Privacy Policy
1. We respect your privacy. Please read the full privacy policy because it applies to you.
2. Introduction
THE COMPANY
Name: Visit South Africa (Pty) Ltd. trading as Visit South Africa (“The Company”)
Registration number: 2021/897794/07
THE COMPANY’S CONTACT DETAILS
Email: bookings@visitsouthafrica.co
Address: Visit South Africa, St Helena Bay, Western Cape, South Africa
The purpose of this policy is to describe the way that we collect, store, use, and protect information that can be associated with you or another specific natural or juristic person and can be used to identify you or that person (personal information).
3. Audience
This policy applies to you if you are:
a visitor to our website; or
a customer who has ordered or requested the services that we provide.
4. What is personal information?
Personal information includes:
• certain information that we collect automatically when you visit our website;
• certain information collected on registration (see below);
• certain information collected on submission; and
• optional information that you provide to us voluntarily (see below);
but excludes:
• information that has been made anonymous so that it does not identify a specific person;
• permanently de-identified information that does not relate or cannot be traced back to you specifically;
• non-personal statistical information collected and compiled by us.
Common examples
Common examples of the types of personal information which we may collect and process include your:
• identifying information – such as your name, date of birth, or identification number of any kind;
• contact information – such as your phone number or email address;
• address information – such as your physical or postal address; or
• demographic information – such as your gender or marital status.
Sensitive personal information
Depending on the services that you require, we may also collect sensitive personal information including your:
• financial information – such as your bank account details;
• sensitive demographic information – such as your race or ethnicity;
• medical information – such as information about your physical or mental health;
• sexual information – such as information about your sex life or sexual orientation;
• criminal information – such as information about your commission or alleged commission of any offence or about any related legal proceedings;
• employment information – place of employment; and
• beliefs – including your political or religious beliefs.
5. Acceptance
Acceptance required
You must accept all the terms of this policy when you request our services. If you do not agree with anything in this policy, then you may not request our services.
Legal capacity
You may not access our website request our services if you are younger than 18 years old or do not have legal capacity to conclude legally binding contracts.
Deemed acceptance
By accepting this policy, you are deemed to have read, understood, accepted, and agreed to be bound by all of its terms.
Your obligations
You may only send us your own personal information or the information of another data subject where you have their permission to do so.
6. How do we collect personal information?
On registration or booking
When you submit an enquiry, book or register on our website, you will no longer be anonymous to us.
This personal information will include:
* Your name and surname;
* Your email address;
* Your telephone number;
* Your company name, company registration number, and VAT number;
* Your postal address or street address; and
* Your username and password.
We will use this personal information to fulfil your account, provide additional services and information to you as we reasonably think appropriate, and for any other purposes set out in this policy.
On order or request
When you request our services, you will be asked to provide us with additional information on a voluntary basis.
Events
You will provide us with personal information when you attend an event that we host.
From browser
We automatically receive and record Internet usage information on our server logs from your browser, such as your Internet Protocol address (IP address), browsing habits, click patterns, version of software installed, system type, screen resolutions, colour capabilities, plug-ins, language settings, cookie preferences, search engine keywords, JavaScript enablement, the content and pages that you access on the website, and the dates and times that you visit the website, paths taken, and time spent on sites and pages within the website (usage information). Please note that other websites visited before entering our website might place personal information within your URL during a visit to it, and we have no control over such websites. Accordingly, a subsequent website that collects URL information may log some personal information.
Cookies
For more information on how we deal with cookies, please refer to our Cookie Policy.
Web beacons
Our website may contain electronic image requests (called a single-pixel gif or web beacon request) that allow us to count page views and to access cookies. Any electronic image viewed as part of a web page (including an ad banner) can act as a web beacon. Our web beacons do not collect, gather, monitor or share any of your personal information. We merely use them to compile anonymous information about our website.
Optional details
You may also provide additional information to us on a voluntary basis (optional information). This includes content or products that you decide to upload or download from our website or when you enter competitions, take advantage of promotions, respond to surveys, order additional services, or otherwise use the optional features and functionality of our website.
Recording calls
We may monitor and record any telephone calls that you make to us, unless you specifically request us not to.
7. Categories of people
We process the personal information of the following categories of people:
• customers or organisations,
• prospects or leads,
• employees,
• suppliers,
• children and their guardians,
• debtors and creditors,
• dealers, and
• directors and shareholders.
