General Data Protection Regulation (GDPR) & Protection of Personal Information Act (POPI) Compliance Statement

Introduction

This General Data Protection Regulation (GDPR) & Protection of Personal Information Act (POPI) Compliance Statement outlines how Silk Silo (referred to as “Silk Silo,” “we,” “us,” or “our”) prepares for and complies with the GDPR and POPI, both of which are designed to protect data privacy. This statement emphasizes our commitment to ensuring the security and protection of personal information.

Compliance with GDPR & POPI

While the GDPR primarily applies to EU-based organizations, it extends its jurisdiction to entities dealing with, transferring data to, or processing information from EU members. Our commitment to compliance extends to both GDPR and POPI regulations.

Our Commitment

Silk Silo is dedicated to safeguarding personal information, and we continuously enhance our data protection program to meet GDPR and POPI standards. This commitment is reflected in the development and implementation of new roles, policies, procedures, controls, and measures to ensure compliance.

Preparing for GDPR & POPI

While Silk Silo already maintains a consistent level of data protection and security across the organization, our goal is full compliance with the GDPR & POPI. Our preparation involves:

Information Audit: Conducting a company-wide information audit to identify and assess the personal information we hold, its source, processing methods, and disclosure recipients.
Policies & Procedures: Implementing new data protection policies and procedures to meet GDPR & POPI standards, focusing on data protection, retention, erasure, data breaches, international data transfers, third-party disclosures, subject access requests, legal basis for processing, privacy notices, obtaining consent, direct marketing, DPIAs, processor agreements, and special categories data.
Data Subject Rights: Ensuring individuals can easily access information about the personal data we process, including data categories, recipients, storage duration, data source, correction or completion requests, right to erasure, right to restrict processing, objection to direct marketing, and information about automated decision-making.
Information Security & Technical Measures

Silk Silo prioritizes the privacy and security of personal information. We have robust information security policies and procedures in place to prevent unauthorized access, alteration, disclosure, or destruction. Additional security measures are in progress to further enhance data protection.

GDPR & POPI Roles and Employees

Our in-house PPC & SEO specialist & Business Operations Manager serves as the Data Protection Officer (DPO). The content marketing team supervises data privacy and implements GDPR & POPI compliance measures. Employee awareness is a key focus, supported by training programs to ensure continuous compliance.

Contact Us

For any inquiries related to GDPR & POPI compliance, please contact via email: legal@silksilo.co.za.

Changes to Our Privacy Policy

We may change our Privacy Policy to accurately reflect our practices. We will provide notice of changes, and your continued use of our services implies acceptance. Review our Privacy Policy periodically for updates.

Governing Law

This Privacy Policy and your use of our services are governed by and construed in accordance with the laws of South Africa.

If you have any questions about this Privacy Policy, please contact us at:

Email: legal@silksilo.com