacy and developing technology that gives you the most powerful and safe online experience. This policy applies to the CREBUS website and governs data collection and usage and will ensure that personal information collected, is used properly, lawfully and transparently. By using the CREBUS website, you hereby consent to the data practices described in this statement.
Personal information CREBUS collect
The information that CREBUS collect is information that is directly, and voluntary provided to us in a variety of online forms.
CREBUS collects and process provided personal information mainly to contact you for the purpose of clarifying information, understanding requirements and delivering solutions accordingly. For this purpose, CREBUS will collect provided contact details including but not limited to your name, contact number and email address.
Website usage information may be collected using “cookies” which allows us to collect standard internet visitor usage information.
How DMS NPC use personal information
CREBUS will use your personal information only for the purposes for which it was collected and agreed with you. In addition, where necessary your information may be retained, e.g.:
CREBUS may share your personal information to our authorised service providers (partners) who are involved in the delivery of products or solutions to you. CREBUS has service level agreements in place to ensure that all our authorised partners comply with the privacy requirements as required by POPIA.
CREBUS may also disclose personal information:
How long we keep personal information
CREBUS will retain any electronic personal information for as long as is needed to fulfil the purposes outlined above, unless a longer retention period is required or permitted by law (i.e. tax, accounting or other legal requirements). When CREBUS have no ongoing legitimate business need to process personal information, we will erase or destroy it.
CREBUS are legally obliged to provide adequate protection for the personal information hold and to stop unauthorized access and use of personal information. CREBUS operates through industry service provider’s (1-grid) secure data networks protected by industry-standard firewall and password protection systems.
CREBUS will, on an ongoing basis, continue to review and enhance the implemented security controls and related processes to ensure that personal information remains secure.
CREBUS security policies and procedures also cover:
When CREBUS is to outsource to third parties (authorised partners), we impose appropriate contractual, security, privacy and confidentiality obligations. This is to ensure that personal information that CREBUS remains responsible for, is kept confidential and secure.
Data breach reporting
CREBUS will promptly notify any affected users and appropriate supervisory authorities on a data breach within data structures directly controlled by CREBUS or, as appropriate, as any such data breach is reported to CREBUS by any of our authorised partners.
Your Rights: Access to personal information
Should you believe that any personal data CREBUS hold on you is incorrect or incomplete, you have the right to request a copy of the personal information. To do this, simply contact CREBUS at email@example.com in this regard and specify what personal information you require. This will be subject to security protocols including a certified copy of your ID document to confirm your identity before providing details of your personal information.
Your Rights: Correction of personal information
You have the right to ask CREBUS to update, correct or erase your personal information. This will be subject to security protocols including a certified copy of your ID document to confirm your identity before making changes to personal information we may hold about you. CREBUS would appreciate it if you would keep your personal information accurate and truthful.
Children’s online privacy
CREBUS products and solutions are not directed to children and CREBUS does not knowingly collect online personal data from minors without parental consent. If you are a parent or guardian of a minor under the age of 16 and believe that he or she has disclosed personal data to us, we strongly encourage you to contact CREBUS immediately and we will do our best efforts to promptly remove such information from our records.
CREBUS only emails contacts with whom we have had a business relationship within the last 15 years. CREBUS may email individuals that may have enquired about products and or solutions and opted in to receive our marketing communication.
CREBUS do not sell or trade to outside parties your Personally Identifiable Information unless we provide individuals with advance notice.
Links to other websites
CREBUS have no control over and assume no responsibility for the content, privacy policies or practices of any third party sites or services.
How to contact us
If you have any queries about this policy; you need further information about our privacy practices; wish to withdraw consent; exercise preferences or access or correct your personal information, please contact us at firstname.lastname@example.org.