LUCID’S PRIVACY AND SECURITY STATEMENT
LUCID’s Commitment to Protecting your Personal Information:
LUCID Lifestyle (Pty) Ltd including its holding Company (“LUCID”) is committed to respecting and maintaining the privacy and security of its customer’s personal and confidential information (collectively “Personal Information” / “Information”) submitted to LUCID via the www.lucidliving.co.za website (the “Website”). This privacy and security Statement (the “Statement”) outlines LUCID’s practices and commitment to its customers, in this regard. LUCID takes all reasonable steps to ensure that its business practices are aligned with the terms of this Statement.
LUCID values you as a customer. We will therefore treat all your Personal Information as private and confidential and undertake to deal with your Information in a responsible and lawful manner. All reasonable steps will be taken to prevent unauthorized access to your Personal Information. Please note that only Personal Information that is required for the purposes of assessing and providing you with an insurance policy will be requested. This information is essential to conclude your agreement and a legal requirement. Your Personal Information will only be processed for purposes consistent with the normal course of our business and to uphold our legitimate interests.
LUCID is required by law, to process and maintain your Personal Information in accordance with prescribed standards or generally accepted information management practices (including prescribed retention periods) to ensure that your information is complete, accurate, up to date and secure.
Your Personal Information will not be disclosed to any third party except in the normal course of our business or where we are required to do so by law.
You may request access to your Personal Information, that we maintain a record of. The Information will be made available to you following receipt of your request. You may notify us in writing of any inaccuracies reflected in the Information that we maintain and subject to verification, we will correct your Information.
Processing of your Personal Information:
1. You will be able to explore the majority of the services offered on the Website without us collecting any Personal Information from you. We do however, gather and analyse information on our visitors’ routine use of the Website. We use this information to monitor which areas of the Website are most frequently visited, to assist us to continue developing a value-added service. To facilitate this, the Website servers will collect the IP address of your computer, but not the email address or any other distinguishing information. This information is aggregated (so individual personal information, behaviour or patterns cannot be identified). LUCID assumes no obligation to protect this information, and may copy, distribute or otherwise use such information without limitation.
2. For the purpose of business communications, administration and transacting we may collect and subsequently process certain Personal Information. This will enable LUCID to:
2.1. Respond to queries or requests submitted by you;
2.2. Process orders or applications;
2.3. Resolve problems with services previously rendered;
2.4. Create products and services that may meet your future requirements; and/or
2.5. To compile non-personal statistical information about browsing habits, click-patterns and access to the LUCID Website.
3. LUCID may periodically conduct online customer care surveys to facilitate the enhancing of service standards. When it conducts a survey, LUCID will inform the customer how the information gathered will be used, and will provide the customer with the opportunity to opt-out from such surveys.
4. LUCID may enter into business arrangements whereby its customer base is one of the more valued assets. In such an event, Personal Information will be one of the transferable assets.
5. LUCID will collect, process, maintain, disclose or otherwise deal with your Personal Information only with your knowledge and consent. In respect of marketing services or products, consent to collect or use information can be express (e.g. signing an agreement) or implied (e.g. if the customer is given an opportunity to opt out of a specific form of information sharing, but choose not to do so, it implies that the customer chooses to share this information).
6. LUCID may collect, process, maintain, disclose or otherwise deal with your Personal Information, without your knowledge and consent, in the following circumstances:
6.1. Required by law
This most often relates to government tax reporting requirements or in terms of a court order or if required in terms of legislation or in accordance with the common law. When LUCID is served with due legal process requiring the delivery of Personal Information, it has the legal duty to abide by that demand, and will do so. LUCID will, however, in all instances required by law, only disclose the Personal Information specifically requested;
6.2. Necessary to protect LUCID’s interest
This will not be used as a reason for disclosing Personal Information about a customer or a customer’s accounts (including name and address) to any one else, including other companies within the Telesure Group for marketing purposes. However, basic procedures that protect LUCID’s interests sometimes lead to the disclosure of specific customer information including certain Personal Information to third parties (e.g. making your related claims and underwriting information, available to other insurers). These instances are limited and the disclose of information, restricted to what is reasonably required in the circumstances;
6.3. In the public interest
LUCID may be required to disclose Personal Information for matters of public interest, e.g. to assist in the prevention of crimes. Before complying with these requests, LUCID will take every precaution to ensure the authorities involved have legitimate grounds to make such a request; and
6.4. For statistical purposes
LUCID may process and disclose Personal Information, for statistical purposes, that does not relate to you or any person specifically (i.e. de-identified information) as it deems appropriate.
