Privacy Policy
DECORLAB Last Updated: 10 August 2022
PRIVACY POLICY AND DATA PROTECTION POLICY
PROTECTING YOU, YOUR PERSONAL INFORMATION & YOUR DATA
PREFACE
This policy should be read carefully. By accessing or using our Website, you acknowledge and confirm
that you have read all of the terms of this Policy and our Website's Terms and Conditions, and that you
understand, accept and agree to be bound by all the provisions contained in this Policy and the Terms
and Conditions as contained on our Website.
Should you not agree to be bound by any of these terms and conditions and by our privacy policy,
kindly exit this page and do not access or use our Website.
Our Privacy Policy explains what information we may collect (with your consent) on the Website, how
we process (use and/or share) subject to your consent such information, and how such information is
maintained.
This Policy only applies with regard to the information collected on the Website and not with regard to
any information collected or obtained through other methods or sources.
Our Policy ensures that any information which you provide us remains private, secure and confidential.
We will never collect, store and/or process sensitive information about you without your prior consent.
You can check and update the information that we hold about you by contacting us using the contact
information below.
If you find any inaccuracies we will delete or correct it promptly upon your written request.
1. INTRODUCTION
1.1 Our website i.e. www.decorlab.co.za is owned, operated and directed by Cronnos(Pty)Ltd (Registration Number: 2017/ 120339/ 07) trading as Decorlab (a Private Company, duly
registered as such in terms of the relevant laws of the Republic of South Africa with its principal place of
business situated at Shop G20, 81 Chichester Rd, Kenilworth, Cape Town, 7708).
.
1.2 We have referred to the aforementioned enterprise in this document as “Decorlab”, "us", "we", "our" and/or “the Company”)
1.3 We are dedicated, devoted and committed to protecting your privacy and thus, our legal team have
developed this privacy policy and data protection policy.
1.4 Accordingly, we will only use the information that we collect from you and that which you furnish us with,
lawfully and in accordance with the Electronic Communications and Transactions Act No. 25 of 2002, the
National Credit Act No. 34 of 2005, the Consumer Protection Act No. 68 of 2008, the Protection of
Personal Information Act No. 4 of 2013 and all other applicable data protection legislation enacted in
South Africa from time to time.
2. ÉXPRESS CONSENT BY CUSTOMER TO PROCESS INFORMATION
2.1 In order to provide you with our service we collect personal information from you, that is
volunteered when you register on our website (www.cnbw.co.za), place an order, fill out an online
form and/or in response to specific information requests unambiguously and explicitly presented to
you.
2.2 When ordering or registering on our site, as appropriate, you may be asked to enter your first and
last name, your e-mail address, your postal address, your date of birth, your contact details, and
details of a payment mechanism, such as your credit/debit card information.
2.3 As a customer of Decorlab, the customer confirms that he/she expressly provides Decorlab with his/her
Personal Information which will be used to:
2.3.1 give effect to his/her contractual relationship with the company and to conduct its operations for
the provision of sale of goods services to him/her;
2.3.2 to effect delivery of goods to the customer;
2.3.3 comply with obligations required by any legislation affecting this company.
2.3.4 protect the legitimate interests of the company, the customer and or any third parties.
2.3.5 store the customer’s personal information in a secure manner in any format.
2.3.6 in connection with legal proceedings including debt collection.
2.4 As a customer of Decorlab, the customer confirms that his/her Personal Information which will not be:
2.4.1 transferred to any party not referred to in this policy;
2.4.2 transferred to any third party outside the Republic of South Africa; and
2.4.3 transferred to any third party who does not have in place a similar privacy and/or data protection
policy.
3. CONSENT FOR THE PROCESSING AND USE OF PERSONAL INFORMATION
The customer understands and agrees that:
3.1 Decorlab (www.decorlab.co.za) is an online sales site and as part of its business functions and the company
collects and processes Personal Information.
3.2 Decorlab collects, stores, uses, handles, processes, transfers, retains, archives and otherwise manages
Personal Information.
3.3 In order to discharge this duty, the Responsible Party requires the customer’s express and informed
permission to collect and to process his/her Personal Information.
3.4 Purpose: The customer expressly consents to the company sharing his/her Personal Information with
selected payments gateway authorisers, banking institutions, administrators, service providers and any
contracted third parties necessary for the provision of any service to the customer.
3.5 The customer further agrees that Personal Information provided to Decorlab will be used to:
3.5.1 give effect to his/her contractual relationship with the company and to conduct its operations for
the provision of sale of goods services to him/her;
3.5.2 to effect delivery of goods to the customer;
3.5.3 comply with obligations required by any legislation affecting this company.
3.5.4 protect the legitimate interests of the company, the customer and or any third parties.
3.5.5 store the customer’s personal information in a secure manner in any format.
3.5.6 in connection with legal proceedings including debt collection; and
3.5.7 to provide marketing of the company’s goods and services to the customer should the customer opt-in to
receive such marketing updates.
