Privacy Policy

1. Introduction

Dickason Global ("we", "us", "our") respects your privacy and is committed to protecting your personal information in accordance with applicable global data protection laws, including the Protection of Personal Information Act, 2013 (POPIA) of South Africa, the UK General Data Protection Regulation and Data Protection Act 2018 (UK GDPR), the EU General Data Protection Regulation (EU GDPR), the California Consumer Privacy Act as amended by the CPRA (CCPA/CPRA), the Brazilian Lei Geral de Proteção de Dados (LGPD), Canada's PIPEDA, and Australia's Privacy Act 1988. Where laws conflict, the standard most protective of you applies.

2. Information We Collect

Our website is primarily informational. We do not require you to register an account. We may collect: (a) information you voluntarily provide via email correspondence; (b) limited technical information (IP address, browser type, pages visited) through cookies and similar technologies, where you consent.

3. How We Use Information

We use personal information only for purposes that are lawful, specific, and explicitly defined, including: responding to enquiries, operating and securing our website, complying with legal obligations, and (with consent) measuring site usage. We do not sell or share personal information for cross-context behavioural advertising as defined under CCPA/CPRA.

4. Lawful Basis for Processing

Under GDPR and similar regimes, we rely on the following lawful bases: (i) your consent (cookies, optional analytics, enquiries); (ii) our legitimate interests in operating and securing our website where not overridden by your rights; and (iii) compliance with legal obligations. You may withdraw consent at any time without affecting the lawfulness of prior processing.

5. Cookies

See our dedicated Cookie Policy for full details. In summary:

• Essential cookies — necessary for the site to function. No consent required.
• Analytics cookies — set only with your consent.
• Marketing cookies — set only with your consent.

6. International Data Transfers

Where personal information is transferred outside your jurisdiction, we rely on appropriate safeguards such as the European Commission's Standard Contractual Clauses, the UK International Data Transfer Addendum, and equivalent mechanisms under POPIA section 72.

7. Data Retention

We retain personal information only for as long as necessary to fulfil the purposes for which it was collected, to comply with legal obligations, resolve disputes, and enforce our agreements. Email correspondence is typically retained for up to 24 months unless a longer period is required by law.

8. Your Rights

Subject to applicable law, you have the right to:

• access the personal information we hold about you;
• request correction or deletion of inaccurate or unlawfully processed information;
• object to or restrict processing;
• data portability in a structured, machine-readable format (GDPR);
• withdraw consent at any time;
• opt out of the sale or sharing of personal information (CCPA/CPRA) — note we do not sell;
• not be subject to solely automated decision-making with legal or similarly significant effects;
• lodge a complaint with your local supervisory authority — for example the Information Regulator (South Africa) at inforeg@justice.gov.za, the UK ICO, your EU Data Protection Authority, or the California Attorney General.

We will not discriminate against you for exercising any of these rights. To exercise a right, contact us using the details below; we will verify your identity and respond within the statutory timeframe (typically 30 days).

9. Data Security

We apply appropriate, reasonable technical and organisational safeguards — including TLS encryption in transit, access controls, and edge-level web application firewall protection — to protect personal information against loss, unauthorised access, modification, or disclosure, as required by section 19 of POPIA and Article 32 of the GDPR.

10. Children's Privacy

Our website is not directed to children under 16 and we do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us and we will promptly delete it.

11. Information Officer & Contact

For any privacy-related request, including data subject access, rectification, erasure, or complaints, contact our Information Officer / Data Protection Officer at privacy@dickasonglobal.com.

12. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be reflected by updating the "Last updated" date above and, where required, by additional notice.