Privacy Policy
Last Updated: 24 July, 2024
Introduction
Overview of Sitez and its purpose
Sitez is a web and mobile application designed to streamline and manage construction labour activities, track construction workers' career growth, and oversee site attendance and timekeeping. The platform allows construction companies to efficiently manage their workforce, ensuring accurate and up-to-date records of attendance and work hours. By leveraging technology, Sitez provides a comprehensive solution for managing on-site operations, enhancing productivity, and promoting the professional development of construction workers.
In addition to its core functionalities, Sitez integrates with other authorised platforms, sharing data based on user permissions to create a cohesive ecosystem for managing construction projects and workforce development. Sitez is a product of Privatizz.com, which is a personal information and data management ecosystem. This affiliation means that information collected by Sitez may be shared with Privatizz.com and other third parties as permitted by the user. The platform utilises advanced principles such as the right to be forgotten, self-sovereign identity, universal membership, digital ID, and user-centric data structures to configure its data architecture.
The purpose of Sitez is to provide construction companies with a robust tool to manage their labour force effectively while safeguarding the personal information of their workers. By ensuring the secure and authorised use of data, Sitez aims to foster a transparent and efficient working environment in the construction industry.
Importance of privacy to Sitez
Privacy is a fundamental aspect of Sitez's operations, reflecting our commitment to protecting the personal information of users. Given the sensitive nature of the data we handle, including personal details, career growth information, and attendance records, we place the highest priority on ensuring that this information is safeguarded.
Our approach to privacy involves implementing robust security measures, adhering to regulatory requirements, and promoting transparency in how we collect, use, and share data. We recognise that users trust us with their personal information, and we are dedicated to maintaining this trust through rigorous privacy practices.
By prioritising privacy, we aim to create a secure environment where users can confidently engage with Sitez, knowing that their personal information is protected and used responsibly.
Scope of the privacy policy
This privacy policy applies to all users of the Sitez web and mobile applications, as well as any associated services provided by Sitez. It outlines how we collect, use, disclose, and protect personal information. The policy covers the following:
The types of information we collect from users.
The purposes for which we use this information.
The conditions under which we may share information with third parties.
The security measures we employ to protect personal information.
Users' rights regarding their personal data.
Procedures for accessing and updating personal information.
Our use of cookies and tracking technologies.
Data retention practices.
Compliance and enforcement of privacy standards.
By using Sitez, users agree to the terms outlined in this privacy policy. This document ensures that users are fully informed about how their personal information is managed and protected, and it establishes the framework for our commitment to privacy and data security.
Information We Collect
Personal information collected
We collect personal information to provide and enhance our services effectively. This information may include, but is not limited to:
Contact Information: Name, email address, phone number, and mailing address.
Identification Information: National ID number, employee ID, or other identification documents.
Employment Details: Job title, department, work history, qualifications, and certifications.
Attendance and Timekeeping Records: Check-in/check-out times, work hours, and attendance logs.
Career Growth Information: Training records, performance reviews, and career progression data.
Account Information: Username, password, and account preferences.
Location Data: GPS data for site attendance verification and timekeeping purposes.
This information is essential for managing construction labour activities, tracking career growth, and ensuring accurate site attendance and timekeeping.
Non-personal information collected
In addition to personal information, we also collect non-personal information that helps us improve and optimise our services. This information may include:
Device Information: Details about the device used to access Sitez, such as device type, operating system, browser type, and version.
Usage Data: Information on how users interact with our app and website, including pages visited, features used, and the time spent on the platform.
Log Data: Server logs that capture IP addresses, timestamps, and error reports.
Performance Data: Metrics related to the app's performance, including loading times and system errors.
Aggregated Data: Statistical or demographic data that does not directly identify individual users, used for analytical and research purposes.
This non-personal information is used to enhance the functionality and user experience of Sitez, ensuring efficient and effective service delivery.
How information is collected (e.g., directly from users, automatically through the app)
We collect information through various methods to ensure comprehensive data acquisition and user convenience. These methods include:
Directly from Users: Users provide information when creating an account, updating their profile, submitting forms, or interacting with customer support. This includes personal details, contact information, and employment records.