3.6 The customer understands and agrees that if the company does not have his/her consent, the company
will not be able to provide him/her with their services and cannot share the customer’s Personal
Information with any third party in order to fulfil the customer’s order and/or effect delivery thereof.
3.7 Withholding Consent: The customer understands that he/she can lawfully withhold consent to the
company collecting and processing my Personal Information. The customer agrees that in this case the
company will not be able to provide their services to him/her.
3.8 Storage of personal information: The customer’s Personal Information will be stored electronically or in
hard copy in a safe and secure environment. Hard copies of Personal Information will be stored and
retained safely under lock and key. After he/she is no longer an active customer, his/her Personal
Information will be retained for as long as law or the company requires it.
3.9 Retention of Personal Information: The company will not retain Personal Information for longer than is
necessary and for the required purpose. The exceptions to the above principle specifically provided in
POPIA are where –
3.9.1 the retention of the record is required or authorised by law;
3.9.2 the company reasonably requires the record for lawful purposes related to its functions or
activities;
3.9.3 the retention of the record is required in terms of an agreement between the company and the
customer; or
3.9.4 the record is retained for historical purposes, with the company having established appropriate
safeguards against the record being used for any other purpose.
3.9.5 When the Personal Information is no longer required, it shall be destroyed or deleted in a manner
that prevents its reconstruction in an intelligible form.
3.10 Intended recipients: The customer agrees that the intended recipients of my Personal Information are
the customer, third-party payment gateway payment processors, banking institutions, and the Company
(including Company staff or their company staff). Such disclosure shall always be made between the
company and recipient to comply with strict confidentiality and security conditions as contained in POPI
Act.
3.11 Transfer outside South Africa: The customer agrees to the company transferring any Personal
Information outside of the borders of South Africa to its service providers that has in place similar
privacy laws to POPIA or the recipient is bound contractually to no lesser terms of POPIA.
3.12 The customer understands that he/she has the right to have his/her Personal Information processed in
accordance with the eight conditions of lawful processing of Personal Information as set out in POPIA.
3.13 Objection to Processing: The customer understands that he/she has the right, to object to the company
processing his/her Personal Information, on reasonable grounds. On receipt of my notice of objection
with reasons, the company shall hold any further processing of the customer’s Personal Information
until his/her objection has been addressed, resolved, withdrawn or upheld and accepted by the
company. If the customer’s objection is upheld, no further processing of the customer’s Personal
Information shall be done by the company. The customer acknowledges that the company also reserves
the right to discontinue any service.
3.14 Right to withdraw consent: The customer understand that he/she has the right to withdraw his/her
consent to the company processing his/her Personal Information at any time, provided any processing
before such withdrawal or if the processing is necessary for the conclusion or performance of a contract
to which the customer is a party will not be affected. The customer understands that he/she can revoke
consent for any specific recipient agreed to as stated above, or any person who has access to the
customer’s Personal Information. Once this information is captured and updated, the customer’s
personal information will no longer be shared. The customer understands and agrees that this may
affect the service provided to him/her and the customer shall take full responsibility for such decision.
3.15 Access: The customer has the right at any time to request details of any of his/her Personal Information
that the company holds, such request shall be made in writing to the Information Officer of the
company.
3.16 Correction/Deletion: The customer has the right to request the company, to correct and/or delete
his/her Personal Information that is inaccurate, irrelevant, excessive, out of date, incomplete,
misleading. That any changes to the customer’s personal information must be communicated to the
company immediately so these changes can be updated on their systems. The company will not be liable
for inaccurate information on our systems as a result of the customer’s failure to update his/her
personal information. The customer has the right to request that the company destroy or delete a
record of his/her Personal Information that the company is no longer authorised to retain in terms of
any other law.
3.17 Correction of Personal Information: The customer acknowledges that whilst the company will always
use its best endeavours to ensure that the customer’s Personal Information is reliable, it is the
customer’s responsibility to advise the company of any changes to his/her Personal Information, as and
when these changes may occur. The company will not be liable for inaccurate information on our
systems as a result of the customer’s failure to inform the company of his/her updated personal
information.
3.18 Marketing: The company undertakes not to distribute the customer’s Personal Information to any third
party for the purpose of marketing to me third party’s supplies or other products. Notwithstanding this,
the customer agrees that the company may process his/her Personal Information for providing him/her
with the company’s products/services. Should the customer not wish to receive these communications,
the customer will provide the company with a detailed opt out, listing the type of communication that
he/she does not wish to receive which notice shall be addressed to the Information Officer at info@decorlab.co.za
3.19 The customer hereby agrees and confirms that:
3.19.1 The customer will not hold the company responsible for any loss (whether direct or indirect) that
may arise from the use of the customer’s Personal Information.
3.19.2 The customer may not hold the company responsible for any loss that may result from the
incorrect use or disclosure of the information by any third-party to whom the company has
provided the Personal Information to subject to the customer’s consent.
