[email protected]
Secursuit Logo
Secursuit.

Secursuit Privacy Policy

Effective date: January 2025

Secursuit (Pty) Ltd (“Secursuit”, “we”, “us”, or “our”) is committed to protecting the privacy and confidentiality of information entrusted to us. This Privacy Policy outlines how we collect, use, disclose, and safeguard personal information when you engage with our cybersecurity services or visit our website.

1. Information we collect

  • • Contact details such as name, job title, email address, and phone number.
  • • Company information provided during discovery sessions, security assessments, or support requests.
  • • Technical data including IP addresses, browser type, and device identifiers when using our website.
  • • Engagement data created during service delivery, including meeting notes, reports, and remediation outcomes.

2. How we use information

  • • To deliver and enhance cybersecurity services and support.
  • • To respond to enquiries and provide proposals or statements of work.
  • • To improve our website, offerings, and customer experience.
  • • To comply with legal obligations and cooperate with regulators where required.

3. Legal basis for processing

Secursuit processes personal data based on consent, contractual necessity, legitimate interests in delivering services, or compliance with legal obligations. We align with the Protection of Personal Information Act (POPIA) and the EU General Data Protection Regulation (GDPR) where applicable.

4. Sharing information

We do not sell personal information. We may share data with trusted partners who assist in delivering our services, subject to confidentiality agreements and appropriate safeguards. Data may also be disclosed if required by law or to protect our rights, property, or safety, or that of our clients and partners.

5. International transfers

Secursuit operates globally and may transfer personal information across borders. When transferring data internationally, we implement safeguards such as standard contractual clauses to ensure equivalent protection.

6. Data retention

We retain personal information for as long as necessary to fulfill the purposes outlined in this policy, comply with legal obligations, resolve disputes, and enforce agreements. Retention periods are defined in our data governance framework.

7. Security controls

We implement administrative, technical, and physical safeguards to protect personal information against unauthorised access, alteration, disclosure, or destruction. Controls include encryption, least privilege access, monitoring, and secure software development practices.

8. Your rights

Depending on your jurisdiction, you may have rights to access, correct, delete, or restrict the processing of your personal data. You may also object to processing or request data portability. Submit requests to [email protected]. We will respond in accordance with applicable law.

9. Cookies & analytics

Our website may use cookies and analytics tools to understand usage patterns. You can adjust browser settings to refuse cookies; however, this may impact functionality.

10. Updates

We may update this Privacy Policy periodically. The “Effective date” will indicate the latest revision. We encourage you to review this policy regularly to stay informed about how we protect your information.

For privacy enquiries or to exercise your rights, email [email protected] or write to Secursuit, Dorking Crescent Street, Blouberg, WC 7441, South Africa.