Automatically Through the App: Our app automatically collects data such as device information, usage data, and log data when users interact with the platform. This helps us monitor performance and improve user experience.
Through Third-Party Integrations: With user consent, we may collect information from third-party services that are integrated with Sitez. This can include data from other platforms used by the user or employer.
Cookies and Tracking Technologies: We use cookies, web beacons, and similar technologies to collect information about users' interactions with our website and app. This data helps us personalise user experience and analyse usage patterns.
GPS and Location Services: For site attendance verification and timekeeping purposes, we may collect location data from users' devices. Users are informed and can control location sharing through their device settings.
Use of Information
Purpose of collecting personal information
We collect personal information primarily to manage construction labour activities effectively. This includes monitoring and verifying site attendance, tracking working hours, and ensuring accurate timekeeping. Additionally, we use the information to support career growth by maintaining records of training, qualifications, and performance reviews. This data helps us provide users with relevant opportunities for professional development and advancement within their field. By leveraging personal information, we aim to enhance the overall efficiency and productivity of construction projects, ensuring that both workers and employers benefit from a well-organised and transparent system.
How the information is used (e.g., managing construction labour activities, tracking career growth, managing site attendance and timekeeping)
We utilise the information collected to perform a range of essential functions within the platform. This data is crucial for managing construction labour activities by accurately tracking attendance and timekeeping, which supports efficient payroll processing and regulatory compliance.
Additionally, the information helps in monitoring and supporting career growth by keeping detailed records of training, qualifications, and performance reviews. This allows us to identify and recommend relevant professional development opportunities for workers.
We also use the data to enhance the user experience by personalising features and services. For example, we can send customised notifications about training programs or job openings that match the user's profile. Furthermore, integrating data from authorised platforms facilitates smooth collaboration and information sharing, improving overall project management and coordination.
By leveraging personal information in these ways, we ensure a reliable and effective environment for both workers and employers, fostering transparency and efficiency in workforce management.
Sharing of Information
Sharing with affiliates and third parties
We may share personal information with affiliates and third parties to enhance our services and ensure seamless integration within the construction ecosystem. This sharing is conducted under strict conditions to protect user privacy and data security.
Affiliates, such as our parent company Privatizz.com, may receive information to help us deliver comprehensive services and support. These entities are bound by similar privacy standards and protocols to safeguard the data.
Additionally, authorised third parties, including service providers and partners, may access certain data to perform functions on our behalf. These functions could include data processing, analytical services, and customer support. We ensure that these third parties adhere to stringent confidentiality agreements and comply with all relevant data protection regulations.
Sharing information with affiliates and third parties allows us to provide a more robust and integrated service, ultimately benefiting users by enhancing functionality and user experience.
User permissions for data sharing
User permissions play a critical role in determining how and when we share personal information. Before any data is shared with affiliates or third parties, users must provide explicit consent. This consent is typically obtained during the account creation process or when integrating with additional services.
Users have the ability to manage their data-sharing preferences through the app's settings. They can specify which types of information can be shared and with whom. This control ensures that users have full autonomy over their personal data and can make informed decisions about their privacy.
We also provide transparency by informing users about the purposes of data sharing and the entities involved. Any changes to permissions or new sharing arrangements are communicated promptly, allowing users to adjust their settings as needed.
By prioritising user permissions, we ensure that personal information is only shared in ways that align with users' preferences and expectations, maintaining trust and safeguarding privacy.
Scenarios where information might be shared (e.g., with Privatizz.com, other authorised platforms)
There are specific scenarios where we may share information with authorised platforms and third parties, based on user permissions. These scenarios include, but are not limited to, the following:
Integration with Other Platforms: When users connect their Sitez account with other construction management or workforce development platforms, we share relevant data to facilitate seamless integration and enhance functionality.
Compliance and Legal Obligations: We may share personal information to comply with legal requirements, such as responding to a subpoena, court order, or other governmental requests. This ensures that we operate within the bounds of the law and maintain regulatory compliance.
Service Provision and Enhancement: To improve our services, we might share data with third-party service providers who perform functions on our behalf, such as data analytics, hosting services, and customer support. These providers are contractually obligated to protect user data and use it solely for the purposes we specify.