LUCID will never sell your email address to third parties for purposes of email spamming. Provided that you have agreed to this, LUCID may use your Personal Information to send you information on new services or products that may be of interest to you and from time to time will mail, email or SMS information to you about us, our products and services, or our partners and their products or services. If you do not wish to continue receiving this information you may contact us and we will remove you from our mailing list.
LUCID offers the User the opportunity to opt-out of receiving marketing or promotional communications from LUCID. This can be done by way of a single click cancellation from all email communications (unsubscribe) facility.
Technology and Security on the Website:
To prevent unauthorised access, maintain data integrity and ensure the appropriate use of information, LUCID have established appropriate physical and technological protocols to safeguard the Personal Information you provide to us. LUCID will update and enhance these measures on an ongoing basis, to ensure they remain appropriate and relevant.
LUCID has deployed state of the art technology and implemented security measures to protect against the loss, misuse or alterations of the Information under our control, by unauthorised third parties. LUCID is committed to providing secure online services.
As such, all interactions with our transactional site (Online Service/s) is protected through encryption that complies with international standards. Currently LUCID uses SSL 3.0 (Secure Socket Layer) 128-bit data encryption to protect your data and secure your transactions. SSL encrypts all your Personal Information including banking details, name and addresses as it is transmitted over the Internet. Encryption is used to protect the transmission of your Personal Information when transacting on the Website.
LUCID’s Internet servers are protected by firewalls and intrusion detection systems. Access to information on these servers is restricted to authorized personnel only. The LUCID user database is backed up on a regular basis, and our services do not allow anonymous or otherwise unauthenticated access at any time.
LUCID regularly tests the effectiveness of the security of its systems and responds to any threats that may be detected.
Of course, no data transmission over the Internet can be guaranteed 100% secure, and LUCID does not warrant that your information will be absolutely secure. Any transmission of data on or through the use of LUCID’s Website is at your own risk.
System Access Control:
The Online Service/s are protected against unauthorized access. LUCID utilizes an authentication tool to verify the identity of the User, prior to permitting the User access to the Online Service/s. The authentication tool verifies the identity of the User, by soliciting responses (that have previously been obtained from the User, for this purpose) from the User, to a series of automated questions to which the responses are matched, for verification (“Security Access Information”). You undertake to keep your Security Access Information confidential and warrant that you will not permit any other person, to access the Online Services, using your Security Access Information. You acknowledge and agree that you are solely responsible for maintaining the security of your Security Access Information and undertake to take all reasonable steps to prevent any unauthorized access to the Online Services, using your Security Access Information.
You irrevocably agree not to hold LUCID liable for loss or damages of any nature, that you may suffer as a result of the unauthorized use of your Security Access Information, to access the Online Service/s.
Cookies are small pieces of data that allow the LUCID web server to recognise you. Cookies are issued by a specific web server, stored in your web browser and can only be read by the issuing server. The type of information gathered is non-personal (such as: the IP address of your computer, the date and time of your visit, the pages you browsed etc.)
Should you choose to do so, it is possible (depending on the browser you are using), to be prompted before accepting any cookies, or to prevent your browser from accepting any cookies at all. This may however cause certain features of the Website not to be accessible.
Interception of Communications:
Subject to the provisions of the Regulation of Interception of Communications (RIC) Act 70 of 2002, you hereby agree to LUCID’s right to intercept, block, filter, read, delete, disclose and use all communications send or posted by the User to the Website, its staff and employees.
You agree and acknowledge that the consent provided by you, herein, satisfies the “writing” requirement as detailed in the ECT Act and the RIC Act.
Third Party Sites:
Business Continuity and Disaster Recovery Protocols:
To ensure that the User’s access to the Online Service is not disrupted, for unreasonable periods of time, LUCID has implemented appropriate protocols and technology.
In the event of the Online Service not being available, LUCID will divert all Users to its call centre facilities. The call centre facilities are equipped to manage and process all customer requests.
LUCID regularly replicates all customer records, databases, Online Service transaction records and the Website source code to “back-up” servers, located at two independent sites. In the event of an incident that interrupts normal business operations, the “back-up” servers will be activated to restore standard operating procedures. The User’s access to the Website and Online Service will be restored with minimum interruption.
Updating of the Statement:
LUCID reserves the right to amend or modify its Privacy and Security Statement at its sole discretion, at any time, without any prior notice to the User, in response to meeting dynamic business needs and legislative requirements. All amendments to the Statement will be posted on the Website and be deemed to have been accepted by you if you continue using the Services. You are therefore encouraged, to review the Privacy and Security Statement at regular intervals. Unless otherwise stated, the current version shall supersede and replace all previous versions of this Statement.
This Privacy and Security Statement is incorporated into the Website Terms and Conditions.