Storage, Retention and Destruction of Information. Signatories to this agreement confirm that the appropriate storage and protection measures are in place for the information that is shared through this agreement.
2.5.1 If information is backed up and stored electronically via disc, hard drive, USB stick, or any mobile device, then adequate security measures must be in place on electronic systems. This specifically means that areas where shared information is stored can only be accessed via username and password, and appropriate encryption measures are in place. Permission to access the information shared by Signatory Organisations will be granted on a strict 'need to know' basis once it is contained within the electronic system, and an audit trail will capture events which evidence successful and unsuccessful access to the system and individual records. The media being used should then be stored in a physical location that has a level of security appropriate to the level that the information held is graded to.
2.5.2 If information shared under this agreement is printed it must be kept in a locked container within a secure premise with a managed access control. If printed information must be moved from its usual secure location, which is in accordance with the level of security required by this agreement, then any move temporary or permanent, must provide the same level of security in storage as per the original location. When documents are not being used they will be stored securely.
2.5.3 Access to the information in both electronic and paper formats will be limited to relevant staff on a need to know basis. The security and maintenance of security measures and passwords will be the responsibility of the Data Protection Officer/Caldicott Guardian or relevant role within each Signatory Organisation. There will be a clear auditable access control system, detailing successful and unsuccessful attempts. The general public will have no access to either type of record.
2.5.4 All Signatory Organisations will have appropriate policies and procedures governing the retention and destruction of records containing personal information retained within their systems. These policies and procedures must be followed. Once the minimum retention
2.5.5 Electronic information will be disposed of by being weeded according to each agency's standard operating procedure in relation to their IT systems, being overwritten using an approved software utility or through the physical destruction of computer media.
2.5.6 Any paper reco...
Storage, Retention and Destruction of Information. 13.4.1 All Personal Information which you provide to the lessor will be held and/or stored securely. Personal Information may be stored electronically and as such may be accessible to the company’s within the Senwes Group. Where appropriate, some information may be retained in hard copy. In either event, storage will be secure.
13.4.2 Where data is stored electronically outside the borders of South Africa, such is done only in countries that have similar privacy laws or where such facilities are bound contractually to no lesser regulations than those imposed by the Act.
13.4.3 The lessor will ensure that all the systems and operations which it uses will at all times be of a minimum standard required by applicable laws and be of a standard no less than the standards which are in compliance with the Best Industry Practice for the protection, control and use of Personal Information.
13.4.4 The lessor will take appropriate and reasonable technical and organisational measures to prevent the loss of, damage to or unauthorised destruction of Personal Information as well as the unlawful access to or processing of Personal Information.
13.4.5 Once the Customer’s Personal Information is no longer required, such Personal Information will be safely and securely archived, as per the requirements of applicable legislation. Thereafter, the Personal Information may be permanently destroyed.
Storage, Retention and Destruction of Information. 4.1 All Personal Information which you provide to TALENT-CHECK CONSULTING (PTY) LTD will be held and/or stored securely and held for the purpose of recruitment or employment purposes.
4.2 Your Personal Information will be stored electronically in a secure online database.
4.3 No data will be stored electronically out of the borders of South Africa.
4.4 In the event your Personal Information is no longer required, due to the fact that you no longer need to place online adverts for the purpose of employment, at your written request such Personal Information will be removed from your TALENT-CHECK CONSULTING (PTY) LTD account database. Should you require TALENT-CHECK CONSULTING (PTY) LTD to keep your Personal Information for future online adverts for employment opportunities, your Personal Information will safely and securely be archived for a period of 7 (seven) years, as per the requirements of the Companies Act, 71 of 2008, or longer, should this be required by any other law applicable in South Africa. Thereafter, all your Personal Information will be permanently destroyed.