Business Transfers: In the event of a merger, acquisition, or sale of assets, user information may be transferred to the new owner to ensure continuity of services. Users will be notified of any such changes and their implications for personal data.
User-Requested Services: When users explicitly request services that require the involvement of third parties, such as specialised training programs or certifications, we share the necessary information to fulfil these requests.
By clearly outlining these scenarios, we provide transparency about when and why personal information might be shared, ensuring users are fully informed and in control of their data.
Security of Information
Measures taken to protect personal information
We employ several measures to protect personal information and ensure its security. Our security protocols are designed to safeguard data from unauthorised access, disclosure, alteration, and destruction. These measures include:
Encryption: We use encryption techniques to protect personal information both in transit and at rest. This ensures that data is securely transmitted and stored, reducing the risk of interception or breaches.
Access Controls: Strict access controls are in place to ensure that only authorised personnel can access personal information. Role-based access ensures that employees and partners only have access to the data necessary for their specific tasks.
Regular Security Audits: We conduct regular security audits and assessments to identify and address potential vulnerabilities. These audits help us maintain high security standards and continuously improve our security measures.
Data Anonymisation: In certain cases, we anonymise personal information to further protect user privacy. Anonymisation ensures that data cannot be traced back to individual users, adding an extra layer of security.
User Responsibilities: We encourage users to take proactive steps to protect their information, such as using strong, unique passwords and enabling multi-factor authentication. Users are also advised to regularly update their security settings and monitor their accounts for any suspicious activity.
By implementing these security measures, we aim to create a safe and secure environment for all users, protecting personal information from potential threats and ensuring the integrity of our platform.
Encryption and security protocols
We employ robust encryption and security protocols to protect personal information from unauthorised access and potential breaches. Encryption ensures that data is securely transmitted and stored, making it unreadable to anyone without the proper decryption keys.
Data in transit is protected using Transport Layer Security (TLS), which encrypts information sent between users' devices and our servers. This prevents interception and tampering during data transmission. For data at rest, we use advanced encryption standards (AES) to secure stored information, ensuring that even if the data is accessed, it remains protected.
Additionally, we implement comprehensive security protocols, including regular updates and patches to our systems, to guard against vulnerabilities and potential exploits. These protocols are designed to maintain the confidentiality, integrity, and availability of personal data, providing users with peace of mind that their information is well-protected.
User responsibilities for maintaining security
User responsibilities also play a crucial role in maintaining security. We encourage users to use strong, unique passwords and enable multi-factor authentication to add an extra layer of protection to their accounts. Users should regularly update their security settings and remain vigilant for any suspicious activity, reporting it to us immediately. By working together, we can ensure a secure environment for all users.
User Rights and Choices
Right to access and update information
Users have the right to access and update their personal information at any time. Through the Sitez platform, users can view the information we have collected and make necessary changes to ensure its accuracy. This includes updating contact details, employment information, and other personal data. By providing easy access to personal information, we empower users to maintain control over their data and ensure it is current and accurate.
Right to be forgotten
Users have the right to request the deletion of their personal information from our systems. This "right to be forgotten" allows users to have their data erased, ensuring it is no longer processed or stored by Sitez. To exercise this right, users can submit a request through their account settings or contact our support team. We will promptly process such requests, subject to any legal obligations that may require data retention.
Data portability
We recognise users' right to data portability, allowing them to obtain and reuse their personal information across different services. Users can request a copy of their data in a commonly used, machine-readable format, which can then be transferred to another service provider. This ensures users have full control over their data and can move it as needed, enhancing their flexibility and autonomy.
Options for managing privacy settings
Sitez provides users with various options for managing their privacy settings. Through the app, users can customise their data-sharing preferences, control who has access to their information, and adjust settings related to notifications and communications. By offering these options, we enable users to tailor their privacy settings to match their individual preferences and ensure their data is handled in accordance with their wishes.
Self-Sovereign Identity and Digital ID
Explanation of self-sovereign identity
Self-sovereign identity (SSI) is a digital identity model where individuals have complete control over their personal data. In traditional identity systems, third parties such as government agencies, employers, or service providers manage and control user data. With SSI, users independently manage their identity without relying on these intermediaries.
In the context of Sitez, self-sovereign identity means that construction workers and other users can create, manage, and share their personal information directly through the platform. Users have control over what data they share and with whom, allowing them to maintain privacy and autonomy. This model supports secure and verifiable identity credentials that users can present when needed, such as for job applications or accessing site-specific services.
By adopting SSI, Sitez enhances user privacy and security, reducing the risk of data breaches and unauthorised access. Users can update their information in real-time, ensuring accuracy and relevance, while retaining ownership and control of their digital identity.
Implementation of digital ID and user-centric data structures
Sitez utilises digital ID and user-centric data structures to streamline and secure the management of personal information. A digital ID is a secure, digital representation of an individual's identity, encompassing various personal attributes and credentials. This digital ID is unique to each user and can be used across different platforms and services within the Sitez ecosystem.
To implement digital IDs, Sitez uses advanced cryptographic techniques to create verifiable and tamper-proof identity credentials. These credentials include personal information, employment history, certifications, and other relevant data. Users can control which credentials to share and with whom, ensuring their privacy preferences are respected.
User-centric data structures are designed to prioritise the user's control over their data. Instead of storing personal information in centralised databases, Sitez distributes data storage in a manner that grants users direct access and management capabilities. This approach reduces dependency on centralised authorities and minimises the risk of large-scale data breaches.
Users can manage their digital ID through a secure interface on the Sitez platform, where they can update their information, control data sharing, and monitor access logs. This system ensures that users always know who has access to their data and for what purpose, fostering transparency and trust.
By leveraging digital ID and user-centric data structures, Sitez empowers users to take control of their personal information, enhancing privacy, security, and user autonomy in managing their digital identity.
Cookies and Tracking Technologies
Use of cookies and similar technologies
Cookies and similar tracking technologies are essential tools that Sitez employs to enhance user experience and ensure the smooth functioning of our platform. Cookies are small text files stored on users' devices when they visit our website or use our app. These files help us remember users' preferences, keep them logged in, and understand how they interact with our services.
We use different types of cookies, including:
Essential Cookies: These are necessary for the basic functionality of our platform, such as keeping users logged in during a session and ensuring secure access to various features.
Performance Cookies: These cookies collect information about how users interact with our platform, allowing us to improve the overall user experience by identifying and addressing any issues.
Functionality Cookies: These enable us to remember user preferences and settings, such as language choices and display preferences, to provide a personalised experience.
Analytics Cookies: We use these to gather insights into user behaviour and platform usage patterns, helping us optimise our services and make data-driven improvements.
By using cookies and similar technologies, we can deliver a more efficient, customised, and user-friendly experience on the Sitez platform.
Types of cookies used
Sitez uses a variety of cookies to support different functions and enhance user experience. The main types of cookies we use include:
Session Cookies: These are temporary cookies that expire once the user closes their browser or app. They are used to maintain the session state and keep users logged in during their visit.
Persistent Cookies: These cookies remain on the user's device for a specified period or until they are manually deleted. They help us remember users' login details, preferences, and settings for future visits, providing a seamless experience.
First-Party Cookies: These are set directly by the Sitez platform and are used to collect data about user interactions with our services. They are primarily used for functionality and performance improvements.
Third-Party Cookies: These cookies are set by external service providers we partner with, such as analytics and advertising networks. They help us track the effectiveness of our marketing efforts and gather detailed insights into user behaviour across different sites and platforms.
By employing these different types of cookies, we can ensure that our platform operates smoothly, users enjoy a personalised experience, and we continually improve our services based on user feedback and behaviour.
How users can manage cookie preferences
We believe in giving users control over their data, including how cookies are used. Sitez provides several options for managing cookie preferences:
Browser Settings: Users can adjust their browser settings to accept or reject cookies, delete existing cookies, or receive notifications when cookies are being set. Each browser offers different methods for managing cookies, so users should refer to their browser's help section for specific instructions.
In-App Settings: Within the Sitez app, users can access privacy settings to manage cookie preferences. This includes options to disable certain types of cookies or opt-out of tracking altogether.
