Privacy Policy
INTRODUCTION
Durban Filmmart Institute NPC (“Durban Filmmart Instittue”, “the NPC”, “We”,“Us”) with registration number 2020/255768/08 is a non-profit company incorporated in the Republic of South Africa with its registered office situated at 11 Rennies House, 41 Victoria Embankment, Durban Central, Durban, 4000.
Durban Filmmart Institute services include inter alia the following:
Providing selected African filmmakers with projects in development an opportunity to pitch film projects to leading financiers and content buyers;
Providing full programme of industry-film related masterclasses, workshops, panel discussions as well as networking opportunities for African and International filmmakers; and
In additional to the annual market, Durban Filmmart Institute hosts year round programming to upskill and nurture African film industry professionals.
(Hereinafter referred to as the “Services”).
Durban Filmmart Institute strives to ensure that our use of the Personal Information of data subjects is relevant, legal and reasonable to our organisation’s activities.
This Privacy Policy must be read together with our website terms and conditions and any other documents, agreements or privacy notices that describe how we, in specific circumstances, collect or process Personal Information about you. This will enable you to understand how we will process your Personal Information.
This Privacy Policy supplements such other documents and agreements, but shall not supersede them and in the event of a conflict, the terms of the particular document or agreement will prevail.
By providing us with your Personal Information, you agree to this Privacy Policy and authorise us to process such information as set out herein; and authorise the NPC, our associates, funders service providers and other third parties to Process your Personal Information for the purposes stated in this Privacy Policy.
TYPES OF INFORMATION COLLECTED BY US
We may collect, acquire, receive, record, organise, collate, store, update, change, retrieve, read, process, analyse, use and share your Personal Information in the manner as set out in this Privacy Policy. When we perform one or more of these actions, we are "Processing" your Personal Information.
“Personal Information" refers to private information about an identifiable living natural or juristic person. Personal Information does not include information that does not identify a person or anonymized information.
The Personal Information we collect may differ according to the Services you receive from us. We may process various categories of Personal Information, such as:
Identity Information, when interacting with us as a customer, including information concerning your name, company name, identity and registration numbers, title, date of birth, gender, and legal status, languages, physical address;
Contact Information, which includes your billing address, service addresses, physical address, email address and telephone numbers;
Criminal behaviour history, where permitted in respect of prospective employees and job applicants;
Financial Information, where permitted, including bank account details, bank statements and financial statements;
Human Resources in respect of our own employees, including leave records, job applications, medical aid information to administer employment contracts and comply with our legal obligations;
Tax Information where permitted, which includes IRP5 records, PAYE records and VAT registration numbers;
Technical Information, which includes your internet protocol (IP) address, browser type and version, time zone setting and location, operating system and platform, on the devices you use to access our Website, products or Services..
Transaction Details concerning you as an individual, which includes your name, age, gender, address, telephone, mobile, fax, e-mail, contact details, proof of identity and address, copies of passports, driving licences, and utility bills, payment card details, and financial information, health information relevant to your planned travel, and travel insurances held, credit status, your preferences, frequent flyer or travel partner program affiliation and member number, and any other information provided to us by or in relation to you which concern you as an individual.
Business-related information, if you are an individual associated with a business or other organisation that is our funder, associate and/or partner then your Personal Information may include the following information that we link to you:
business or organisation details (such as name, address, telephone numbers, payment arrangements, financial information, etc.)
your relationship with that business or organisation (such as owner, partner, director, shareholder, employee, or agent);
your contact details within that business (such as work address, work telephone and mobile numbers, work fax number, and work e-mail address.
Correspondence, including messages between you and us, and between us and third parties, including correspondence relating to any booking or enquiry, or performance of any contract.
Competition information, including Personal Information collected during any competitions or promotions held by us or our associates;
Usage Information, which includes information as to your access to and use of our Website, products and Services.
Marketing and Communications Information, which includes your preferences in respect of receiving marketing information from us and your communication preferences.
We also process, collect, store and/or use aggregated data, which may include historical or statistical data (“Aggregated Data”) for any purpose. Aggregated Data is not considered Personal Information as this data does not directly or indirectly reveal your identity. However, if we combine or connect Aggregated Data with your Personal Information in a manner that can identify you, we will treat the combined data as Personal Information, which will be managed per this Privacy Policy.
Where we need to process your Special Personal Information, we will do so in the ordinary course of our business, for a legitimate purpose, and per applicable laws.
COLLECTION OF INFORMATION
We collect Personal Information about you when you:
Enquire about our Services;
contract with us for our Services;
apply for our services;
access our website;
contact us for any reason; and/or
join us as an agent, associate or employee.