8. Purpose of processing
We may use or process any goods or services information, or optional information that you provide to us for the purposes that you indicated when you agreed to provide it to us. Processing includes gathering your personal information, disclosing it, and combining it with other personal information. We generally collect and process your personal information for various purposes, including:
* Goods or services purposes – such as collecting orders or requests for and providing our goods or services;
* Marketing purposes – such as pursuing lawful related marketing activities;
* Business purposes – such as internal audit, accounting, business planning, and joint ventures, disposals of business, or other proposed and actual transactions; and
* Legal purposes – such as handling claims, complying with regulations, or pursuing good governance.
We may use your usage information for the purposes described above and to:
• remember your information so that you will not have to re-enter it during your visit or the next time you access the website;
• keep our data subject records up to date;
• better understand our data subjects’ needs;
• manage supplier contracts in general;
• manage customers in general;
• manage customer credit in general;
• manage dealer relationships in general;
• process personal information of employees for forensic purposes;
• monitor website usage metrics such as total number of visitors and pages accessed; and
• track your entries, submissions, and status in any promotions or other activities in connection with your usage of the website.
Consent to collection
We will obtain your consent to collect personal information:
• in accordance with applicable law;
• when you provide us with any registration information or optional information.
9. Use
Our obligations
We may use your personal information to fulfil our obligations to you.
Messages and updates
We may send administrative messages and email updates to you about the website. In some cases, we may also send you primarily promotional messages. You can choose to opt-out of promotional messages.
Targeted content
While you are logged into the website, we may display targeted adverts and other relevant information based on your personal information. In a completely automated process, computers process the personal information and match it to adverts or related information. We never share personal information with any advertiser, unless you specifically provide us with your consent to do so. Advertisers receive a record of the total number of impressions and clicks for each advert. They do not receive any personal information. If you click on an advert, we may send a referring URL to the advertiser’s website identifying that a customer is visiting from the website. We do not send personal information to advertisers with the referring URL. Once you are on the advertiser’s website however, the advertiser is able to collect your personal information.
10. Disclosure
Sharing
We may share your personal information with:
• other divisions or companies within the group of companies to which we belong so as to provide joint content and services like registration, for transactions and customer support, to help detect and prevent potentially illegal acts and violations of our policies, and to guide decisions about our products, services, and communications (they will only use this information to send you marketing communications if you have requested their services);
• an affiliate, in which case we will seek to require the affiliate to honour this privacy policy;
• our services providers under contract who help provide certain goods or services or help with parts of our business operations, including fraud prevention, bill collection, marketing, technology services (our contracts dictate that these services providers only use your information in connection with the services they supply or services they perform for us and not for their own benefit);
• credit bureaus to report account information, as permitted by law;
• banking partners as required by credit card association rules for inclusion on their list of terminated merchants (in the event that you utilise the services to receive payments and you meet their criteria); and
• other third parties who provide us with relevant services where appropriate.
Regulators
We may disclose your personal information as required by law or governmental audit.
Law enforcement
We may disclose personal information if required:
• other third parties who provide us with relevant services where appropriate.
• by a subpoena or court order;
• to comply with any law;
• to protect the safety of any individual or the general public; and
• to prevent violation of our customer relationship terms.
No selling
We will not sell personal information. No personal information will be disclosed to anyone except as provided in this privacy policy.
Marketing purposes
We may disclose aggregate statistics (information about the customer population in general terms) about the personal information to advertisers or business partners.
Employees
We may need to disclose personal information to our employees that require the personal information to do their jobs. These include our responsible management, human resources, accounting, audit, compliance, information technology, or other personnel.
Change of ownership
If we undergo a change in ownership, or a merger with, acquisition by, or sale of assets to, another entity, we may assign our rights to the personal information we process to a successor, purchaser, or separate entity. We will disclose the transfer on the website (www.visitsouthafrica.co). If you are concerned about your personal information migrating to a new owner, you may request us to delete your personal information.
11. Security
We take the security of personal information very seriously and always do our best to comply with applicable data protection laws. Our hosting company will host our website in a secure server environment that uses a firewall and other advanced security measures to prevent interference or access from outside intruders. We authorize access to personal information only for those employees who require it to fulfil their job responsibilities. We implement disaster recover procedures where appropriate.
