Last modiﬁed: 1 June 2020
Protecting your privacy is as important to us as it is to you. For us, it’s more than just making sure we comply with the relevant legislation; you trust us with your personal information and we respect that trust. This Privacy Statement explains why and how we collect, use and store your personal information. The processing of personal data must be transparent and secure, in conformity with the Protection of Personal Information Act (POPI), the European Union General Data Protection Regulation (GDPR) and the privacy legislation of the countries in which Shoprite Group operates.
This Privacy Statement contains the information required by POPI and other relevant privacy legislation
In your day-to-day dealings with the Shoprite Group of Companies we obtain information about you. We want you to know exactly what that information is and what we do with it. This Privacy Statement describes how we collect, use, process, and disclose your personal information, in conjunction with your access to and use of Shoprite Group’s web and app platforms.
The Protection of Personal Information Act (POPI) is aimed at protecting your personal information and prescribes what we must and must not do with it. POPI created an Information Regulator who checks that companies like Shoprite manage personal information in a responsible manner that respects your privacy.
Other legislation also applies to your personal information. For instance, if you are applying for a Shoprite Money Transfer account, the Financial Intelligence Centre Act (FICA) has to be complied with, or if you buy a SIM card, the Regulation of Interception of Communications and Provision of Communication-Related Information Act (RICA) has to be complied with. This means that from time to time we will be obligated to process your personal information in a certain way (or keep it for a certain period).
This Privacy Statement forms part of our agreement with you. You should read it along with the terms and conditions that apply. These terms and conditions can be accessed on the speciﬁc Shoprite Group websites or products, and www.shopriteholdings.co.za
From time to time we may have to amend this notice to accommodate changes in our business or services or if legal requirements change. It is your responsibility to check that you have read the latest version.
The following companies or brands are part of Shoprite Holdings Ltd: Shoprite, Checkers, CheckersHyper, Usave, OK Franchise Division, OK Furniture, House & Home, Checkers LiquorShop, Shoprite LiquorShop, Medirite Pharmacy, Transpharm, Checkers Food Services, Computicket, Computicket Travel, Freshmark, K’nect.
For this document we will refer to the Shoprite Group. Our principal place of business is at Cnr William Dabbs & Old Paarl Roads, Brackenfell, 7561 but we recommend you contact our Compliance Oﬃcer at firstname.lastname@example.org
This Privacy Statement applies:
‘Personal information’ is any information that can be used to identify you or that we can link to you. Where you use our services, we will collect personal information directly from you. We may also collect personal information from third parties such as your employing organisation, regulatory authorities, recruitment agencies, credit reporting agencies, information or service providers, publicly available records, and the third parties described in this Privacy Statement.
We collect information that you voluntarily provide to us including when you communicate with us via forms, email or other channels; when you sign up for newsletters, alerts, or other materials; and when you respond to our communications or requests for information. The information you provide may include current and historical personal information including your name, contact details, title, identiﬁcation, employment, positions held and enquiry/complaint details and information about the organisation with which you are aﬃliated. We may also collect personal information about your other dealings with us and our clients, including any contact we have with you in person, by telephone, email or online.
We may collect information from other sources, such as social media platforms that share information about how you interact with our social media content, and any information gathered through these channels will be governed by the privacy settings, policies, and/or procedures of the applicable social media platform, which we strongly encourage you to review. We will handle any unsolicited information in accordance with law, including destroying or de-identifying such information where we are required to do so.
We have to collect some of your information when you enter into a lay-by agreement, purchase a cellphone or SIM card, replace a lost or stolen gift card or transfer a gift card to another branch and other services.
We may request personal information about your education, employment, racial background and state of health. As part of your application you will be asked to provide your express consent to our use of this information to assess your application and to allow us to carry out both recruitment analytics and any monitoring activities which may be required of us under applicable law as an employer. We may also carry out screening checks (including reference, background, directorship, ﬁnancial, identity, eligibility to work, vocational suitability and criminal record checks) and consider you for other positions. We may exchange your personal information with academic institutions, recruiters, screening check providers, health service providers, professional and trade associations, law enforcement agencies, recruitment analytics providers, referees and your current and previous employers. We may also gather additional information about you from publicly available resources such as LinkedIn or other social or professional media platforms and collate this with the information that you provide to us. Without your personal information, we may not be able to progress considering you for positions with us. In some instances, personal information must be provided to us in order for us to legally or contractually perform services to you, for example where we are required by law to gather personal information for anti-money laundering identiﬁcation purposes. Where relevant we will highlight to you those details that we are required to collect.
When you contact our customer support services, we collect information that helps us to categorise your query, respond to it and, if applicable, investigate what went wrong. We also use this information to track potential problems and trends to customise our support responses to provide a better service to you. Calls are recorded for quality control and record-keeping purposes.
Every time you connect to our websites we store web server logs which show your IP address (the unique number which your machine uses when it is connected to the Internet), what you looked at, whether the page request was successful or not, and which browser you used to view the pages. The use of this data is strictly for statistical and personalisation purposes only. This helps us understand which areas of the site are of particular interest and also which pages are not being requested. It also tells us how many hits and page requests we get.
Our facilities may be monitored by CCTV cameras for public safety, crime prevention and quality control.
We do not collect the information of persons under 18 without the consent of their parents or guardians. If you are under the age of 18 you must not provide personal information to us without the consent of your parent or guardian.
We use your personal information to provide our products and services to you. This includes:
We use your personal information to process your application for credit, this includes checking your identity, credit status, contact details and ﬁnancial track record. We also need personal information to send statements and other legal documents, and collect payments you owe us.
Your privacy is important to us, which is why it is our policy not to share your personal information with other companies without your consent. In particular, we will never sell your personal information. We will not provide any of your information to entities outside our group so as to permit them to market their goods or services to you.
You agree that we may transfer your information to the following people and organisations in order to process your data as set out in this Privacy Statement:
Some of these service providers may be located in other countries that may not have the same levels of protection of personal information as South Africa. If this is the case, we require that they undertake to protect the personal information of our customers to the same level that we do.
You have the right to:
You are able to view and correct some of your information online by creating an online proﬁle. Other information can be corrected via email email@example.com.
We have implemented reasonable security safeguards to protect the personal information that you give us. For example sensitive data (such as your credit card information) is protected by SSL encryption when it is exchanged between your web browser and our website.
You can play a role in protecting your information by never sharing your username, PIN or password with anyone or submitting it to a website you don’t recognise. Always log oﬀ after a web session and change your password regularly.
We regularly monitor our systems for possible vulnerabilities and attacks. No system is perfect so we cannot guarantee that information may not be accessed, disclosed, altered or destroyed by breach of any of our physical, technical or managerial safeguards.
Please note that any email you send to us is not encrypted and may be monitored by us. Please do not send us sensitive or conﬁdential personal information by email.
Although we cannot prevent all security threats, we have measures in place to minimise the threat to your privacy. We will let you know of any breaches which aﬀect your personal information.