Privacy Notice for Shorrock Automation CC

Guide to contents:

  1. Introduction
  2. What is personal information
  3. Where and when do we collect personal information
  4. Information we collect from others
  5. When will we process your personal information
  6. When will we process your special personal information
  7. What information do we collect, and how do we use your information
  8. How we share your information
  9. Your rights and obligations
  10. Changes to our policy
  11. Other important information
  12. Contact Information


1. Introduction:

In this document, references to Shorrock Automation CC “we”, “us”, or “the Group” are to Shorrock Automation CC and its subsidiary companies.

Shorrock Automation CC recognises its accountability in terms of the Protection of Personal Information Act (hereinafter referred to as POPIA), other privacy protection legislation, together with its regulations to all its clients, suppliers, service providers and other third parties.  Shorrock Automation CC needs to collect personal information from its clients, suppliers, service providers and other third parties to carry out its business.

To maintain a trust relationship with our Stakeholders, we are committed to complying with both the spirit and the letter of POPIA, other privacy protection legislation, and to always act with due skill, care, and diligence when dealing with personal information. 


2. What is personal information:

Personal Information according to POPIA, means information relating to an identifiable, living, natural person, and where it is applicable, an identifiable, existing juristic person, including, but not limited to –

  1. Information relating to the race, gender, sex, pregnancy, marital status, national, ethnic or social origin, colour, sexual orientation, age, physical or mental health, well-being, disability, religion, conscience, belief, culture, language, and birth of the person;
  2. Information relating to the education or the medical, financial, criminal, or employment history of the person;
  3. Any identifying number, symbol, e-mail address, telephone number, location information, online identifier, or other particular assignment to the person;
  4. The biometric information of the person;
  5. The personal opinions, views, or preferences of the person;
  6. Correspondence sent by the person that would reveal the contents of the original correspondence;
  7. The views or opinions of another individual about the person; and
  8. The name of the person if it appears with other personal information relating to the person or if the disclosure of the name itself would reveal information about the person.


3. Where and when do we collect personal information:

Information you provide to us:

  • Clients
    • Directly from you;
    • Based on your use of our products, services;
    • Based on how you engage or interact with us, such as on social media, and through e-mails, letters, telephone calls, and surveys;
    • Use of our website;
    • From third parties affiliated with our services;
    • From entities within our group
  • Suppliers
    • Invoices;
    • Contracts;
    • Credit Applications


4. Information we collect from others:

Service Use:

We log your visits and use of our services, including mobile applications. We use logins, cookies, device information and internet protocol (IP) addresses to identify you and log your use.

Cookies, Web Beacons and Other Similar Technologies:

We collect data through cookies and similar technologies. We use cookies and similar technologies to recognise you and / or your device(s) on, off and across different Services and devices. You can control cookies through your browser settings and other tools. You can also opt-out from our use of cookies and similar technologies that track your behaviour on the sites of others for third party advertising.


Cookies are small files that are saved onto your computer which track, save and store information about how you use our website and Services. In some instances, these cookies are needed for the website to function – you can disable them in your browser, but this may interfere with the proper functioning of our website.

We use the following cookies:

Session / Period cookies: They allow website owners to collect analytics data, remember language settings, and perform other useful functions that help provide a good user experience. These cookies expire when the browser is closed.

Permanent / Persistent cookies: Same as above, however, these remain in operation, even when you have closed the browser. They remember your login details and password, so you don’t have to type them in every time you use the site. These cookies have a pre-determined expiry date and will appear until the expiry date is reached.

Third-party cookies: are created by domains other than the one you are visiting directly, hence the name third-party. These are installed by third parties with the aim of collecting certain information to carry out various research into behaviour, demographics etc, such as advertisers.

Google analytics: This is tracking software from Google which we use to monitor how users interact with the website in order for us to improve its functionality and content.

Web-server software: Web-Server software delivers webpages to your browser. The web-server software will automatically collect your IP address whenever you connect to the website.

Your Device and Location:

We receive data from your devices and networks, including location data. When you visit or leave our Services (including our plugins or cookies or similar technology on the sites of others), we receive the URL of both the site you came from and the one you go to next. We also get information about your IP address, proxy server, operating system, web browser and add-ons, device identifier and features, and / or ISP or your mobile carrier. If you use our Services from a mobile device, that device will send us data about your location based on your phone settings. We will ask you to opt-in before we use GPS or other tools to identify your precise location.


We are improving our service, which means we get new data and create new ways to use data. Our services are dynamic, and we often introduce new features, which may require the collection or sharing of new or existing information. If we collect materially different personal data or materially change how we use your data, we will notify you and may also modify this privacy notice.


It is in our legitimate interests to service our clients to the best of our abilities.

If you fail to provide personal data when requested, which is necessary for us to consider your request, we may not be able to process your request in order for a Shorrock Automation CC representative to get back to you or for Shorrock Automation CC to render the requested service.

Some of the personal information that is collected automatically is collected by third parties whose technology we use to provide website functionality and acquire website analytics information. Some of these third parties will be outside of the borders of South-Africa and your information will be stored outside the borders of South Africa.


5. When will we process your personal information:

We will only process your personal information for lawful purposes relating to our business if the following circumstances apply:

  • You have consented thereto;
  • a person legally authorised by you, or a court, has consented thereto;
  • It is necessary to conclude or perform under a contract we have with you;
  • The law requires or permits it;
  • It is required to protect or pursue your, our, or a third party’s legitimate interest; and/or
  • You are a child, and a competent person (such as a parent or guardian) has consented thereto on your behalf.


