Cedza Privacy Policy
Cedza Privacy Policy
EFFECTIVE 1 July 2025
EFFECTIVE 1 July 2025
Purpose and Commitment
Purpose and Commitment
At Cedza, we are committed to protecting the confidentiality, integrity, and lawful processing of personal information in accordance with the Protection of Personal Information Act, 4 of 2013 ("POPIA"), and the highest standards of corporate governance.
This Privacy Policy sets out how we collect, use, disclose, store, and protect personal information obtained through our website, communications, or engagements with clients and stakeholders.
At Cedza, we are committed to protecting the confidentiality, integrity, and lawful processing of personal information in accordance with the Protection of Personal Information Act, 4 of 2013 ("POPIA"), and the highest standards of corporate governance.
This Privacy Policy sets out how we collect, use, disclose, store, and protect personal information obtained through our website, communications, or engagements with clients and stakeholders.
Scope of Application
Scope of Application
This policy applies to:
All visitors to our website;
Prospective and current clients;
Representatives of organisations engaging with Cedza;
Any individual whose personal information we process in connection with our services.
By accessing or using our website, you acknowledge that you have read and understood this policy and consent to the processing of your personal information as outlined below.
This policy applies to:
All visitors to our website;
Prospective and current clients;
Representatives of organisations engaging with Cedza;
Any individual whose personal information we process in connection with our services.
By accessing or using our website, you acknowledge that you have read and understood this policy and consent to the processing of your personal information as outlined below.
Information We Collect
Information We Collect
At Cedza, we are committed to protecting the confidentiality, integrity, and lawful processing of personal information in accordance with the Protection of Personal Information Act, 4 of 2013 ("POPIA"), and the highest standards of corporate governance.
This Privacy Policy sets out how we collect, use, disclose, store, and protect personal information obtained through our website, communications, or engagements with clients and stakeholders.
We collect and process information that is necessary for our legitimate business operations, including:
Contact and Identification Information
Name, surname
Company or employer
Email address and phone number
Role or title
Any information voluntarily submitted via contact forms or meeting bookings
b. Technical and Usage Information
IP address
Browser type and device information
Website usage analytics
Form submission history and interaction patterns
c. Engagement Information
Communication records, meeting notes, or documentation relevant to pre-contractual or contractual discussions
At Cedza, we are committed to protecting the confidentiality, integrity, and lawful processing of personal information in accordance with the Protection of Personal Information Act, 4 of 2013 ("POPIA"), and the highest standards of corporate governance.
This Privacy Policy sets out how we collect, use, disclose, store, and protect personal information obtained through our website, communications, or engagements with clients and stakeholders.
We collect and process information that is necessary for our legitimate business operations, including:
Contact and Identification Information
Name, surname
Company or employer
Email address and phone number
Role or title
Any information voluntarily submitted via contact forms or meeting bookings
b. Technical and Usage Information
IP address
Browser type and device information
Website usage analytics
Form submission history and interaction patterns
c. Engagement Information
Communication records, meeting notes, or documentation relevant to pre-contractual or contractual discussions
Purpose for Processing Personal Information
Purpose for Processing Personal Information
We process personal information for the following legitimate business purposes:
To respond to inquiries or requests
To schedule and facilitate meetings, calls, and consultations
To fulfil obligations under contracts or proposals
To analyse usage of our website and services to improve performance and user experience
To comply with applicable lows and regulatory requirements
We process personal information for the following legitimate business purposes:
To respond to inquiries or requests
To schedule and facilitate meetings, calls, and consultations
To fulfil obligations under contracts or proposals
To analyse usage of our website and services to improve performance and user experience
To comply with applicable lows and regulatory requirements
Legal Basis for Processing
Legal Basis for Processing
We process personal information based on:
Consent, where required
Legitimate business interests
Performance of a contract or pre-contractual measures
Compliance with legal obligations
We process personal information based on:
Consent, where required
Legitimate business interests
Performance of a contract or pre-contractual measures
Compliance with legal obligations
Data Storage and Security
Data Storage and Security
Cedza employs appropriate administrative, technical, and organisational safeguards to protect the confidentiality, availability, and integrity of your data. This includes:
Secure storage on Microsoft 365 Business Basic cloud infrastructure
Restricted access to authorised personnel only
Continuous monitoring of system access and data use
Regular data hygiene practices and retention policies
Cedza employs appropriate administrative, technical, and organisational safeguards to protect the confidentiality, availability, and integrity of your data. This includes:
Secure storage on Microsoft 365 Business Basic cloud infrastructure
Restricted access to authorised personnel only
Continuous monitoring of system access and data use
Regular data hygiene practices and retention policies
Disclosure of Personal Information
Disclosure of Personal Information
We do not sell or commercially distribute personal information. We may share information with:
Trusted third-party service providers (e.g. Microsoft, form and scheduling tools) who assist in the delivery of our services under confidentiality agreements
Legal or regulatory authorities, where disclosure is required by law
All third-party providers are contractually bound to ensure the security and confidentiality of your data.
