IconAF

Introduction

At IconAF, we are committed to providing high-quality products and services and maintaining the highest standards of customer satisfaction. We understand that from time to time, issues may arise that cause frustration or concern. Our Complaints Policy aims to ensure that any concerns raised by our customers, employees, or other stakeholders are addressed in a timely, fair, and transparent manner. This policy outlines the process for submitting a complaint, the steps we take to resolve it, and the commitment we make to continually improve based on the feedback we receive. We value all complaints as an opportunity to identify areas for improvement, and we pledge to handle them with the utmost seriousness and professionalism.

Complaints

We, IconAF (PTY) LTD, have the following processes in place when attending to a complaint:

Request that the client submit such complaint, against us or 1 or more of our representatives, in writing to our offices via email to complaints@iconaf.com and compliance@iconaf.com
All complaints will be entered into our formal Complaints Register.
Non-routine serious complaints will be handled by senior staff with adequate expertise, training and experience to resolve the matter as soon as possible.
We’ll promptly acknowledge, in writing, to the client receipt of such complaint and furnish the client with details of the contact person at our organisation who’ll be involved with the investigation and resolution of the complaint.
All complaints received from clients will be handled in a timely and fair manner, with each complaint receiving proper consideration in a process that’s managed appropriately and effectively.
We undertake to inform the client of the outcome of the investigation relating to the complaint within 48 business hours of receipt of the initial written complaint.
In a case where the complaint is resolved in favour of and to the satisfaction of the client, we ensure that a full and appropriate level of redress is offered to the client without any further delays.
In a case where the complaint isn’t resolved to the client’s satisfaction, we’ll ensure that the client is made aware of their rights.
We undertake to maintain a record of complaints received for a period of 5 years, together with an indication of whether or not such complaints were resolved.
We further undertake to ensure that all new and existing clients are made aware of our complaints policy manual and the procedures to follow should they wish to submit a complaint against us or 1 or more of our representatives.

Basic principles of our internal complaints resolution system

Our internal complaints resolution system is based on the following basic principles:

The maintenance of a complaints policy manual which outlines our commitment to, and the systems and procedures we employ, for the internal resolution of any complaint submitted by a client against us or 1 or more of our representatives.
Our procedures for the resolution of any complaint are transparent and visible to all clients ensuring that the client has full knowledge thereof.
Clients are easily able to access such procedures through any of our offices which are open to clients or through the postal system, telephone/electronic means, including our website.
Ensure that the resolution of the complaint is done so in a fair manner giving equal opportunities to all parties to make their submissions regarding the complaint.
Ensure adequate training of all relevant staff on the procedure to follow when a complaint has been submitted by a client.
All complaints will be followed-up at an operational level to ensure avoidance of similar occurrences that might give rise to complaints and to improve services, systems and procedures where necessary.
Complaints records will be maintained for a minimum period of 5 years together with an indication of whether or not such complaint was resolved and all cases of non-compliance with the legislation and the reasons for such non-compliance.

Guide of Human Rights Commission/Information Officer:

A guide to Act (as contemplated under section 10 of the Act) is available from the South African Human Rights Commission. The guide contains such information as may reasonably be required by a person who wishes to exercise any right contemplated in the Act.

Any enquiries regarding this guide and its contents should be directed to :

PAIA Unit (the Research and Documentation Department)
Postal Address: Private Bag 2700, Houghton, 2041
Telephone:+27 11 484-8300
Fax: +27 11 484-7146
Website:www.sahrc.org.za

SALU Building, 316 Thabo Sehume Street, Pretoria

Ms. Mmamoroke Mphelo

Tel:1 +27 11 484-7146

Website:www.sahrc.org.za

Collecting and processing of personal information/personal data

Whenever any data subject completes an application form, contacts IconAF electronically or telephonically, or uses 1 of the products, services, facilities, tools or utilities offered by IconAF through its website, self-service portal or mobile app, IconAF will in effect be processing the data subject’s personal information/personal data.

From time to time, it may be that IconAF has collected a data subject’s personal information/personal data from other sources. In the event that a data subject has shared their personal information/personal data with any third parties, IconAF won’t be responsible for any loss suffered by the data subject, their dependents, beneficiaries, spouse/s or employees (as the case may be).

