Introduction

Our privacy notice gets updated from time to time. Whenever we make a change, we’ll post this on our website and let you know if there is a material change. For more information or any updates, please visit our privacy policy here.

This privacy policy explains how we collect, use, share and protect your personal information when you use our website. 

It is important to note that when you engage with us, you acknowledge that we require your personal information, as defined in the Protection of Personal Information Act ("PoPIA") and other related regulations and need to process such personal information to provide services to you for purposes including to confirm, update and enhance our records, to confirm your identity and additional purposes as detailed below and in other supplementary privacy policies and statements linked to specific services that you subscribe to. The provision of your personal information in terms of this policy is mandatory, and you will not be able to continue using our services should you object to providing us with such information. 

Who Are We

Telesensi(TM) is a product of Stone Three.Health (Pty) Ltd (hereinafter referred to as "Stone Three"). 

Our registered office is:

Head Office (South Africa), 24 Gardner Williams Avenue, Paardevlei, Somerset West, 7130, Western Cape, South Africa.

We are registered in the Republic of South Africa under Registration Number - 2025/481441/07.

How To Contact Us

Your opinion matters to us - if you have any questions about our privacy policy or your privacy settings, please submit your query to info@telesensi.com and our Data Protection Officer will respond to you.

Our Principles

We are committed to respecting your privacy. We take privacy, security, and compliance with data protection laws seriously. Our approach is guided by internationally recognized standards and regulations, including the General Data Protection Regulation (GDPR), South Africa’s Protection of Personal Information Act (POPIA), ISO/IEC 27001:2022 and ISO/IEC 27701:2019.

These frameworks inform the following core Privacy Commitments, which we integrate into every aspect of our operations:

1. Lawfulness, Fairness, and Transparency
   We process personal data in a lawful, fair, and transparent manner. We inform individuals about the purposes for which their data is collected, how it will be used, and their rights under applicable laws.

2. Purpose Limitation
   We collect and process personal data only for specified, explicit, and legitimate purposes and do not process it further in a way that is incompatible with those purposes.

3. Data Minimization
   We ensure that the data we collect is adequate, relevant, and limited to what is necessary in relation to the purposes for which it is processed.

4. Accuracy
   We take reasonable steps to ensure that personal data is accurate and, where necessary, kept up to date. Inaccurate data is corrected or deleted without delay.

5. Storage Limitation
   We do not retain personal data for longer than necessary for the purposes for which it was collected, in line with legal, contractual, and operational obligations.

6. Integrity and Confidentiality (Security)
   We protect personal data with appropriate technical and organizational security measures, to prevent unauthorized access, loss, destruction, or damage.

7. Accountability
   We are accountable for our compliance with these principles and maintain documentation and controls that demonstrate our commitment to privacy.

8. Data Subject Rights
   We uphold the rights of individuals, including the rights to access, rectify, delete, restrict processing, object, and data portability, in accordance with applicable legal and regulatory requirements and contractual obligations.

9. International Transfers
   We ensure appropriate contractual safeguards are in place, especially for cross-border data transfers, as required by legal and regulatory requirements.

Personal Information We Collect About You

Directly from you

The information we collect about you and how we collect it can vary depending on how you have interacted with Stone Three even if you aren’t a customer.

We will collect your Personal Information when you, for example:

• Contact us through various channels for support or ask for information about  products or services;

• Visit or browse our websites;

• Visit our business premises.

We are required to take all reasonably practicable steps to ensure your Personal Information is complete, accurate, not misleading and updated on a regular basis. To ensure this, we will always endeavour to obtain Personal Information from you directly.

How We Use Your Personal Information And Our Lawful Basis To Do So

We will use your Personal Information for a number of purposes ranging from enabling us to provide you with the products or services you have requested to ensure we are keeping these secure from fraud.

Whenever we use your Personal Information, we do so based on a specific lawful basis under data protection law listed below:

• Stone Three’s legitimate business interests for example, the improvement of our services. Whenever we rely on this lawful basis to process your Personal Information, we assess our legitimate interest to make sure they do not override your rights. Additionally, in some cases you have the right to object to this processing. For more information, visit the “Your rights” section of this policy.

• Protecting your legitimate interests – for example, providing notification of emergency services. For more information, visit the 'Your rights' section of this policy.

• Consent you provide where Stone Three does not rely on another legal basis (referred to above). Consent may be withdrawn at any time. When you give your consent, you will be given details on how to change your mind or visit the “Your rights” section of this policy for more information.

Below you can find an overview of the categories of Personal Information (not an exhaustive list) we process about you, the purposes for which we process that Personal Information and the lawful basis upon which we rely to conduct that processing.

How is your information used?

What data is used?

Lawful basis

Providing you with a service.

To process the services you've requested from us. 

Basic Personal Information

Contact details

Industry / Position (Optional)

Legitimate business interest

Legitimate interest of data subject

Consent

Third parties that we work with

We are not in the business of selling your data, we only share with suppliers who help us to provide services.

If we have a contract with a service provider or contractor to provide us with services or provide a service on our behalf, they may have access to your Personal Information. We don’t authorise them to use or disclose your Personal Information received from us except in connection with providing their services.

How we share your personal information

Where applicable, we share information about you with:

• Partners, suppliers, or agents involved in delivering the services you’ve requested;

• Companies who are engaged to perform services for, or on behalf of Stone Three.