We do not sell or commercially distribute personal information. We may share information with:
Trusted third-party service providers (e.g. Microsoft, form and scheduling tools) who assist in the delivery of our services under confidentiality agreements
Legal or regulatory authorities, where disclosure is required by law
All third-party providers are contractually bound to ensure the security and confidentiality of your data.
Cross-Border Transfers
Cross-Border Transfers
Personal information may be processed or stored in jurisdictions outside South Africa (e.g., via Microsoft infrastructure). In such cases, Cedza ensures that appropriate data protection measures are in place to comply with POPIA’s cross-border data transfer requirements.
Personal information may be processed or stored in jurisdictions outside South Africa (e.g., via Microsoft infrastructure). In such cases, Cedza ensures that appropriate data protection measures are in place to comply with POPIA’s cross-border data transfer requirements.
Your Rights
Your Rights
You have the right to:
Access personal information we hold about you
Request correction, deletion, or restriction of processing
Object to certain types of processing
Lodge a complaint with the Information Regulator of South Africa
To exercise any of the above rights, please email: privacy@cedza.co.za
You have the right to:
Access personal information we hold about you
Request correction, deletion, or restriction of processing
Object to certain types of processing
Lodge a complaint with the Information Regulator of South Africa
To exercise any of the above rights, please email: privacy@cedza.co.za
Retention of Personal Information
Retention of Personal Information
We retain personal information only as long as necessary to fulfil the purposes for which it was collected, unless retention is required by law, regulation, or internal policy.
We retain personal information only as long as necessary to fulfil the purposes for which it was collected, unless retention is required by law, regulation, or internal policy.
Use of Cookies
Use of Cookies
Our website may use cookies or similar technologies to enhance user experience and improve performance. You may manage cookie preferences via your browser settings.
Our website may use cookies or similar technologies to enhance user experience and improve performance. You may manage cookie preferences via your browser settings.
Policy Updates
Policy Updates
This Privacy Policy may be reviewed and updated from time to time. All updates will be posted on this page, and your continued use of the website constitutes acceptance of the updated terms.
This Privacy Policy may be reviewed and updated from time to time. All updates will be posted on this page, and your continued use of the website constitutes acceptance of the updated terms.
Contact Information
Contact Information
For any questions or concerns regarding this policy or the handling of personal information, please contact:
Cedza Health Intelligence (Pty) Ltd.
Email: privacy@cedza.co.za
For any questions or concerns regarding this policy or the handling of personal information, please contact:
Cedza Health Intelligence (Pty) Ltd.
Email: privacy@cedza.co.za
Protecting the Promise of Care
2025 Cedza Health Intelligence (Pty) Ltd. All rights reserved.
Protecting the Promise of Care
2025 Cedza Health Intelligence (Pty) Ltd.
All rights reserved.