Privacy Policy

Privacy Policy

Effective Date: 01/09/2024

ITEZ Trust (“we”, “our”, “us”) is committed to protecting your privacy and ensuring that your personal data is handled in a safe and responsible manner. This Privacy Policy outlines how we collect, use, and protect your personal data in compliance with the General Data Protection Regulation (GDPR) and the Protection of Personal Information Act (POPIA).

1. Information We Collect

We may collect and process the following types of personal data:

  • Personal Identification Information: Name, email address, phone number, postal address, and other contact details.
  • Transaction Data: Details about payments to and from you and other details of products and services you have purchased from us.
  • Technical Data: IP address, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access our website.
  • Usage Data: Information about how you use our website, products, and services.
  • Marketing and Communications Data: Your preferences in receiving marketing from us and your communication preferences.

2. How We Use Your Information

We may use your personal data for the following purposes:

  • To Provide Our Services: Processing your orders and managing payments.
  • To Manage Our Relationship with You: Notifying you about changes to our services, terms, or privacy policy, and asking you to leave a review or take a survey.
  • To Improve Our Services: Analyzing data to improve our website, products/services, marketing, customer relationships, and experiences.
  • To Comply with Legal Obligations: Complying with legal and regulatory requirements, including GDPR and POPIA.
  • To Communicate with You: Sending you promotional content or special offers, provided that you have consented to receive such communications.

3. Legal Basis for Processing (GDPR)

Under the GDPR, we rely on the following legal bases for processing your personal data:

  • Consent: Where you have provided your consent for us to process your personal data.
  • Contractual Necessity: Where processing is necessary for the performance of a contract with you.
  • Legal Obligation: Where we need to comply with a legal obligation.
  • Legitimate Interests: Where processing is necessary for our legitimate interests or those of a third party, provided your interests and fundamental rights do not override those interests.

4. Your Rights (GDPR and POPIA)

You have the following rights regarding your personal data under both GDPR and POPIA:

  • Right to Access: You can request access to your personal data and obtain a copy of it.
  • Right to Rectification: You can request correction of any inaccurate or incomplete personal data.
  • Right to Erasure: You can request that we delete your personal data under certain conditions.
  • Right to Restrict Processing: You can request that we restrict the processing of your personal data.
  • Right to Object: You can object to the processing of your personal data for direct marketing purposes.
  • Right to Data Portability (GDPR): You can request that we transfer your personal data to another organization or to you.
  • Right to Withdraw Consent: You can withdraw your consent at any time where we are relying on consent to process your personal data.

To exercise any of these rights, please contact us using the contact details provided below.

5. Data Security

We have implemented appropriate technical and organizational measures to protect your personal data from unauthorized access, use, disclosure, alteration, or destruction. These measures are designed to provide a level of security appropriate to the risk of processing your personal data.

6. Data Retention

We will only retain your personal data for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements.

7. Sharing Your Information

We may share your personal data with third parties in the following situations:

  • Service Providers: We may share your personal data with third-party service providers who assist us in providing our services, such as payment processors, delivery companies, and IT support.
  • Legal Requirements: We may disclose your personal data where required by law, regulation, or legal process, or to protect the rights, property, or safety of our company, our customers, or others.
  • Business Transfers: In the event of a merger, acquisition, or sale of assets, your personal data may be transferred as part of that transaction.

8. International Transfers

Your personal data may be transferred to and processed in countries outside of your country of residence, including countries outside the European Economic Area (EEA) or South Africa. We will ensure that any such transfers are carried out in accordance with applicable data protection laws and that adequate safeguards are in place to protect your personal data.

9. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to collect information about your browsing activities on our website. You can manage your cookie preferences through your browser settings.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page, and where appropriate, notified to you by email or through a notice on our website.

11. Contact Us

If you have any questions about this Privacy Policy or how we handle your personal data, or if you wish to exercise your rights, please contact us at:

  • Email: admin@iteztrust.org
  • Phone: + 263 776 181 920
  • Address: 15 – 5th Avenue, Mabelreign, Harare

ITEZ Trust is committed to respecting your privacy and protecting your personal data. We appreciate your trust and strive to ensure that your data is handled with care and transparency.