International data transfers

Stone Three does not transfer your personal information outside the borders of South Africa. All processing of personal data takes place within South Africa, and we ensure that our systems, infrastructure, and service providers involved in handling personal information are located within the country.

Should the need arise in the future to transfer information internationally, we will ensure that any such transfers comply fully with applicable data protection laws, including POPIA, GDPR, ISO/IEC 27001:2022 and ISO/IEC 27701:2019. This includes verifying that the recipient is subject to appropriate legal safeguards and offers an adequate level of data protection.

How long do we keep your personal information for

We may not retain your Personal Information any longer than is necessary for achieving the purpose for which your Personal Information was collected or subsequently processed, unless:

• The retention of your Personal Information is required or authorised by law;

• We reasonably require your Personal Information for lawful purpose related to our function or activities;

• The retention of your Personal Information is required by a contract that we enter into with you; or

Keeping your personal information secure

We have specialised security teams who constantly review, improve, and ensure the implementation of appropriate, reasonable technical and organisational measures to protect your Personal Information from unauthorised access, accidental loss, disclosure, or destruction.  We are required in terms of POPIA to notify you and the Information Regulator, if any of your Personal Information has been compromised.

We cannot accept responsibility for any unauthorised access or loss of Personal Information that is beyond our control.

We’ll never ask for your secure personal or account information by an unsolicited means of communication. You’re responsible for keeping your personal and account information secure and not sharing it with others.

Our website may provide links to third-party websites. We cannot be responsible for the security and content of such third-party websites. You are therefore required to make sure you read that company’s privacy and cookies policies before using or putting your Personal Information on their site.

The same applies to any third-party websites or content you connect to using our products and services.

Despite the security measures we have in place to protect your Personal Information, (firewalls, password access and encryption methods) you acknowledge that it may be accessed by an unauthorised third party, e.g., as a result of an illegal activity.

In the unlikely event of such access, we will notify you, where possible, via email, SMS or using the information you have provided us with, within a reasonable time of us becoming aware of such occurrence.

Your rights

Below we set out details on how you can exercise your rights. If you have a question or cannot find the answer, please contact our Data Protection Officer at info@telesensi.com.

Right to access Personal Information

You have the right to request a record or description of the Personal Information that Stone Three holds about you. This includes the right to request Stone Three to confirm, free of charge, whether or not we hold any Personal Information about you; as well as information about the categories of third parties who have, or have had, access to your Personal Information. 

To make this request as an individual or an authorised third party, download and complete the prescribed form - [InfoReg SA PAIA Form 2 Request for access to PII] - and email to info@telesensi.com

Right to correct Personal Information

You have the right to correct information held about you if it’s not accurate, out-of-date, excessive, irrelevant, or misleading. 

If the information we hold about you can download and complete the prescribed form - [InfoReg SA POPI Form 2 Request for Correction or Deletion of PII] - and email to info@telesensi.com

Right to object to use of Personal Information

You have the right, in certain circumstances, to object to Stone Three’s processing your Personal Information. In order for Stone Three to provide you with products and services, Stone Three is required to process your Personal Information and as such the provision of your Personal Information is mandatory and you may not object to same in order to continue using our products or services. 

For more information or to exercise this right, please download and complete the prescribed form - [InfoReg SA POPI Form 1 Objection to the processing of PII] - and email to info@telesensi.com

Right to restrict use of your Personal Information

If you feel that the Personal Information we hold on you is inaccurate, or you believe we shouldn’t be processing your Personal Information, please contact info@telesensi.com to discuss your rights. In certain circumstances, for example where you contest the accuracy of your information, or where Stone Three no longer requires your information for achieving its purpose but must maintain it for purposes of proof, you have the right to ask us to restrict processing.

Right to deletion

Stone Three strives to only process and retain your Personal Information for as long as we need to. In certain circumstances, for example, where you indicate that your Personal Information is inaccurate, irrelevant, excessive, out of date, incomplete, misleading, or obtained unlawfully, you have the right to request that we erase your Personal Information that we hold. If you feel that we are retaining your Personal Information longer than we need, it is worth first checking that your contract with Stone Three has been terminated. If your contract with Stone Three has been terminated, we may still have lawful grounds to process your Personal Information.

How to lodge a complaint

If you want to contact us about any of your rights or should you believe that Stone Three has used your Personal Information contrary to applicable law, you undertake to first attempt to resolve any concerns with Stone Three directly. Kindly contact our Data Protection Officer on info@telesensi.com. We will do our best to help but if you not satisfied with such process, you have the right to lodge a complaint with the Information Regulator at:

The Information Regulator (South Africa)

JD House

27 Stiemens Street

Braamfontein

Johannesburg

2001

Email: inforeg@justice.gov.za

Complaints emails: 

• PAIA Complaints - PAIAComplaints@inforegulator.org.za

• POPIA Complaints - POPIAComplaints@inforegulator.org.za

Notification of changes to Privacy Policy

We are continually improving our methods of communication and adding new functionality and features to this Website and to our existing products and services. Because of these ongoing changes, changes in the law and the changing nature of technology, our data protection practices will change from time to time.  If and when our data protection practices change, we will update this privacy notice to describe our new practices.  We encourage you to check this page regularly.