Facility Access & Security Privacy Notice
1. Introduction
Zwavelstream Clinic is committed to maintaining a secure, safe, and strictly confidential environment for all our patients, staff, and visitors. To achieve this, we implement strict access control measures at our perimeter. This notice explains how we collect, process, and protect your personal information when you enter our facility, in full compliance with the Protection of Personal Information Act (POPIA).
2. Who This Applies To
This policy applies to every individual and vehicle entering the Zwavelstream Clinic premises. This includes, but is not limited to:
- Visitors and family members
- Out-patients attending appointments
- Individuals arriving for in-patient admission
- External contractors and service providers
- Delivery personnel
- Staff members
3. What Information We Collect
Upon entry to our facility, our security personnel and electronic systems may collect the following information:
- Full names and identification numbers (via driver’s license or ID card scanning)
- Vehicle registration numbers and make/model
- Time of entry and exit
- Visual records via Closed-Circuit Television (CCTV) cameras operating at the gates and across the exterior premises.
4. Purpose of Data Collection
We collect this information strictly for the following lawful purposes:
- Security & Access Control: To monitor who is on the premises at any given time and to prevent unauthorized access.
- Safety: To protect our vulnerable patients, our staff, and our property.
- Incident Investigation: To assist in the investigation of any security breaches, accidents, or criminal activities.
5. Strict Confidentiality & Psychiatric Care Context
We understand the highly sensitive nature of seeking psychiatric care. The fact that any individual—whether a patient or a visitor—is present at Zwavelstream Clinic is treated with the utmost confidentiality. Access logs, scanning data, and CCTV footage are heavily restricted and are never shared with the public, marketers, or unauthorized third parties.
6. Third-Party Security Operators
Our physical access control and gate security may be managed by an appointed third-party security service provider. Under POPIA, this provider acts as an “Operator” on our behalf. They are bound by strict, legally enforceable confidentiality agreements and are prohibited from using your data for any reason other than securing this facility.
7. Data Retention
Personal data collected at the entry points is not kept indefinitely. Access logs and CCTV footage are retained for a standard security period (typically 30 to 60 days) and are subsequently destroyed or overwritten securely, unless a specific record is required for an ongoing internal or criminal investigation.
8. Your Rights
Under POPIA, you have the right to request access to the personal information we hold about you, or request its deletion, subject to our legal and security obligations. For any queries regarding this notice or your personal data, please contact our Information Officer at [Insert Email Address] or call the clinic reception.