6. When will we process your special personal information:

Special personal information refers to the following categories of information:

  • Religious and philosophical beliefs;
  • Race;
  • Ethnic origin;
  • Trade union membership;
  • Political beliefs;
  • Health including physical or mental health, disability, and medical history;
  • Biometric information;
  • Criminal behaviour where it relates to the alleged commission of any offence or the proceedings relating to that offence.

We will process special personal information in the following instances:

  • You have consented to the processing (in circumstances where we are legally obliged to obtain your consent); or
  • It is necessary to exercise or defend a right or obligation in law; or
  • It is necessary to comply with an international legal obligation of public interest; or
  • It is for certain historical, research, or statistical purposes that would not adversely affect your privacy; or
  • You have deliberately made your personal information public.


7. What information do we collect, and how do we use your information:

Kindly note that the following list is not comprehensive.  It sets out the main purposes and data elements collected by Shorrock Automation CC:

Clients / Customers:


Data elements:

· Invoicing;

· Debit Orders;

· Service Delivery;

· To contact you;

· Financial checks

· Audit & record keeping

·         Company Registration numbers;

·         VAT numbers;

·         Business Name, t/a name;

·         Banking details;

·         Title;

·         Name;

·         Surname;

·         Id numbers;

·         Physical addresses;

·         Postal Addresses;

·         Province;

·         Contact numbers;

  • Email addresses;
  • Business Sector

Service Providers / Suppliers


Data elements:

· Purchase orders

· To contact you;

· Audit & record keeping;

· Service delivery

·         Name;

·         Bank Details;

·         Contact Numbers;

·         Address;

  • Physical address;
  • Vat numbers;
  • Company Registration numbers


8. How we share your information:

Third-Party Service Providers:

  • Regulatory bodies
  • Law enforcement agents
  • Government agencies
  • The Credit Bureau.
  • Debt Collection Agents
  • Social media platforms

Legal Disclosures:

We may need to share your information when we believe it is required by law, legal process or to help protect the rights and safety of you, us, or others. We attempt to notify members about legal demands for their data when appropriate in our judgment unless prohibited by law or court order or when the request is an emergency. We may dispute such demands when we believe, at our discretion, that the requests are overbroad, vague, or lack proper authority, but we do not promise to challenge every demand.


9. Your rights and obligations:

Data Retention:

We keep most of your personal information while we still have a purpose, we need to provide you with services or where we are legally obligated to do so.

We will also keep your information where you have agreed for us to do so, or have given your consent that we are allowed to do so.

We keep some of your information even after our business relationship has terminated, if it is reasonably necessary to comply with our legal obligations, meet regulatory requirements, resolve disputes, maintain security, prevent fraud and abuse, enforce our other user agreements, or fulfil your request to object to our processing of your information.

You have rights in connection with your personal information. You have many choices about how your information is collected, used, and shared.

In certain circumstances, by law, you have the right to:

  • Request access to your information: You will be able to ask us what information we have about you as well as ask for a copy of this information. This should be done on request to There are some exemptions, which means you may not always receive all the information we process. When we can give you a copy it might be done at a certain fee, which will also be communicated to you at the time of your query.
  • Change or correct information: You have the right to ask us to rectify information you think is inaccurate. You also have the right to ask us to complete information you think is incomplete.
  • Delete information: You can ask us to delete or remove personal information under certain circumstances.
  • Object to processing: You can do this where we are relying on your legitimate interest, public interest, or our legitimate interest (or those of a third party) and there is something about your particular situation which makes you want to object to processing on this ground. You also have the right to object where we are processing your data for direct marketing purposes or where you have given your consent for the specific processing and you want to retract your consent. Retracting your consent does not invalidate the information we lawfully processed while we had your consent to do so.
  • Request the restriction of processing: You can ask us to suspend the processing of personal data about you, for example, if you want us to establish its accuracy or the reason for processing it.


10. Changes to our privacy notice:

Changes to the privacy notice apply to your use of our services. We may modify this privacy notice from time to time, as required by changes in legislation. When material changes are made, we will provide notice through our services, or by other means, to provide you the opportunity to review the changes before they become effective.

You acknowledge that your continued use of our services after we publish our changes to this privacy notice means that the collection, use, and sharing of your personal information is subject to the updated privacy notice.


11. Other important information:


We have put in place appropriate security measures to prevent your data from being accidentally lost, used, or accessed in an unauthorised way, altered, or disclosed. In addition, we limit access to your personal information on a business need-to-know basis, and subject to a duty of confidentiality.

Transborder information transfers:

The transfer of your personal information across South African borders is necessary in terms of our business scope and services. In the event of transferring your personal information cross border, we ensure that we take the necessary steps to ensure that the processing of personal information is done in accordance with the laws of the jurisdiction the information is transferred to. Further, that binding corporate rules or binding agreements are in place that provide for adequate levels of protection in accordance with the protection measures of POPIA.

We transfer information to the following countries:

  • Germany
  • Belgium
  • The United Kingdom

Kindly take note that these countries have an adequate level of protection as afforded by the GDPR (General Data Protection Regulation.)


12. Contact Information:

Should you have a query please send an email to:

Our Information Officer:

Christiaan Cronje


The Information Regulator:

You have the right to lodge a complaint with the South African Information Regulator. See the Information Regulator contact details below.

JD House, 27 Siemens Street, Braamfontein, Johannesburg, 2001

P.O Box 31533, Braamfontein, Johannesburg, 2017

Complaints email:

General inquiries email:

Tel: +27 (0)12 450 0300 | E-mail: