In line with the Protection of Personal Information Act, 4 of 2013 (POPIA), SmallBusinessDirectory.co.za commits to:

  1. Processing Information Lawfully and Transparently: We collect only the information necessary for the identified purposes and inform data subjects of how their data will be used.
  2. Ensuring Data Accuracy: We strive to keep personal information accurate, complete, and up to date.
  3. Limiting Use, Retention, and Disclosure: Personal information is retained only as required for business or legal requirements and is not disclosed to unauthorized parties.
  4. Secure Storage and Processing: We take reasonable steps to protect personal information from risks such as loss, unauthorized access, and misuse.
  5. Data Subject Participation: Individuals have the right to access, correct, or request deletion of their personal information.

Should you have any concerns regarding the processing of your personal information, please email our Information Officer at [email protected].

4. Additional Notes & Best Practices

  1. Cookie Policy:
    • Although included briefly in the Privacy Policy, consider a separate Cookie Policy or a clear section detailing the types of cookies used, their purpose, and how users can opt out or manage cookie preferences.
  2. Consent Checkboxes:
    • On sign-up or listing creation pages, include explicit consent checkboxes for data processing, email marketing, and acceptance of Terms & Privacy Policy.
  3. Information Officer Designation:
    • Under POPIA, every organization should designate an Information Officer (and, if necessary, Deputy Information Officers) who is responsible for compliance. Make sure to list that individual’s contact details.
  4. Regular Audits & Updates:
    • Review internal processes, data storage, and security measures at least annually to ensure ongoing compliance with POPIA and other laws.
  5. User-Friendly Language:
    • Although legal documents tend to be formal, aim to keep the language clear and understandable to non-legal professionals.
  6. Record-Keeping:
    • Maintain records of consent, user data requests, and any data breach incidents to demonstrate compliance if requested by regulators or users.

Disclaimer

This document is a template and should not be construed as legal advice. For complete compliance and legal certainty, consult an attorney with expertise in South African data protection and e-commerce regulations.

By implementing these guidelines, you’ll have a solid foundation for Terms of Use, a Privacy Policy, and POPIA compliance on your South African small business directory. Regularly revisit and update these policies to stay aligned with evolving legal requirements and best practices.