IconAF will process personal information/personal data in order to facilitate and enhance the delivery of products and services to its members, foster a legally compliant workplace environment, as well as safeguard the personal information/personal data relating to any data subjects which it in fact holds. In such an instance, the data subject providing IconAF with such personal information/personal data will confirm that they’re a competent person and that they have authority to give the requisite consent to enable IconAF to process such personal information/personal data. IconAF undertakes to process any personal information/personal data in a manner which promotes the data subject’s constitutional right to privacy, retains accountability and data subject participation. In supplementation of the above, IconAF will process personal information/personal data for the following purposes:

To provide or manage any information, products, or services requested by data subjects.
To establish a data subject’s needs, wants and preferences in relation to the products/services provided by IconAF.
To identify a data subject’s risk profile and make an election as to whether IconAF wishes to enter into a contractual relationship with the data subject and if so, on what terms.
To help IconAF identify data subjects when they contact IconAF.
To facilitate the delivery of products/services to clients.
To activate policies.
To allocate unique identifiers to clients for the purpose of securely storing, retaining and recalling such data subject’s personal information/personal data from time to time.
To maintain records of data subjects and specifically client records.
To maintain third party records.
For recruitment purposes.
For employment purposes.
For apprenticeship purposes.
For general administration purposes.
For legal/contractual purposes.
For health and safety purposes.
To provide health and wellness information to IconAF’s employees and clients.
To retain the records of brokers.
To monitor access, secure, and manage any facilities owned or operated by IconAF regardless of location in South Africa.
To transact with third parties.
To detect and prevent money laundering.
To analyse the personal information/personal data collected for research and statistical purposes.
To enable UMAs to process claims and discharge any functions specified in a binder agreement.
To help recover bad debts.
To transfer personal information/personal data across the borders of South Africa to other jurisdictions.
To carry out analysis and client profiling.
To identify other products and services which might be of interest to our clients and data subjects in general, as well as to inform them of such products/services.
To obtain and share information about a data subject’s credit-worthiness and risk profile with any credit bureau or credit provider’s industry association or industry body, which includes information pertaining to a data subject’s credit history, claims history, financial history, judgements, default history and sharing information for purposes of risk analysis, tracing and related purposes.

When collecting personal information/personal data from a data subject, IconAF will comply with the notification requirements as set out in Section 18 of POPIA, and to the extent applicable, Articles 13 and 14 of the GDPR.

IconAF will collect and process personal information/personal data in compliance with the conditions as set out in POPIA and the processing principles in the GDPR (as the case may be), to ensure that it protects the data subject’s privacy.

IconAF won’t process the personal information/personal data of a data subject for any purpose other than for the purposes set forth in this policy, unless IconAF is permitted or required to do so in terms of applicable laws or otherwise by law.

IconAF may from time to time process personal information/personal data by making use of automated means (without deploying any human intervention in the decision making process) to make decisions about the data subject or their application. In this instance it’s specifically recorded that the data subject may object to or query the outcomes of such a decision.

Personal information/personal data for direct marketing purposes

IconAF acknowledges that it may only use personal information/personal data to contact data subjects for purposes of direct marketing where IconAF has complied with the provisions of POPIA and GDPR (where applicable) and when it’s generally permissible to do so in terms of applicable laws.

IconAF will ensure that a reasonable opportunity is given to all data subjects to object (opt-out) to the use of their personal information/personal data for IconAF’s marketing purposes when collecting the personal information/personal data and on the occasion of each communication to the data subject for purposes of direct marketing.

Storage and retention of personal information/personal data

IconAF will retain personal information/personal data it has processed, in an electronic or hard copy file format, with a third party service provider appointed for this purpose.

It’s specifically recorded that any data subject has the right to object to the processing of their personal information and IconAF will retain and store the data subject’s personal information/personal data for the purposes of dealing with such an objection or enquiry as soon and as swiftly as possible.

Failure to provide personal information

Where IconAF is required to collect personal information/personal data from a data subject by law or in order to fulfil a legitimate business purpose of IconAF, and the data subject fails to provide such personal information/personal data, IconAF may, on notice to the data subject, decline to render services without any liability to the data subject.

Securing personal information/personal data

IconAF has implemented appropriate, reasonable, physical, organisational, contractual and technological security measures to secure the integrity and confidentiality of personal information/personal data, including measures to protect against the loss or theft, unauthorised access, disclosure, copying, use or modification of personal information/personal data in compliance with applicable laws.

In further compliance with applicable laws, IconAF will take steps to notify the relevant regulator/s and any affected data subjects in the event of a security breach and will provide such notification as soon as reasonably possible after becoming aware of any such breach.

Notwithstanding any other provisions of this policy, it should be acknowledged that the transmission of personal information/personal data, whether it be in person, via the internet or any other digital data transferring technology, isn’t completely secure. While IconAF has taken all appropriate, reasonable measures to secure the integrity and confidentiality of the personal information/personal data it processes, in order to guard against the loss of, damage to, or unauthorised destruction of, personal information/personal data and unlawful access to (or processing of) personal information/personal data, IconAF in no way guarantees that its security system is 100% secure or error-free. Therefore, IconAF doesn’t guarantee the security or accuracy of the information (whether it be personal information/personal data or not) which it collects from any data subject.