3.19.3 The customer had an opportunity to carefully read the company’s terms and conditions and
privacy policy, and the customer fully understands the consequences of these terms and
conditions. The customer had sufficient opportunity to ask questions about this privacy policy and
such questions (if any), have been answered to the customer’s satisfaction by the company.
3.20 The customer confirms that his/her consent is provided of his/her own free will without any undue
influence from any person whatsoever.
3.21 The Company Information Officer details are: Ashraf Kathrada – info@decorlab.co.za
4. SECURITY & RETENTION - PROTECTING YOUR PERSONAL IDENTIFIABLE INFORMATION
4.1 HOW DO WE PROTECT YOUR INFORMATION?
4.1.1 We implement a variety of security measures to maintain the safety of your personal
information when you place an order or enter, submit, or access your personal
information.
4.1.2 We offer the use of a secure server. All supplied sensitive/credit information is
transmitted via Secure Socket Layer (SSL) technology and then encrypted into our
Payment gateway providers database only to be accessible by those authorized with
special access rights to such systems, and are required to keep any information
contained therein confidential.
4.1.3 After a transaction has been concluded, your private information (credit cards,
financials, etc.) will be kept on file or stored on our database for a period not exceeding
3 (Three) years after it is last accessed or used by us. You hereby confirm by accessing
our website that you consent to the storage of your personal information.
4.1.4 Data transmission over the internet can never be warranted to be entirely secure. Whilst
we may take all reasonable steps and precautionary measures to safeguard your
personal information, we may be unable to prevent unauthorised access to such
information by third parties or inadvertent disclosure of such information during transit
and we are not responsible for any actions taken by such third parties. You acknowledge
and accept taking this risk when communicating with and transacting on our Website.
4.2 DO WE DISCLOSE ANY INFORMATION TO OUTSIDE PARTIES?
4.2.1 Your information, whether public or private, will not be sold, exchanged, transferred,
distributed, provided to or given to any other company or individual or any other outside
party for any reason whatsoever, without your prior written consent, other than third
parties who assist us in operating our website, conducting our business, or servicing you,
so long as those parties agree to keep this information confidential, or for the express
purpose of delivering the purchased product or service requested or if requested by a
department having legal authority to which the Law requires such disclosure.
4.2.2 We may also release your information when we believe release is appropriate to comply
with the law, enforce our site policies, or protect ours or others rights, property, or
safety. However, non-personally identifiable visitor information may be provided to
other parties for marketing, advertising, or other uses.
5. COOKIES
5.1 DO WE USE COOKIES?
5.1.1 Yes. Cookies are small files that a site or its service provider transfers to your computer’s
hard drive through your Web browser (if you allow) that enables the sites or service
providers systems to recognize your browser and capture and remember certain
information.
5.1.2 We use cookies to help us remember and process the items in your shopping cart,
understand and save your preferences for future visits, keep track of advertisements and
compile aggregate data about site traffic and site interaction so that we can offer better
site experiences and tools in the future.
5.1.3 We may contract with third-party service providers to assist us in better understanding
our site visitors. These service providers are not permitted to use the information
collected on our behalf except to help us conduct and improve our business.
5.1.4 If you prefer, you can choose to have your computer warn you each time a cookie is
being sent, or you can choose to turn off all cookies via your browser settings. Like most
websites, if you turn your cookies off, some of our services may not function properly.
However, you can still place orders over the telephone or by contacting the company on
the details which appear on its website.
6. GENERAL
6.1 THIRD PARTY LINKS
6.1.1 Occasionally, at our discretion, we may include or offer third party products or services
on our website. These third-party sites have separate and independent privacy policies.
We therefore take no responsibility or liability for the content and activities of these
linked sites should you elect to transact on them. Nonetheless, we seek to protect the
integrity of our site and welcome any feedback about these sites.
7. CUSTOMER SERVICE
7.1 Should you have any questions or concerns regarding this privacy policy, please feel free to contact us at:
DECORLAB
ADDRESS: Shop G20, Access Park, 81 Chichester Road, Kenilworth. 7708, Cape Town
TEL: 021 201 4009
EMAIL: info@decorlab.co.za
8. CHANGES TO THIS POLICY
8.1 Please note that this Policy forms part of the Terms & Conditions for use of this Website and forms part of
the Agreement between you and us.
8.2 This Policy is reviewed from time to time and may be amended at our sole discretion, in whole or part, to
ensure compliance with the law and to ensure that you are informed as to how we use your information.
8.3 Therefore, by continuing to use our Website following any amendments that may have been
implemented, it shall be deemed that you have agreed to such amendments. Accordingly, we recommend
that you review this page frequently so that you are aware of any amendments.
8.4 Should we decide to amend our privacy policy, we will post those amendments on this page and/or
update the Privacy Policy modification date as stated above at the beginning of this policy.