Cookie Consent Banners: When users first visit our website or use our app, a cookie consent banner is displayed. This banner provides information about the types of cookies we use and allows users to accept or customise their cookie settings. Users can revisit these settings at any time to update their preferences.
Third-Party Opt-Outs: For cookies set by third-party providers, users can visit the respective providers' websites to opt-out of data collection and tracking.
By offering these tools, we ensure that users have the flexibility to manage their cookie preferences according to their privacy needs and comfort levels, enhancing their control over their online experience.
Data Retention
Duration of data retention
At Sitez, we retain personal information for as long as it is necessary to fulfil the purposes for which it was collected, as outlined in our privacy policy. This includes maintaining data to manage construction labour activities, track career growth, and ensure accurate attendance and timekeeping. The retention period varies depending on the nature of the information and the context in which it was collected.
For example, data related to employment and career growth may be retained for the duration of the user's employment with the construction company and a specified period thereafter to support professional development and future employment opportunities. Attendance and timekeeping records are retained for regulatory compliance and payroll processing, typically for several years as required by labour laws.
We also retain personal information to comply with legal obligations, resolve disputes, and enforce our agreements. Once the retention period expires, we securely delete or anonymise the data, ensuring it cannot be reconstructed or read.
Criteria for determining retention periods
The retention periods for personal information are determined based on several key criteria:
Purpose of Data Collection: We retain data for as long as it is needed to achieve the specific purposes for which it was collected, such as managing site attendance or tracking career growth.
Legal and Regulatory Requirements: Various laws and regulations may require us to retain certain types of information for specified periods. We comply with these legal obligations to ensure regulatory adherence.
Contractual Obligations: Our agreements with users, employers, and third-party partners may stipulate certain retention requirements. We honour these contractual terms to maintain trust and accountability.
User Preferences: Users may request the deletion of their data or exercise their right to be forgotten. We respect these requests while ensuring compliance with legal and regulatory mandates.
Business Needs: Operational and business needs, such as auditing, reporting, and dispute resolution, may necessitate the retention of data for specific periods.
By evaluating these criteria, we ensure that our data retention practices are balanced, lawful, and aligned with the needs of our users and business operations.
Deletion of data upon user request
Users have the right to request the deletion of their personal information from our systems. To exercise this right, users can submit a request through their account settings or contact our support team directly. Upon receiving a deletion request, we promptly process it, subject to any legal obligations that may require us to retain certain data.
We follow a thorough process to ensure complete and secure deletion of personal information. This includes:
Verification: Confirming the identity of the user making the request to prevent unauthorised deletion of data.
Assessment: Reviewing the data to determine if any legal or regulatory requirements necessitate its retention.
Execution: Securely deleting the data from our systems and backup storage, ensuring it cannot be reconstructed or read.
Users are informed once their data has been successfully deleted. In cases where complete deletion is not possible due to legal requirements, we anonymise the data to protect user privacy. By providing this option, we empower users to take control of their personal information and ensure it is managed in accordance with their preferences and legal rights.
Access to Data
User access to their data
Users have the right to access their personal information held by Sitez. Through the platform, users can view a comprehensive summary of the data we have collected, including contact details, employment history, attendance records, and any other relevant information. This transparency allows users to verify the accuracy of their data and understand how it is being used.
To access their data, users can log into their accounts and navigate to the profile or settings section, where they will find options to view and download their personal information. This functionality ensures that users have easy and immediate access to their data whenever they need it.
Procedures for requesting data access
In addition to accessing data through the platform, users can formally request a copy of their personal information. To do so, they must submit a data access request, which can be done through the Sitez app or by contacting our support team.
Upon receiving a data access request, we follow a standard procedure to ensure the request is handled promptly and securely:
Verification: We verify the identity of the user making the request to protect against unauthorised access.
Processing: We gather the requested information from our systems, ensuring that all relevant data is included.
Delivery: We provide the information to the user in a structured, commonly used, and machine-readable format. Users can choose to receive the data electronically or in a physical format if preferred.
We aim to respond to data access requests within a reasonable timeframe, usually within 30 days, in compliance with relevant data protection laws.