APPLICATION OF THIS PRIVACY POLICY
This Privacy Policy describes our practices and approach in respect of your Personal Information and our treatment thereof.
This Policy applies to all external parties with whom we interact, including but not limited to:
applicants and recipients of our Services;
representatives of applicants and recipients of our Services;
our funders, partners and service providers;
our staff and representatives; and
any other users of our Services.
HOW WE COLLECT PERSONAL INFORMATION
You directly provide us with most of the Personal Information we process. We collect and process Personal Information in the following ways, namely:
through direct or active interactions with you;
through direct or active interactions with your agent and/or representative;
in the course of providing our Services to you or your organisation;
in evaluating job applicants and onboarding Employees;
from third parties, where permitted;
PASSIVELY COLLECTED PERSONAL INFORMATION
We may passively collect certain categories of your Personal Information from the devices that you use to access and navigate our Website or to make use of our Services (“Access Devices”) using server logs and your browser’s cookies.The categories of Personal Information we passively collect from your Access Device may include your:
Technical Information;
Usage Information and/or
Any other Personal Information which you expressly permit us, from time to time, to passively collect from your Access Device.
INDIRECT COLLECTION OF PERSONAL INFORMATION
We may also receive your Personal Information indirectly from, among others, the following sources (including public parties):
our information technology suppliers;
law enforcement;
credit bureaus (with your consent, where required by law).
from other Responsible Parties where we act as contracted outsourced processors (“Operators”) in performing our Services, including:
Banks and other financial institutions;
Telecommunications providers; and/or
Medical institutions and insurers.
When we collect your Personal Information from third parties it is either because you have given us express consent to do so, your consent was implied by your actions, or because you provided consent, either explicit or implicit, to the third party that provided this information to us.
HOW WE USE YOUR PERSONAL INFORMATION
We Process your Personal Information in order to carry out our Services.
We may also use the Personal Information we collect to maintain and improve our website and to improve the experience of its users, to facilitate the provision of our Services to you, and to comply with our statutory and regulatory obligations.
FAILURE TO PROVIDE US WITH REQUESTED PERSONAL INFORMATION
Where we are required to process certain Personal Information by law, or in terms of a contract that we have entered into with you, and you fail to provide such Personal Information when requested to do so, we may be unable to perform in terms of the contract in place or are trying to enter into with you. In such a case, we may be required to terminate the contract and/or relationship with you, upon due notice to you, which termination shall be done in accordance with the terms of that contract and any applicable legislation.
DISCLOSURE OF PERSONAL INFORMATION
We will not intentionally disclose your Personal Information, whether for commercial gain or otherwise, other than with your permission or in accordance with this Privacy Policy.
We may disclose your Personal Information to our contracted Responsible Parties, service providers, funders, sponsors and/or associates for legitimate purposes such as carrying out our Services, in accordance with the applicable laws and subject to applicable professional and regulatory requirements regarding confidentiality and appropriate data protection measures.
In addition, we may disclose your Personal Information:
where it is necessary for the purposes of, or in connection with, actual or threatened legal proceedings or establishment, exercise or defence of legal rights;
With our contracted agents, funders, sponsors, advisers, consultants, service providers, suppliers, banking partners and other Operators who process Personal Information on our behalf and whose assistance we require to conduct our business operations.
STORAGE AND TRANSFER OF PERSONAL INFORMATION
We have engaged reputable and trusted organisations as outsourced processors (Operators), and in some cases, as sub-processors to provide data storage and cloud services to securely store your information. Our servers and cloud storage run in secure premises located in South Africa.
We reserve the right to generally transfer to and/or store your Personal Information on servers in a jurisdiction other than where it was collected, or outside of South Africa in a jurisdiction that may not have comparable data protection legislation provided that if the location does not have substantially similar laws to those of South Africa, we will take reasonably practicable steps, including the imposing of suitable contractual terms to ensure that your Personal Information is adequately protected in that jurisdiction.
MEASURES TAKEN TO PROTECT PERSONAL INFORMATION
We have established and implemented data breach management procedures to address actual and suspected data breaches and will notify you and the relevant regulatory authorities of breaches where we are legally required to do so and within the period in which such notification is necessary.
We periodically review our Personal Information collection, storage and processing practices, including physical and digital security measures.
WARRANTIES
We take all reasonable measures to secure the integrity of all retained information and strive to protect it from misuse, loss, alteration, and destruction through the use of accepted technological standards that prevent unauthorised access to or disclosure of your Personal Information. Unfortunately, despite our best efforts, no data transmission or storage can be guaranteed to be 100% secure. Therefore, we do not make any warranties or guarantees that Personal Information shall be entirely 100% secure nor do we accept any liability of whatsoever nature for loss of privacy resulting from any unauthorised disclosure and/or use of your Personal Information, unless such disclosure and/or misuse is because of our gross negligence.
