This Privacy Statement and Confidentiality Commitment is made by EFTsure Africa (Pty) Ltd (Registration Number: 2018/515630/07 (EFTsure), a South African owned and operated business that provides electronic payment verification services to South African businesses.
This Privacy Statement and Confidentiality Commitment:
We comply with this Privacy Statement and Confidentiality Commitment and also, in relation to ‘personal information’ about individuals as regulated by Privacy Laws, comply with Privacy Laws. Privacy Laws are the Privacy Act 1988 (C’th) including the Australian Privacy Principles (APPs) and all other Australian privacy and data protection laws, mandatory codes and other mandatory requirements.
However, most of the information that we collect, and many of the records that we use and disclose, is not personal information about individuals. We know that each customer that entrusts us with recipient names and account numbers for verification expects us not to disclose that the customer deals with particular persons or entities except for the purpose of conducting verification of payee details for that customer or otherwise at the request, or with express consent, of that customer. We accordingly undertake to customers and prospective customers that we will not and do not disclose to other persons or entities the identity of particular persons and entities with whom each of our customers deal, instead retaining, using and disclosing records of the identity of businesses with verified details and of failed verifications only for the purposes and in the ways described in this Privacy Statement and Confidentiality Commitment.
We will not modify key commitments that that EFTsure will maintain business confidentiality and accordingly will not disclose that a particular customer deals with particular persons or particular entities, except for the purpose of conducting verification of payee details for that customer or otherwise at the request, or with express consent, of that customer.
We may modify or amend other provisions of this Privacy Statement and Confidentiality Commitment from time to time. We will display a notice on our website indicating when any such revisions have been made.
This Privacy Statement and Confidentiality Commitment was last updated on 02 May 2018.
The EFTsure service (the Service) means the EFTsure payee validation service as described on our Website (as may be changed or updated from time to time by EFTsure via the Website). If you are a customer or prospective customer for the EFTsure Service you should also read the EFTsure Terms. The EFTsure Terms tell you who EFTsure is and, what we do, and set out other (non-privacy and confidentiality related) terms on which we will provide the EFTsure Service to customers.
In short, our service assists customers to ensure that money that the correct payee receives the funds that are transferred via inter-bank electronic funds transfers.
That is the reason why:
Some of our customers make payments to the same payees on a regular basis such as the South African Revenue Service.
We seek to avoid multiple contacts of the same prospective payee confirming the same details. Upon receiving a request from a customer for verification of a prospective payee and bank account, we may conduct cross-verification using records of payee details as formerly verified by us or by matching multiple requests made by multiple customers and then disclose to our customer whether the details that they provided to us for verification match a previously verified record or not. If there is a crossverification match in relation to a prospective payee, we may elect not make a further verification enquiry of the prospective payee and we may then verify to our customer that the details that they provided to us appear to be correct. If there is not a cross-verification match, we will undertake the verification process described above.
Our verification process depends upon confirmation by a prospective payee of their bank account details or cross-verification as above described. If a prospective payee does not elect to confirm their bank account provide details, or cross-verification as above described is not possible, we cannot complete our verification process.
We retain, use and disclose records of the identity of businesses with verified account details and of failed verifications only:
Except as above described we will not otherwise disclose records of the identity of businesses with verified account details and of failed verifications to any third party unless:
We will not use any personal information about an individual for a secondary purpose unless:
In terms of POPI, personal information is information relating to an identifiable, living, natural person, and where it is applicable, an identifiable, existing juristic person, including but not limited to-
Personal information may be either collected directly by us or provided (disclosed) to us by someone else and shall be in line with South Africa’s privacy laws.
There is a type of personal information called ‘special personal information’ that is subject to more stringent obligations. Special personal information includes information about an individual's health (including predictive genetic information), racial or ethnic origin, political opinions, membership of a political association, professional or trade association or trade union, religious beliefs or affiliations, philosophical beliefs, sexual orientation or practices, criminal record, biometric information that is to be used for certain purposes and biometric templates. We do not knowingly collect, hold or use special personal information.
We will comply with POPI, the Consumer Protection Act 68 of 2008 (“CPA”) and ECTA (where applicable), in relation to any direct promotional marketing of our services by us, including:
Where we use personal information for the purposes of business to business direct promotional marketing, we rely on the exception in the Privacy Act to do so.
We retain personal information after we have used the personal information for the purposes for which we collected or received it.
If we retain such personal information, it will only be used for the following purposes:
When no longer required, EFTsure uses its reasonable endeavours to ensure that all such information will be destroyed in a secure manner and in a reasonable time frame.
The security of your personal information is important to us.
We take appropriate industry recognised steps to prevent the personal information we hold about you from misuse, interference or loss, and from unauthorised access, modification or disclosure. This includes the use of technologies and processes such as access control procedures, network firewalls, encryption and physical security to protect the privacy of your personal information.
We store all personal information on secure servers in South Africa as well as the United Kingdom and the European Union.
The Services are mainly provided from our offices in South Africa.
EFTSure uses third-party service providers (such as managed hosting providers, card processors, CRM systems and technology partners) to provide the necessary software, networking, infrastructure and other services that we use to operate the Services. These third-party providers may process, or store, personal information on servers outside of the EU, including in the US.
By using any of the Services or submitting any personal information to us, you authorise EFTSure and its authorized service partners to use, store and process any personal information in these territories.
Sometimes our website contains links to other websites. When you access a website other than our website, we are not responsible for the privacy practices of that site. We recommend that you review the privacy policies of each website you visit.
please contact us using the details below.
A: Rosebank Link, 173 Oxford Rd
Rosebank, Johannesburg, South Africa, 2196
T: +27 (0)87-149-1751