Data Subject POPIA Clause
(consent and notification)

Data Protection
Estia Events (Pty) Ltd (we, us, our), its successors and assigns.

1. You consent to us sharing, collecting and processing your Personal Information from you and where lawful and reasonable from public sources for credit, fraud prevention and compliance purposes, as well as for any other purposes as may be required in order for us to perform in terms of a contract to which you are the Data Subject, to comply with an obligation imposed on us by law, where the processing protects the legitimate interests of the Data Subject or where the processing is necessary for pursuing the legitimate interests of the responsible party or of a third party to whom the information is supplied.

2. You consent to us processing your Personal Information, for the purpose for which it was intended where it is deemed adequate, relevant and not excessive.

3. You acknowledge and agree that it may be necessary for us to share and/or collect your Personal Information from time to time, with or to certain industry bodies, regulatory bodies, industry associations, employees, authorised agents, authorised financial services providers, banks, tracing agents, insurers, reinsurers, service providers, and/or your employer and that we will  only do this when appropriate or necessary, in order to provide the products and/or services to you, administer and investigation claims and/or to comply with laws, regulations, and/or our policies and procedures. You expressly consent to our providing Personal Information to the above parties for these purposes.

4. You confirm that, if you give Personal Information about or on behalf of another person (including but not limited to employees, children or beneficiaries), you are authorised to:

• Give us their Personal Information;

• You are authorised to do so;

• Consent on their behalf to the Processing of their Personal Information, specifically any cross border transfer of Personal Information into and from the country where the products and services are provided; and

• Receive any privacy notices on their behalf.

5. You consent to us Processing your Personal Information:

• For the purpose of providing products and services to you and/or your employees in terms of this agreement and providing any other products and services for which you may apply.

• As it is mandatory and required in terms of the Compensation for Occupational Injuries and Diseases Act, 1993 (COIDA) for Estia Venue & Events to provide the required products and services as per its licence and authorisation from the Compensation Fund. Consequences of a failure to provide the required information will result in Estia Venue & Events inability to perform in terms of the insurance contract, regulation or provide the requisite benefits or payments as required in terms of the COIDA.

• For the purpose of carrying out statistical and other analyses to identify potential market trends and evaluate and improve our business (which includes improving existing and developing new services).

• In countries outside South Africa where the services or benefits of the policy are provided. As far as possible, we will ask the receiving party to agree to our privacy policies. By sharing your Personal Information with insurers, service providers, and any other third parties, where necessary, so that we can administer the policy, claims and/or provide the services and policy benefits to you and your employees, locally and outside the country where the products or services are normally provided.

• With other Estia Venue & Events related entities within the Estia Venue & Events structure.

• Including special Personal Information relating to health or sex life, criminal behaviour, biometric information and/or race or ethnic origin (where applicable).

6. You also acknowledge and understand that the above list is not exhaustive, and Estia Venue & Events will advise you, from time to time should your Personal Information be shared or transferred to a third party for any other purpose not provided for herein.

7. You understand that you have a right to correct, request access to and to rectify the information collected, including the right to object to the processing of Personal Information (where applicable).
8. You understand that you have the right to lodge a complaint with the Information Regulator which details can be found at https://www.justice.gov.za/inforeg/.

9. Estia Events shall not be liable for any damages of any kind arising from the use of the Personal Information, including but not limited to direct, indirect, incidental, punitive and/or consequential damages for fulfilling any of its statutory obligations under any law applicable to Estia Events.

10. You will find our Processing practices in our Privacy Notice. This statement is available on Estia Events website or on request. Estia Events namely the Responsible Party. Business Address: 62 Fifth Street, Melrose Estate, 2196.

Personal Information
Information about an identifiable, natural person and where applicable juristic person, including information about; race; gender; health or sex life; sex; pregnancy; marital status; nationality; ethic or social origin; colour; sexual orientation; age; physical or mental health; well-being; disability; religion; conscience; belief; culture; language; birth; education; medical; medical history; financial; criminal or employment, employment history; any unique identifiers, banking details, identifying number; symbol; e-mail; postal or physical address; telephone number; location; any online identifier; or other particular assignment to the person; biometric information; personal opinions; views or preferences of the person or the views or opinions of another individual about the person; correspondence sent by the person that is implicitly or explicitly of a private or confidential nature or further correspondence that would reveal the contents of the original correspondence; and the name of the person if that appears with other Personal Information relating to the person.

Process
Any operation or activity, automated or not, concerning Personal Information, including; alteration, blocking, collation, collection, consultation, degradation, destruction, dissemination by means of transmission, distribution or making available in any other form, erasure, linking, merging, organisation, receipt, recording, retrieval, storage, updating, modification or use. Processing and Processed will have a similar meaning.

Data Subject
The person (natural or legal) to whom Personal Information relates.