Privacy and Data Handling Policy
1. Introduction
Overview of the Privacy Policy
Lemon Africa ("we," "us," "our") is committed to protecting the privacy and security of your personal information. This policy explains how we collect, use, share, and protect personal information in compliance with South Africa's Protection of Personal Information Act (POPIA), the European General Data Protection Regulation (GDPR), and Amazon Seller requirements.
Purpose of the Policy
The purpose of this policy is to ensure transparency in our processing of personal information and to inform data subjects of their rights.
Scope and Applicability
This policy applies to all personal information processed by Lemon Africa through our website, mobile applications, and during the provision of our services.
Definitions of Key Terms
- Consumer: An individual who uses Lemon Africa's platform to purchase products or services.
- Seller/Vendor: Businesses or individuals offering products or services through Lemon Africa's platform.
- PII (Personal Identifiable Information): Information that can be used on its own or with other information to identify, contact, or locate a single person.
- Third-Party Data Processors: External organizations that process personal information on behalf of Lemon Africa.
- First-Party Data Processors: Internal departments or divisions within Lemon Africa that process personal information.
- GDPR (General Data Protection Regulation): EU legislation that sets guidelines for the collection and processing of personal information of individuals within the European Union.
- POPIA (Protection of Personal Information Act): South African legislation that governs the processing of personal information.
2. Information Collection
Types of Personal Information Collected
We collect personal information such as names, contact details, payment information, and browsing behaviors.
Methods of Collection
Personal information is collected via our website, mobile apps, during purchase transactions, and through interactions with our customer service.
Lawful Basis for Processing Personal Information
We process personal information based on consent, contractual necessity, legal requirements, and legitimate interests.
Consent and Withdrawal
Data subjects have the right to consent to processing their personal information and withdraw their consent at any time.
3. Use and Processing of Personal Information
Purpose of Use
We use personal information to provide and improve our services, for customer support, marketing, and compliance with legal obligations.
Data Minimization and Retention
We retain personal information only for as long as necessary for the purposes it was collected and comply with legal and regulatory requirements.
Data Accuracy and Updates
We take steps to ensure personal information is accurate, complete, and up-to-date.
Security Measures and Safeguards
We implement physical, technical, and administrative measures to protect personal information against unauthorized access, disclosure, alteration, and destruction.
Transfers of Personal Information
Personal information may be transferred to third-party service providers and across borders in compliance with legal frameworks and safeguards.
4. Rights of Data Subjects
Access to Personal Information
Data subjects have the right to access their personal information held by us.
Rectification of Personal Information
Data subjects have the right to request correction or completion of their personal information.
Erasure of Personal Information
Data subjects can request the deletion of their personal information under certain conditions.
Objection to Processing
Data subjects have the right to object to the processing of their personal information.
Transfers of Personal Information
Personal information may be transferred to third-party service providers and across borders in compliance with legal frameworks and safeguards.
5. Information Sharing and Disclosure
Third-Party Service Providers
We share personal information with third-party service providers for processing activities necessary for service provision.
Client Organisations
Information may be shared with client organizations in accordance with our service agreements and privacy obligations.
Legal Requirements and Compliance
We may disclose personal information to comply with legal obligations or protect our rights.
Cross-Border Transfers
Personal information may be transferred internationally in accordance with applicable data protection laws.
6. Cookie and Tracking Technologies
Use of Cookies
We use cookies to enhance website functionality, analyze site usage, and support marketing efforts.
Tracking Technologies and Analytics
We employ tracking technologies to gather data on website traffic and interaction patterns.
Cookie Management Options
Users can manage cookie preferences through their browser settings.
7. Marketing and Communication
Consent for Marketing Communications
We obtain explicit consent before sending marketing communications.
Opt-out and Unsubscribe Options
Data subjects can opt-out of marketing communications at any time.
8. Data Breach Notification
Procedures for Handling Data Breaches
We have procedures in place to detect, report, and investigate personal data breaches.
Notification Obligations
We will notify affected individuals and relevant authorities of data breaches as required by law.
9. Updates and Changes to the Privacy Policy
Notification of Changes
We will update this policy as necessary to reflect changes in our practices, legal requirements, and advancements in technology.
Policy Version Control
We maintain a version control system for this policy to track changes over time.
10. Detailed Contact Information
For any questions, concerns, or requests regarding this privacy policy or our handling of your information, you can contact us by the following means:
Email: privacy@lemon.africa
Contact Form: Available on our website at www.lemon.africa/contact-us
You have the right to make a complaint at any time to the national supervisory authority for data protection issues. However, we would appreciate the chance to deal with your concerns before you approach the supervisory authority, so please contact us in the first instance.