Third-party access policies
Sitez adheres to strict policies regarding third-party access to personal data. Third parties are only granted access to user information under specific conditions, which include user consent, legal obligations, or contractual requirements. These conditions ensure that data sharing is transparent, secure, and compliant with applicable laws.
Third-party access policies include:
Consent-Based Access: Third parties may access user data only if users have explicitly consented to such access. This consent is typically obtained during the account setup process or when integrating third-party services.
Legal Compliance: We may share data with third parties to comply with legal obligations, such as court orders or regulatory requirements. In such cases, we ensure that the data sharing is limited to what is legally required and inform users whenever possible.
Service Providers: Third-party service providers who perform functions on our behalf, such as data processing, analytics, and customer support, may have access to user data. These providers are bound by confidentiality agreements and are required to use the data solely for the purposes specified by Sitez.
By enforcing these policies, we ensure that third-party access to user data is conducted responsibly, safeguarding user privacy and maintaining the integrity of our data protection practices.
Third-Party Services
Overview of third-party services used
Sitez partners with various third-party services to enhance the functionality and user experience of our platform. These services include data analytics, cloud storage, customer support, and payment processing, among others. By leveraging the expertise and capabilities of these third-party providers, we can offer a more robust and efficient service to our users.
Third-party services are carefully selected based on their ability to provide secure and reliable solutions that align with our privacy standards. We ensure that these providers adhere to strict data protection protocols to safeguard user information.
Sharing information with third-party services
We share user information with third-party services only to the extent necessary to perform specific functions on our behalf. This data sharing is conducted under stringent conditions to protect user privacy and ensure compliance with relevant laws and regulations.
For example, we may share:
Personal Information: Such as contact details and employment history, with cloud storage providers to securely store user data.
Usage Data: With analytics providers to gain insights into how users interact with our platform, helping us improve our services.
Payment Information: With payment processors to facilitate secure transactions and manage billing processes.
Each third-party service provider is required to sign a data processing agreement, which outlines their obligations regarding data protection and limits their use of the information to the purposes specified by Sitez.
User consent for third-party data sharing
User consent is a fundamental aspect of our data sharing practices with third-party services. We obtain explicit consent from users before sharing their personal information with any third-party provider. This consent is typically gathered during the account creation process or when users integrate third-party services within the Sitez platform.
Users are informed about the types of data that will be shared, the purposes of sharing, and the identity of the third-party providers involved. They have the ability to review and manage their data sharing preferences through the platform's privacy settings.
If users wish to revoke their consent for data sharing with third-party services, they can do so at any time by adjusting their privacy settings or contacting our support team. This ensures that users maintain control over their personal information and can make informed decisions about their data privacy.
By prioritising user consent, we uphold the principles of transparency and user autonomy, ensuring that personal information is shared responsibly and in accordance with users' preferences.
Changes to the Privacy Policy
Notification of changes
We are committed to keeping our users informed about any changes to our privacy policy. When updates are made, we provide clear and timely notifications to ensure that users are aware of the new policies and how they may affect their personal information. Notifications are sent through multiple channels, including email, in-app messages, and notifications on our website. This approach ensures that all users receive the information, regardless of their preferred method of communication. By proactively informing users, we maintain transparency and build trust in our data protection practices.
How users will be informed of changes
When changes to the privacy policy occur, we outline the modifications in a clear and concise manner, highlighting the most significant updates. This information is presented in an easy-to-understand format, often accompanied by a summary of key changes. Users are provided with links to the full privacy policy for detailed review. In addition to direct notifications, we update our privacy policy page on the Sitez website and within the app. Users are encouraged to review the policy periodically to stay informed about how their data is being managed and protected.
Effective date of changes
The effective date of the updated privacy policy will be clearly stated at the beginning of the document. This date indicates when the new policies come into force. We typically provide a grace period between the announcement of changes and the effective date, giving users ample time to review the updates and make any necessary adjustments to their privacy settings or account preferences. During this period, users can reach out to our support team with any questions or concerns about the changes. By specifying the effective date, we ensure that users are fully aware of when the new policies will impact their data and usage of the Sitez platform.
