PRIVACY POLICY

Last Updated: 1 January 2026
Website: https://asandegroup.co.za
  1. Introduction
Asande Group of Companies (Registration Number: 2021/728658/07) is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information in compliance with the Protection of Personal Information Act 4 of 2013 (POPIA) and other applicable South African legislation.
By using our website or engaging our services, you consent to the collection and use of your personal information as described in this policy.
  1. Who We Are
Asande Group of Companies is a private company with limited liability, registered under the company laws of the Republic of South Africa.
Address: 75 George Storrar Drive, Cnr Engelenburg Street, Groenkloof, Pretoria, 0181 Telephone: 012 942 7900 Email: info@asandegroup.co.za Website: www.asandegroup.co.za
Our subsidiary companies include:
  • Asande Wealth Management (Pty) Ltd (FSP No: 50155)
  • Asande Fiduciary Services (Pty) Ltd
  • Asande Chartered Accountants (Pty) Ltd
  • Asande Consulting (Pty) Ltd
  • Asande Projects (Pty) Ltd
  1. Information We Collect
We collect personal information that is necessary to provide our financial advisory and related services.
Information You Provide Directly:
  • Full name, title, and contact details (email, telephone numbers)
  • Residential, business, and correspondence addresses
  • Identity number, passport number, or other identification documents
  • Date of birth, gender, and marital status
  • Financial information (income, assets, liabilities, bank details)
  • Tax reference numbers and employment details
  • Health status and lifestyle information (where relevant to insurance or retirement planning)
  • Details of your spouse, dependants, and beneficiaries
  • Correspondence records (emails, letters, call notes)
Information Collected Automatically:
  • Website usage data (IP address, browser type, pages visited, time spent)
  • Cookies and similar tracking technologies
  • Device information and location data (if you enable location services)
Information from Third Parties:
  • Credit bureaus and fraud prevention agencies
  • Regulatory bodies for identity verification (FICA, SARS)
  • Product suppliers and service providers involved in your portfolio
  • Public records or information you have made publicly available
  1. How We Use Your Personal Information
To Provide Our Services:
  • To assess your financial needs and provide tailored advice
  • To administer your investments, insurance policies, or retirement funds
  • To process transactions and maintain your account records
  • To communicate with you regarding your portfolio, statements, or service updates
  • To verify your instructions and prevent unauthorised transactions
To Comply with Legal Obligations:
  • To verify your identity under the Financial Intelligence Centre Act (FICA)
  • To conduct anti-money laundering and counter-terrorist financing checks
  • To comply with tax reporting obligations (SARS, FATCA, CRS)
  • To meet regulatory requirements under the FAIS Act, Long-Term Insurance Act, and other applicable legislation
  • To respond to lawful requests from courts, regulators, or law enforcement agencies
For Our Legitimate Interests:
  • To improve our services, website functionality, and client experience
  • To conduct internal audits, risk management, and business planning
  • To protect against fraud, cyber threats, and unauthorised access
  • To train our staff and maintain professional standards
  • To communicate important updates about our policies or services
With Your Consent:
  • To send you marketing communications about our products and services (you may opt out at any time)
  • To share your information with third parties where you have expressly authorised us to do so
  • To use sensitive personal information (e.g., health data) for insurance underwriting
  1. Sharing Your Personal Information
We do not sell, rent, or trade your personal information. We may share your information with:
Group Companies: To provide integrated services across the Asande Group
Product Suppliers: To administer insurance policies, investment funds, or retirement products
Service Providers: IT support, cloud storage, document management, payment processing
Professional Advisors: Auditors, lawyers, compliance consultants
Regulatory Authorities: FSCA, SARS, Information Regulator, FAIS Ombud (where legally required)
Fraud Prevention Agencies: To verify identity and prevent financial crime
All third parties are contractually obligated to protect your information and use it only for the purposes we specify.
  1. International Data Transfers
Where necessary to administer offshore investments or use international cloud services, your personal information may be transferred outside South Africa. We ensure that:
  • The recipient country has adequate data protection laws, OR
  • We have implemented appropriate safeguards (e.g., standard contractual clauses), OR
  • You have given explicit consent for the transfer
  1. Data Retention
We retain your personal information for as long as you are a client, and thereafter:
  • Minimum 5 years after termination of our relationship, to comply with FICA, FAIS, and tax legislation
  • Longer periods where required by law (e.g., litigation, regulatory investigations)
  • Indefinitely in anonymised form for statistical or research purposes
When information is no longer needed, we securely delete or destroy it in accordance with POPIA.
  1. Your Rights Under POPIA
You have the following rights regarding your personal information:
  • Right to Access: Request a copy of the personal information we hold about you
  • Right to Correction: Request correction of inaccurate or incomplete information
  • Right to Deletion: Request deletion of your information where no longer necessary or where consent is withdrawn
  • Right to Restriction: Request limitation of processing in certain circumstances
  • Right to Object: Object to processing based on legitimate interests or for direct marketing
  • Right to Data Portability: Receive your information in a structured, machine-readable format
  • Right to Withdraw Consent: Withdraw consent at any time (without affecting prior lawful processing)
  • Right to Complain: Lodge a complaint with the Information Regulator
To exercise any of these rights, contact our Information Officer using the details in Section 10. We will respond within 30 days as required by law.
  1. Security Measures
We implement appropriate technical and organisational measures to protect your information against unauthorised access, loss, or damage, including:
  • Encryption of data in transit and at rest
  • Firewall protection and intrusion detection systems
  • Regular security assessments and staff training
  • Physical security controls for paper records
  • Access controls and authentication protocols
  • Secure backup and disaster recovery procedures
While we strive to protect your information, no method of electronic transmission or storage is 100% secure. You are responsible for keeping your login credentials confidential.
  1. Contact Us
For any questions about this Privacy Policy or to exercise your rights, please contact:
Information Officer: Sheila Maluleka Email: info@asandegroup.co.za or sheila@asandegroup.co.za Telephone: 012 942 7900 Postal Address: 75 George Storrar Drive, Groenkloof, Pretoria, 0181
If you are not satisfied with our response, you may lodge a complaint with the Information Regulator:
Information Regulator (South Africa) SALU Building, 316 Thabo Sehume Street, Pretoria, 0001 Email: inforeg@justice.gov.za Telephone: 012 406 4818 Website: www.justice.gov.za/inforeg
  1. Changes to This Policy
We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. The latest version will always be available at www.asandegroup.co.za/privacy-policy. We will notify you of material changes via email or website notice where reasonably practicable.
This Privacy Policy is issued by Asande Group of Companies and applies to all subsidiaries listed in Section 2.