Privacy Policy

Data Privacy Policy

In Accordance with the Protection of Personal Information Act No 4 of 2013 (POPIA)

1. Introduction

This Data Privacy Policy outlines how Clause and Counsel Legal Consultants (“the Firm”) collects, uses, stores, shares, and protects personal information in line with the Protection of Personal Information Act (POPIA), Act 4 of 2013, of South Africa. We are committed to safeguarding the privacy and confidentiality of all personal information entrusted to us by clients, employees, suppliers, and other stakeholders.

2. Definitions

  • Personal Information: Information relating to an identifiable, living, natural person, and where applicable, an identifiable, existing juristic person.
  • Data Subject: The person to whom personal information relates.
  • Responsible Party: Clause and Counsel, which determines the purpose and means for processing personal information.
  • Processing: Any operation or activity concerning personal information, including but not limited to collection, storage, use, dissemination, and destruction.

3. Collection of Personal Information

The Firm collects personal information directly from clients, employees, suppliers, and third parties where necessary. This may include, but is not limited to, names, contact details, identification numbers, financial information, and any other information necessary to provide legal services or fulfil contractual obligations.

4. Purpose for Collection

Personal information is collected and processed for the following purposes:

  • Providing legal advice and services to clients
  • Fulfilling contractual and statutory obligations
  • Managing client and supplier relationships
  • Recruitment and human resource management
  • Billing, accounting, and administrative purposes
  • Compliance with legal and regulatory requirements
  • Communication with data subjects

5. Processing of Personal Information

The Firm will process personal information lawfully and in a reasonable manner that does not infringe the privacy of the data subject. Information will only be processed if:

  • The data subject consents to the processing
  • Processing is necessary for the conclusion or performance of a contract
  • Processing is required by law
  • Processing protects a legitimate interest of the data subject or responsible party

6. Security Measures

The Firm implements appropriate, reasonable technical and organisational measures to protect personal information against loss, unauthorised access, disclosure, alteration, or destruction. These measures include, but are not limited to, secure storage, password protection, encryption, and access restrictions.

7. Sharing and Disclosure

Personal information may be shared with third parties only when necessary, such as with regulators, service providers, or as required by law. The Firm ensures that all third parties respect the confidentiality and security of personal information and comply with POPIA requirements.

8. Retention of Personal Information

Personal information will not be retained longer than necessary for the purposes for which it was collected, or as required by applicable laws and regulations. Once information is no longer required, it will be securely destroyed or de-identified.

9. Rights of Data Subjects

Data subjects have the right to:

  • Request access to their personal information
  • Request correction or deletion of their personal information
  • Object to the processing of their personal information
  • Withdraw consent at any time (where processing is based on consent)
  • Lodge a complaint with the Information Regulator

10. Cross-Border Transfers

Where personal information is transferred outside South Africa, the Firm ensures that adequate protection is in place as required by POPIA, and that the receiving party is subject to laws, binding corporate rules, or agreements providing an adequate level of protection.

11. Policy Updates

This Data Privacy Policy may be updated from time to time to reflect changes in law or our business practices. The latest version will be available on our website or upon request.

12. Contact Information

For any queries regarding this policy or to exercise your rights as a data subject, please contact:

Data Protection Officer: Jared Moodley

Clause and Counsel Legal Consultants

081 458 0142

Date of last update: 12 January 2026