This is Christalyze's GDPR compliant privacy policy: we protect your info ethically.
When potential clients contact us via phone or e-mail or they enquire / follow via any of the automated mechanisms available, newsletters and social media, or they become a client, we clearly have access to contact information to allow us to contact them back, quote them, book them into our calendar, ask for satisfaction surveys or send out marketing material. This includes info classed as personally identifiable to you as an individual: name, e-mail address, contact telephone number/s, nature of business.
By virtue of the fact that you connect with us or provide us with any personal information, you are consenting to us collecting, storing and using your information. If you don't consent, kindly do not contact us, follow us, or provide us with your information.
At Christalyze we respect the privacy of information, always treat it with absolute confidentiality and we will never share, sell or pass on your private / contact information to any 3rd party not directly linked with the management and marketing of Christalyze.
Your information is protected by administrative processes, electronic cyber security systems and physical security measures on our premises.
You are within your rights to withdraw any consent previously granted or inferred, regarding your information. You'll always be presented with the opportunity to unsubscribe from our letters & courses via the UNSUBSCRIBE mechanism or by sending us an e-mail that requests us to remove you (we will send you a confirmation; if we don't we did not receive your e-mail). We will respond by deleting all info we have about you (unless we are required by law to retain any) and you won't receive further communications.
We may also gain insight into a business' strategies. Rest assured, our privacy policy and business ethics will always solidly protect your valuable information. We are happy to sign an NDA if required, or you can hold us to this privacy policy.
Christa Swart is the registered Information Officer for Christalyze. She is responsible (and liable) for all compliance duties, working with the Regulator, establishing procedures, and training any team members in awareness and compliance.
The personal information Christalyze is given by clients, prospective clients and followers include Name, E-mail Address, Contact Number, Business name & information, Bank info, website address, in order to allow us to do the work we are asked to do. This information is stored digitally across e-mails, a subscriber database, on our website (where clients have provided a testimonial about the work we've completed, which is in the public domain).
The information we keep is strictly relevant and not excessive for the purpose of being able to market the client on the internet as contracted to do. ONLY information absolutely required to do this effectively is requested and kept legitimately for as long as the client requires our support and/or where the law requires us to keep records.
We will never sell or share private information with 3rd parties not specifically contracted to assist with the digital marketing of the client in question.
Christalyze secures the integrity and confidentiality of personal information in our possession or under our control by taking appropriate, reasonable technical and organisational measures to prevent unlawful access to, loss of, damage to or unauthorised destruction thereof. We take steps to establish and maintain appropriate safeguards against those risks, including cyber-attacks.
Our incident response plan is to report any actual or suspected breaches (security compromises) as soon as reasonably possible to both the Information Regulator and the data subject/s involved. Where third parties ("operators") hold or process any personal information for you (e.g. e-newsletter facilitators), they should act only with our authority, treat the information as confidential, and have in place all the above security measures.
The information we hold is kept behind digital security measures such as passworded log-ins and physical security measures.
Since it is part of our service offerings to do, and help clients to do, digital marketing (e.g. e-newsletters, social & search engine marketing) and direct marketing to promote goods and services to the public, we observe strict limits and guidelines. Our policy is to do ethical marketing which includes marketing to existing clients, prospective clients & and audience of interested persons who at all times have the ability to opt out. Subscribers need to opt in via a double-opt-in mechanism where only they can give consent by clicking on a link sent to their e-mail address, to prevent anyone else from subscribing them. Please also see our Privacy Policy above.
All previous, current and past suppliers, employees and clients have the right to participate in their data and can e-mail the Information Officer to request that their information be updated, deleted, destroyed, obejcted to or to raise complaints if required.
Although only the information officer currently has access to private information stored, where it becomes relevant, staff members will be trained accordingly.
As a small business that does not employ more than 50 persons, does not exceed turnover threshold defined for the industry, and is managed by a sole proprietor, Christalyze is exempt from having a s51 PAIA Manual.
Here are all the systems, technology and programmes we use in serving our clients, prospective clients & subscribers: Operating System, email programs, TouchBasePro, browsers like Firefox, Edge & Chrome, Zoom / Skype as required, Facebook, Google, phone browser / whatsap / contacts / email & Facebook. We confirm that we use Anti-Virus software, user access controls, back-ups and encryption where provided.
Christalyze collects via e-mail, phone call and newsletter subscription information needed to serve our clients. The processes around the storage and duration of storage of such private information is solely dictated by what we need to be able to provide the support for as long as the data owner requires our support.