RETENTION AND DELETION
We may retain and process your Personal Information if and for as long as:
we are required or permitted by law, or contract with you, to do so;
it is for lawful purposes that are related to our performance of our obligations in respect of our Services; and/or
you agree to us retaining it for a specified further period.
Unless there is a lawful purpose for us to continue processing or storing your Personal Information, we will destroy your Personal Information in the following circumstances:
the Personal Information is no longer necessary for the purpose for which it was collected or processed; or
you withdraw your consent to the processing of your Personal Information; or
you object to the processing of your Personal Information; and
there are no other lawful grounds for us to continue processing your Personal Information.
YOUR DATA PROTECTION RIGHTS
Data protection laws may grant you, among others, the following rights:
Request access to your Personal Information – enabling you to receive a copy of the Personal Information retained about you;
Request the correction of your Personal Information – to ensure any incomplete or inaccurate Personal Information is corrected;
Request erasure of your Personal Information – where there is no lawful basis for the retention or continued processing of your Personal Information;
Object to the processing of your Personal Information for a legitimate interest (or those of a third party) - under certain conditions where you feel it impacts your fundamental rights and freedoms;
Request restriction of processing of your Personal Information – to restrict or suspend the processing of your Personal Information to limited circumstances;
Withdraw consent given in respect of the processing of your Personal Information at any time – withdrawal of consent will not affect the lawfulness of any processing carried out before your withdrawal notice. But may not affect the continued processing of your Personal Information in instances where your consent is not required.
If an above request/objection is to be made, please use the contact information provided in clause 22 and we will revert within 30 calendar days.
CHILDREN
Our Website and our Services are not targeted at people under the age of 18. We will not knowingly collect Personal Information in respect of persons in this age group without express permission to do so, unless permitted by law.
THIRD PARTY SUB-PROCESSORS/OPERATORS
We use external processors (“Operators”) for certain processing activities and to assist in the delivery of Services. We reserve the right to change our Operators at any time without further notice to you, but we will ensure our Operators are bound by this Privacy Policy and our Data Protection Policy or similar terms providing the same or higher level of protection. Such external processing activities include, but are not limited to:
IT systems and infrastructure;
Human resources; and
Hosting and email infrastructure.
COOKIES
We may place small text files called “cookies” on your device when you visit our website. Cookies do not contain Personal Information, but they do contain a personal identifier allowing us to associate your Personal Information with a certain device.
Your internet browser may accept cookies automatically and you can delete cookies manually. However, no longer accepting cookies or deleting them may prevent you from accessing certain aspects of our Website where cookies are necessary.
As cookies are stored in the web browser used to access our Website, to disable cookies users need to change the settings pertaining to that browser in particular.
Many websites use cookies and more information is available at www.allaboutcookies.org.
PRIVACY POLICIES OF OTHER WEBSITES
Our website may contain links to other websites, apps, tools, widgets and plug-ins that are run by third parties. If you visit a third-party website or social media site, you should read that website/ social media’s privacy notice, terms and conditions, and their other policies. We are not responsible for the policies and practices of third parties and social media sites. Any Personal Information you give to those organizations is dealt with under their privacy notice, terms and conditions, and other policies.
If you disclose your Personal Information to any third party other than us, we shall not be held liable for any loss or damage, howsoever arising, as a result of your disclosure of your Personal Information to a third-party.
GOVERNING LAW
This Privacy Policy is governed by South African law.
If any provision of this Privacy Policy is determined to be illegal, void or unenforceable due to applicable law or by order of a court, it shall be deemed to be deleted and the continuation in full force and effect of the remaining provisions shall not be prejudiced.
CHANGES TO THIS POLICY
We may amend this Privacy Policy from time to time and we will take reasonably practicable steps to inform you when changes are made. Without limiting how we may inform you, we may notify you by email, “pop-up” notification on our Website, or notification when you access our Website.
CONTACT US
We have appointed an Information Officer responsible for overseeing questions concerning this Privacy Policy. You may contact our Information Officer at [email protected] to discuss this Privacy Policy, your rights under data protection laws applicable to you, and to raise any complaints with us.
QUERIES, COMPLAINTS, AND INFORMATION REGULATOR
All questions and complaints are to be address our Information Officer. If you feel our attempts at resolving the matter have been inadequate, you may lodge a complaint with the South African Information Regulator through their website, https://www.justice.gov.za/inforeg/.
If you are located outside of South Africa, you may contact the appropriate regulatory authority in your country of domicile.
