dear valued flash App user
RE: NOTIFICATION in TERMS OF section 22 OF THE protection OF PERSONAL information ACT, 2013 (POPIA)
1 Introduction
Flash Mobile Vending (Pty) Ltd, a wholly owned subsidiary of Pepkor (Pty) Ltd, (Flash) takes data protection extremely seriously and is committed to protecting the personal information of data subjects. This letter serves to notify you, in terms of section 22 of POPIA, of a possible security compromise, and to supply you with info in relation to steps taken to date by wink to contain and rectify any possible negative consequences arising from the surety compromise.
2 background to the Incident
2.1 a compromise has taken place, and personal info limited to tangency details inclusive of e-mail address, ID numbers, secret words, account numbers and physical speech details have been exposed. Please read note that no banking or financial data has been compromised (the Incident). We have this affair very seriously, and the incident has been contained.
2.2 at present, we do not cognize the source or the identity of the unauthorised person that accessed the personal information.
3 Possible Consequences of the Incident
Your personal info may get been compromised due to this Incident and this could potentially take to further downstream consequences if left unintended (i.e. indistinguishability theft/fraud and social engineering/phishing attempts). We strongly urge you to read the following steps to safeguard your privacy:
3.1 monitor your transactional activity and report any suspicious activity.
3.2 change your passwords often and ensure there is complexity in the configuration (e.g. with the employment of special characters).
3.3 be vigilant for phishing attempts: be cautious of unsolicited emails, messages, or phone calls asking for personal info or financial details. Legitimate organisations will not asking this information via unsecure channels.
3.4 stick updated: Follow official announcements from flash and regulatory authorities for further instructions and guidance.
3.5 do not dawn on any suspicious links.
3.6 Only provide personal information when there is a legitimate understanding to make so.
4 Remediation measures implemented by Flash
4.1 As soon as we became aware of a possible POPIA incident, we embarked on mitigating theIncident as follows:
4.1.1 Investigated the extent of the Incident.
4.1.2 Ensured that the Incident has been contained.
4.1.3 will communicate in line with our regulatory requirements.
5 The entire extent of the Incident is still being investigated and our dedicated team has been working on identifying affected data subjects and providing prompt communication. We will also cooperate with regulatory authorities and implement enhanced security measures to mitigate such incidents in the future.
6 flashgun is continuing to use our best endeavours to protect personal information that it processes. We assure you that your privacy and the concealment of our employees and other data subjects are taken very seriously, and we will ensure that appropriate steps are beingness taken, and will continue to be taken, in order to protect personal information.