12. Accurate and up to date
We will try to keep the personal information we collect as accurate, complete and up to date as is necessary for the purposes defined in this policy. From time to time, we may request you to update your personal information on the website. You are able to review or update any personal information that we hold on you by accessing your account online, emailing us, or phoning us. Please note that in order to better protect you and safeguard your personal information, we take steps to verify your identity before granting you access to your account or making any corrections to your personal information.
13. Retention
We will only retain your personal information for as long as it is necessary to fulfil the purposes explicitly set out in this policy, unless:
• retention of the record is required or authorised by law; or
• you have consented to the retention of the record.
During the period of retention, we will continue to abide by our non-disclosure obligations and will not share or sell your personal information.
We may retain your personal information in physical or electronic records at our discretion.
14. Transfer to another country
We may transmit or transfer personal information outside of the country in which it was collected to a foreign country and process it in that country. Personal information may be stored on servers located outside the country in which it was collected in a foreign country whose laws protecting personal information may not be as stringent as the laws in the country in which it was collected. You consent to us processing your personal information in a foreign country whose laws regarding processing of personal information may be less stringent.
15. Your rights
Request what information we hold on you
You may request access to your personal information to receive a copy of the personal information that we hold on you.
Updating or removing
You may choose to correct or update the personal information you have submitted to us, by clicking the relevant menu in any of the pages on our website or contacting us by phone or email.
Withdrawal of consent or objection to processing
You may withdraw your consent where we are relying on consent as a lawful justification to process. You may also object to our processing where we are relying on another lawful justification for processing. Please note that if you do so, we might not be able to provide services to you.
We may need to request additional information from you to verify your identity for you to access these rights. This is to ensure that your personal information is not disclosed to an unauthorized person.
16. Changes
We may change the terms of this policy at any time by updating this web page. We will notify you of any changes by placing a notice in a prominent place on the website or by sending you an email detailing the changes that we have made and indicating the date that they were last updated. If you do not agree with the changes, then you must stop using the website and our services. If you continue to use the website or services following notification of a change to the terms, the changed terms will apply to you and you will be deemed to have accepted those updated terms.
17. Limitation
We are not responsible for, give no warranties, nor make any representations in respect of the privacy policies or practices of linked or any third-party websites.
18. Enquiries
If you have any questions or concerns arising from this privacy policy or the way in which we handle personal information, please contact us by sending an email to bookings@visitsouthafrica.co.
This privacy notice forms part of your agreement with Activitar.
During our interactions, you share personal information with Tornado Tour Systems (Pty) Ltd, trading as Activitar, registration number 2004/000954/07.
This notice tells you what to expect when we collect information from you and how we use it.
It is part of our agreement with you, and we may need to update it occasionally. When we do, we will inform you. You should read this notice along with our terms and conditions that apply to the products and services you use.
If you have any questions about this policy, please contact us by email at privacy@activitar.com or by phone on +2787 250 0276
We collect your information in the circumstances outlined below. Sometimes we are required by law to collect your information, for instance, if tax legislation forces us to collect personal information.
We need some general information before we can enter into an agreement and you can begin to use our reservation system and online distribution service.
We collect your:
company name
contact details
VAT number
banking details
details related to your operating processes and offerings
details contained in your company registration documents
identity documents of your mandated officials
proof of address of your mandated officials
proof of banking details
We use this information to:
load you on our services and configure the system
set up and process payments via the payment gateway
communicate with you
provide training
process orders
provide your offerings to clients via activitar.com
provide support
send you statements, receipts, invoices or any other legal documents that relate to your transaction
fulfill our legal obligation to use or disclose your information
Legal basis for processing: Data protection legislation allows us to process personal information when it is necessary for the performance of a contract with you. In other instances, we are required by law to collect your information, for instance tax legislation forces us to collect personal information. |
In order for our service to function properly, ‘customer data’ is generated and collected. This includes your, and your clients’ personal information. We collect your clients’ names, contact details, and details about their bookings.
We use customer data to process bookings and reservations on our reservation system and distribution service, to analyse and improve our services and to identify and solve problems where they may appear.
Legal basis for processing: Data protection legislation allows us to process personal information when it is necessary for the performance of a contract with you. |
When you contact us by social media, email, our support service or telephone with a query, complaint, or request, we collect the information contained in your message. We use the information we collect to reply to, investigate, and resolve your query, complaint, or request.
Legal basis for processing: Data protection legislation allows us to process personal information when it is in our interest and we have chosen the least invasive way to process the information. It is in both our interest to reply to, investigate, and resolve your queries, complaints, and requests. |
We have a monthly newsletter that is delivered by email.
