Privacy Policy

Compliance

Last updated 31 May 2025

POL-104-HR Privacy Policy

1. Introduction

PBC Group (Pty) Ltd (“the Company”) is committed to safeguarding the privacy of our clients, employees, partners, and stakeholders in accordance with the Protection of Personal Information Act (POPIA), Act No. 4 of 2013. This Privacy Policy outlines how we collect, use, disclose, and protect personal information in the course of our forensic, investigative, audit, and recovery services.

2. Scope

This policy applies to all personal information processed by the Company, whether in electronic or physical form, and includes all stakeholders such as clients, vendors, employees, and third parties.

3. Information we collect

  • Identification data (name, ID/passport number)
  • Contact details (email, phone number, address)
  • Employment and financial history
  • Case-specific information, including evidence and testimony
  • Surveillance or audio-visual recordings (when legally obtained)
  • Digital forensic data

4. How we collect information

  • Directly from clients and data subjects
  • Through investigative procedures, audits, and surveillance
  • Public records and legal disclosures
  • From third parties with consent or lawful authority

5. Purpose of Processing

We process personal data to:

  • Conduct forensic investigations
  • Perform audits and compliance assessments
  • Recover assets and identify fraud
  • Meet contractual and legal obligations
  • Support litigation and regulatory reporting

6. Legal Basis for Processing

Our processing is based on:

  • Data subject consent
  • Fulfillment of a contract
  • Legal obligation compliance
  • Legitimate interest in fraud detection and recovery
  • Public interest or legal proceedings

7. Information Sharing

We may share personal information with:

  • Law enforcement agencies
  • Courts and legal counsel
  • Regulators and auditors
  • Contracted service providers (under confidentiality agreements)

All third parties must comply with POPIA standards.

8. Data Subject Rights

Under POPIA, data subjects have the right to:

  • Access their personal data
  • Correct inaccurate or incomplete data
  • Object to processing or withdraw consent
  • Request deletion (within legal allowances)
  • Lodge complaints with the Information Regulator

9. Security Measures

The Company employs industry-appropriate safeguards, including:

  • Encryption of electronic data
  • Secure physical storage of files
  • Access control and monitoring
  • Employee confidentiality agreements and training
  • Regular security audits

10. Data Retention

Personal information is retained only as long as necessary to fulfill the purposes for which it was collected and to comply with legal obligations. Thereafter, it is securely destroyed.

11. Cross-Border Transfers

In limited instances, personal information may be transferred outside South Africa. In such cases, we ensure adequate protection through legal contracts and safeguards in compliance with POPIA.

12. Use of Cookies and Tracking

Our website may use cookies and analytics to enhance the user experience. Data collected via cookies is anonymized and not used to profile individuals.

13. Change to the Policy

This Privacy Policy may be updated periodically. Updated versions will be published on our website and made available to stakeholders.

14. Contact Information

For queries or concerns regarding this policy or your personal information, please contact our Information Officer:
Name: Information Officer
Email: support@pbcgroup.co.za