Privacy Policy

Introduction

Welcome to The Security Mecca (“we”, “us”, “our”). This Privacy Policy outlines how we collect, use, store, and protect your personal data when you visit our website, www.secmec.shop (“the Website”), and interact with our services. We are committed to safeguarding your privacy and ensuring compliance with the General Data Protection Regulation (GDPR).

This Privacy Policy is effective as of 25 September 2024 and applies to all visitors, users, and customers of The Security Mecca.

1. Data Controller

The data controller responsible for your personal data is:

The Security Mecca
Address: 55 Du Plooy Str, Potchefstroom
Email: [email protected]

For any data-related inquiries or requests regarding your personal data, you can contact us using the information above.

2. What Personal Data We Collect

We collect the following types of personal data when you interact with our Website or services:

  • Identity Data: Name, title, email address, phone number, and postal address.
  • Financial Data: Payment card details, billing address, and transaction details (note: financial data is processed securely and not stored directly by us).
  • Technical Data: IP address, browser type, device type, operating system, and time zone.
  • Usage Data: Information about how you use our Website, including pages viewed, time spent on the Website, and purchase history.
  • Marketing and Communication Data: Your preferences for receiving marketing from us and your communication preferences.

3. How We Collect Your Data

We collect personal data through various methods, including:

  • Direct interactions: When you fill out forms, place an order, or subscribe to our newsletter.
  • Automated technologies: As you navigate our Website, we may collect data using cookies, server logs, and other similar technologies.
  • Third-party sources: We may receive data from third-party services, such as analytics providers or payment processors.

4. How We Use Your Personal Data

We use your personal data for the following purposes:

  • To Process Orders: We collect and use your data to process and fulfil orders, manage payments, and deliver products.
  • To Provide Customer Support: We use your data to respond to inquiries, provide product support, and resolve issues.
  • To Improve Our Website and Services: We use usage data to analyse and improve the functionality of our Website and enhance the customer experience.
  • To Send Marketing Communications: If you opt-in, we may send you marketing emails about new products, promotions, or other updates. You can opt-out of these communications at any time.
  • To Comply with Legal Obligations: We process your data to fulfil our legal obligations, such as tax and regulatory requirements.

5. Legal Basis for Processing Your Data

We rely on the following legal grounds to process your personal data:

  • Contractual Necessity: To process your orders and provide the products or services you have requested.
  • Consent: When you provide your consent for marketing communications or other non-essential services.
  • Legitimate Interests: When processing is necessary for our legitimate business interests, such as improving our services or preventing fraud.
  • Legal Obligations: When processing is necessary to comply with legal requirements.

6. How We Share Your Personal Data

We do not sell, rent, or trade your personal data. However, we may share your personal data with the following categories of third parties:

  • Payment Processors: To securely process transactions.
  • Shipping Providers: To fulfil orders and deliver products to you.
  • IT and Hosting Providers: To manage our Website infrastructure and data storage.
  • Legal and Regulatory Authorities: When required to comply with legal obligations or to protect our legal rights.
  • Marketing Partners: To send marketing communications (only with your consent).

All third-party service providers that process personal data on our behalf are GDPR-compliant and required to maintain the confidentiality and security of your data.

7. Data Security

We are committed to ensuring the security of your personal data. We implement a range of security measures, including but not limited to:

  • Encryption: Sensitive personal data, such as payment information, is encrypted in transit and storage.
  • Access Control: Only authorised personnel have access to personal data, and they are bound by confidentiality agreements.
  • Secure Servers: We store your personal data on secure servers protected by firewalls and industry-standard security protocols.

Although we strive to protect your data, please note that no method of transmission over the Internet or method of electronic storage is completely secure. We cannot guarantee the absolute security of your personal data.

8. Data Retention

We will only retain your personal data for as long as necessary to fulfil the purposes outlined in this Privacy Policy or as required by law. Typically, this means:

  • Transaction Data: Kept for as long as required by tax and accounting regulations.
  • Marketing Data: Kept until you withdraw your consent or request deletion.
  • Usage Data: Retained for a reasonable period for analysis and Website improvement.

Once the retention period expires, your personal data will either be securely deleted or anonymised.

9. Your Data Protection Rights

Under the GDPR, you have the following rights with respect to your personal data:

  • Right to Access: You can request access to the personal data we hold about you.
  • Right to Rectification: You can request that we correct any inaccurate or incomplete data.
  • Right to Erasure: You can request the deletion of your personal data, under certain conditions.
  • Right to Restrict Processing: You can request that we restrict the processing of your personal data, under certain conditions.
  • Right to Object: You can object to the processing of your personal data, under certain conditions.
  • Right to Data Portability: You can request the transfer of your personal data to another service provider.
  • Right to Withdraw Consent: You can withdraw your consent to marketing communications at any time.

To exercise any of these rights, please contact us at [email protected]. We will respond to your request within one month.

10. International Data Transfers

As The Security Mecca is based in South Africa, your personal data may be transferred to and processed outside of the European Economic Area (EEA). We ensure that such transfers comply with GDPR by implementing adequate safeguards, such as Standard Contractual Clauses (SCCs) or ensuring third-party service providers are bound by similar protections.

11. Cookies and Tracking Technologies

Our Website uses cookies to enhance user experience and collect data on Website usage. Cookies are small files placed on your device that track information such as browsing behaviour. You can manage cookie preferences in your browser settings.

For more details, please refer to our Cookie Policy.

12. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. Any updates will be posted on this page, and where applicable, we will notify you via email.

This Privacy Policy was last updated on 25 September 2024.

13. Contact Information

If you have any questions or concerns about this Privacy Policy or how we handle your personal data, please contact us at:

The Security Mecca
Address: 55 Du Plooy Str, Potchefstroom
Email: [email protected]

We are committed to ensuring your privacy is protected and will do our best to address any concerns you may have.

By using our Website, you agree to the terms of this Privacy Policy.

4o