We’ll ask you whether you want to receive the newsletter, if you agree it is important that you know you can unsubscribe at any time by following the unsubscribe link at the bottom of the email or by contacting us.
Legal basis for processing: Data protection legislation allows us to process personal information when you have given us your express consent. |
We do not knowingly collect the personal information of children without the consent of a parent or guardian.
We use service providers and suppliers who we trust to assist us in providing our services to you. They have agreed to keep your information secure and confidential, and to only use it for the purposes for which we have sent it to them.
We share your information with service providers when they help us to:
store information
process payments
ensure you have access to the services you paid for
deliver our newsletter
help monitor the effectiveness of our promotions and advertising
help us manage our business, for instance accountants and professional advisors.
maintain our website
find and fix errors and performance issues on our website
Sometimes we will be required by law to share your information. For instance, we may be required to share your information with the South African Fraud Prevention Services. We will not sell your information or share information with third parties for the purposes of direct marketing (we don’t like spam either).
Some of the service providers that we use may be located in other countries; for instance, our cloud storage service. These countries may not have the same levels of protection of personal information as South Africa. If this is the case, we require that they undertake to protect the personal information of our customers to the same level that we do.
We will not retain your information for longer than we need to, unless we are legally required to do so. Most of your personal information will be retained for 5 years from the date of your last transaction with us. However, we may keep your contact details for longer for marketing and mailer purposes.
We have implemented reasonable security measures based on the sensitivity of the information we hold. These measures are in place to protect the information from being disclosed, from loss, misuse, and unauthorised access, and from being altered or destroyed.
We regularly monitor our systems for possible vulnerabilities and attacks, but no system is perfect and we cannot guarantee that we will never experience breach of any of our physical, technical, or managerial safeguards. If something should happen, we have taken steps to minimise the threat to your privacy. We will let you know of any breaches that affect your personal information and inform you how you can help minimise the impact.
You also have a role to play in keeping your information secure. For example, you should never share personal information with us in an email, because while our servers are protected, it is still possible that email can be intercepted. Instead, contact the Activitar support team at +2787 250 0276, which will connect you to Chris Coetzee, our information officer.
You have the right to know what kind of personal information we have about you, to correct it, and to opt out of marketing.
You have the right to
ask us what we know about you;
ask what information was sent to our suppliers, service providers, or any other third party;
ask us to update, correct, or delete any out-of-date or incorrect personal information we have about you;
unsubscribe from any direct marketing communications we may send you; and
object to the processing of your personal information.
You can request access to the information we have about you, or correct your personal information by contacting our deputy information officer at privacy@activitar.com. It can take us up to 21 days to respond to your request because there are procedures that we need to follow. In certain cases, we may require proof of your identity, and sometimes changes to your information may be subject to additional requirements such as valid proof of residence.
If you are in the European Union, you have these rights in terms of the GDPR:
The right to be informed about the collection and use of your personal information.
The right to access your personal information. You may make such a request from us by contacting privacy@activitar.com. We may take one month to respond to your request and may charge a fee in some circumstances. We will let you know if this is the case.
You have a right to have inaccurate personal information corrected or completed if it is incomplete. You may make such a request from us by contacting privacy@activitar.com. We may take one month to respond to your request and may refuse in certain circumstances.
You have the right to have your personal information erased, also known as the ‘right to be forgotten’. You may make such a request from us by contacting privacy@activitar.com. We may take one month to respond to your request and may refuse in certain circumstances.
You have the right to request that we restrict or suppress your personal information. You may make such a request from us by contacting privacy@activitar.com. We may take one month to respond to your request and may refuse in certain circumstances.
You have the right to reuse your personal information for your own purposes across different services, also known as the right to data portability.
You have the right to object to us processing your personal information in certain circumstances. You may make your objection by contacting privacy@activitar.com. We may take one month to respond to your request. There are legitimate reasons why we may refuse your objection, which depend on why we are processing it.
You have the right to complain to a supervisory authority in the Member State where you live or work, or where the infringement took place.
You have the right to object to automated decision-making and profiling.
You may ask that a human review any automated decisions that we make about you, express your point of view about it, and obtain an explanation of the decision. You may challenge any automated decision made about you by contacting privacy@activitar.com. We may take one month to respond to your request.
© 2024 Tornado Tour Systems (Pty) Ltd ta Activitar.