Privacy Statement

Processing of Personal Information in South Africa

For the purposes of processing your Personal Information in South Africa, we will follow the Data Privacy Principles and Regulations of the Protection of Personal Information Act (‘POPIA’) and the Promotion of Access to Information Act (‘PAIA’). Please note that the following provisions will apply to you if you are a Data Subject (resident or citizen) in South Africa, in addition to Infosys Global Privacy Statement.

Cross Border Transfer of Data

In general, Infosys Limited, domiciled in Bangalore, is the data controller processing your Personal Information. We may transfer your personal data outside South Africa to third parties including countries where the data protection legislation may differ from that of South Africa.

As per the obligation called out under the Data Protection law in South Africa, when we transfer your personal information to Infosys group companies and service providers outside South Africa, Infosys as the transferring organization ‎will remain accountable for the protection of your personal information and ensuring ‎compliance with the applicable legislation, using contractual or other means to provide substantially a similar level of protection while the personal data is being processed by the third party. Additionally, we shall also take all the necessary steps to ensure confidentiality and security of the transferred data.

Your Data Subject Rights in South Africa

As a Data Subject located in South Africa, you are entitled to the following rights:

If you are a resident of South Africa and you wish to exercise your data subject rights as called out above, please refer to section on exercising ‘Your Rights’ in the Infosys Global Privacy Statement.