Any transmission of personal information/personal data will be solely at the own risk of the data subject. Once IconAF has received the personal information/personal data, it’ll deploy and use strict procedures and security features to try and prevent unauthorised access to it. As indicated above, IconAF’s reiterates that it restricts access to personal information/personal data to third parties who have a legitimate operational reason for having access to such personal information/personal data. IconAF also maintains electronic and procedural safeguards that comply with the applicable laws to protect your personal information from any unauthorised access.

By accepting the terms and conditions to which this policy relates, the data subject agrees to indemnify and hold IconAF harmless for any security breaches which may potentially expose the personal information/personal data in IconAF’s possession to unauthorised access or the unlawful processing of such personal information/ personal data by any third party.

Provision of personal information/personal data to third parties

IconAF may disclose personal information/personal data to third party service providers where necessary to achieve the purpose/s for which the personal information/personal data was originally collected and processed. IconAF will enter into written agreements with such third party service providers to ensure that they comply with applicable laws pursuant to the processing of personal information/personal data provided to it by IconAF from time to time

Transfer of personal information/personal data outside of South Africa

IconAF may, under certain circumstances, transfer personal information/personal data to a jurisdiction outside of South Africa in order to achieve the purpose/s for which the personal information/personal data was collected and processed, including for processing and storage by third party service providers.

IconAF will obtain the data subject’s consent to transfer the personal information/personal data to such foreign jurisdiction unless consent isn’t required by applicable law.

The data subject should also take note that, where the personal information/personal data is transferred to a foreign jurisdiction, the processing of personal information/personal data in the foreign jurisdiction may be subject to the laws of that foreign jurisdiction.

Access to personal information/personal data

A data subject has the right to a copy of the personal information/personal data which is held by IconAF (subject to a few limited exemptions as provided for under applicable law).

The data subject must make a written request (which can be sent by email) to the information officer designated by IconAF from time to time.

IconAF will provide the data subject with any such personal information/personal data to the extent required by applicable law and subject to and in accordance with the provisions of IconAF’s PAIA manual published in terms of Section 51 of the Promotion of Access to Information Act 2000 (PAIA), which can be sourced on IconAF’s website at iconaf.com

The data subject can challenge the accuracy or completeness of their personal information/personal data in IconAF’s records at any time in accordance with the process set out in IconAF’s PAIA manual.

Keeping personal information/personal data accurate

IconAF will take reasonable steps to ensure that personal information/personal data that it processes is kept updated where reasonably possible.

IconAF may not always expressly request the data subject to verify and update their personal information/ personal data and expects that the data subject will notify IconAF from time to time in writing:

Of any updates or amendments required in respect of their personal information/personal data.
Where the data subject requires IconAF to delete their personal information/personal data.
Where the data subject wishes to restrict the processing of their personal information/personal data.

Accessing and Contesting Personal Information

Data subjects can request access to their personal information. If the information is incorrect or outdated, they can contest or request correction. We will restrict the processing of disputed information while we verify its accuracy.

Costs to access personal information/personal data

The prescribed fees to be paid for copies of the data subject’s personal information/personal data are listed in IconAF’s PAIA manual.

IconAF reserves the right to make amendments to this policy from time to time.

Complaints to the Information Regulator

In the event that any data subject or third party is of the view or belief that IconAF has processed their personal information/personal data in a manner or for a purpose which is contrary to the provisions of this policy, the data subject is required to first attempt to resolve the matter directly with IconAF, failing which the data subject or third party will have the right to lodge a complaint with the Information Regulator, under the provisions of POPIA.

The contact details of the Information Regulator are:

Physical address33 Hoofd Street, Forum III, 3rd Floor Braampark, Johannesburg, 2001
Contact person Marks Thibela
PositionChief executive officer
Work no.+27 10 023 5207
Phone no.082 746 4173
Emailinforeg@justice.gov.za

Contacting us

All comments, questions, concerns or complaints regarding personal information/personal data or this policy, should be forwarded to the offices of IconAF via email on complaints@iconaf.com and compliance@iconaf.com

Below is the information for the Appointed information officers for IconAF:

NameDavid Paul

EmailDavidp@iconaf.com

In these terms and conditions, “we” “us” and “our” refers to IconAF (PTY) Ltd. Your access to and use of all information on this website including purchase of our service/s is provided subject to the following terms and conditions. The information is intended for residents of South Africa only.

We reserve the right to amend this Notice at any time and your use of the website following any amendments will represent your agreement to be bound by these terms and conditions as amended. We therefore recommend that each time you access our website you read these terms and conditions