Enforcement
Monitoring compliance
Sitez is dedicated to ensuring compliance with our privacy policy and data protection regulations. We regularly monitor our data handling practices through a combination of automated systems and manual reviews. This continuous oversight helps us identify and address potential compliance issues promptly. We also conduct periodic audits to evaluate the effectiveness of our privacy and security measures, ensuring they meet the highest standards. By maintaining rigorous compliance monitoring, we protect user data and uphold our commitment to privacy.
Steps taken for policy enforcement
To enforce our privacy policy, Sitez implements several measures designed to ensure that all data handling activities are conducted in accordance with established guidelines. These measures include:
Employee Training: Regular training sessions for employees on data protection principles, privacy policies, and security protocols to ensure they understand and adhere to our standards.
Access Controls: Strict access controls to limit who can access personal information, ensuring that only authorised personnel can handle sensitive data.
Incident Response: A well-defined incident response plan to address data breaches or violations of the privacy policy. This plan includes immediate actions to mitigate the impact, notification to affected users, and steps to prevent future occurrences.
Compliance Reviews: Routine compliance reviews and assessments to ensure that our practices align with regulatory requirements and industry best practices.
By implementing these enforcement measures, we ensure that our privacy policy is not only a written document but a living practice that guides our daily operations.
User recourse for privacy violations
Users who believe their privacy rights have been violated have several avenues for recourse. First, users can contact our support team to report their concerns or file a complaint. We take all complaints seriously and investigate them thoroughly, taking appropriate actions to resolve any issues.
Additionally, users have the right to escalate their concerns to relevant data protection authorities if they are not satisfied with our response. We provide contact information for these authorities within our privacy policy to ensure users have access to external recourse options.
We are committed to addressing privacy violations transparently and effectively, ensuring that users' concerns are resolved promptly and satisfactorily. By offering clear recourse options, we reinforce our dedication to protecting user privacy and maintaining trust in our platform.
Contact Information
How to contact Sitez with privacy concerns
Users who have questions, concerns, or feedback regarding our privacy policy or data handling practices can contact us directly. Our dedicated support team is available to assist with any privacy-related inquiries. Users can reach out through various channels, including:
Email: Users can send an email to our privacy team at dpo@sitez.co.za for any privacy concerns or questions.
In-App Support: Users can access support directly within the Sitez app by navigating to the help or support section and submitting a request.
Phone: For urgent matters, users can call our customer support hotline at +27614978034.
By providing multiple contact options, we ensure that users can easily reach us with their privacy concerns and receive timely assistance.
Jurisdiction and Governing Law
Applicable laws and jurisdiction
The privacy policy of Sitez is governed by and construed in accordance with the data protection laws and regulations of the jurisdiction in which we operate. This includes compliance with relevant international, national, and local privacy laws such as the General Data Protection Regulation (GDPR) for users in the European Union, the Protection of Personal Information Act (POPIA) in South Africa, and other applicable laws.
Any disputes arising from or in connection with our privacy policy will be subject to the exclusive jurisdiction of the courts located in our principal place of business. Users agree to submit to the jurisdiction of these courts for the resolution of any privacy-related disputes. By ensuring compliance with applicable laws and specifying jurisdiction, we uphold our commitment to legal standards and provide a clear framework for resolving legal matters.
How disputes will be handled
We are committed to resolving any disputes related to privacy and data protection in a fair and efficient manner. The process for handling disputes is as follows:
Initial Contact: Users should first contact our support team with their concerns. We encourage users to provide detailed information about their issue to facilitate a thorough investigation and resolution.
Internal Review: Our team will review the complaint and work to resolve it as quickly as possible. This may involve discussions with the user to gather more information and clarify any misunderstandings.
Escalation: If the user is not satisfied with the initial response, the matter can be escalated to our Data Protection Officer (DPO) for further review. The DPO will conduct an independent assessment of the issue and propose a resolution.
External Recourse: Should internal resolution efforts fail, users have the right to seek external recourse by contacting relevant data protection authorities or pursuing legal action in the specified jurisdiction. Contact information for these authorities is provided within our privacy policy.
By outlining a clear dispute resolution process, we ensure that users know their rights and the steps they can take to address privacy concerns effectively. This commitment to transparency and fairness reinforces our dedication to protecting user privacy and maintaining trust.