Privacy Policy

We wish to inform you about the processing of your Personal Information by the Wooltru Healthcare Fund, a Medical Scheme registered in terms of the Medical Schemes Act, under registration number 1293, having its principal place of business at Parc du Cap, 6 Mispel Road, Bellville, 7530, and your rights under the Protection of Personal Information Act. The Fund’s Administrator, Momentum Health, is a subsidiary of Momentum Metropolitan Group.

This Privacy Policy governs the manner in which Wooltru Healthcare Fund and the Administrator (‘we’, ‘our’, ‘us’) treats your personal information collected electronically when you use our website (www.wooltruhealthcarefund.co.za) to apply online for services, or collected from your application form when you join the Fund.

We respect your privacy and your personal information, and for this reason, we will take all reasonable measures, in accordance with this Policy, to protect your personal information to keep it confidential, even when you are no longer our client.

We will maintain the confidentiality of your personal information and comply with the Protection of Personal Information Act 4 of 2013 (POPIA) when processing your personal information. This Policy is in line with the above mentioned Act.

We briefly outline these principles below:

  • We will only collect, disclose, collate, process and store ('use') your personal information with your express written permission, unless legally required to do so, and will only use such information for the lawful purpose for which it is required.
  • We will disclose in writing the specific purpose for which we use, request and store your personal information. We will also keep a record of that personal information and the specific purpose for which we collect it.
1. Information Disclosure
1.1 What is personal information?

Personal information refers to any information that identifies you or specifically relates to you. It includes, but is not limited to:

  • Your marital status, national origin, age, language, birth, education.
  • Your financial information, such as income, banking behaviour, or financial history.
  • Your identifying numbers (account number, ID, or passport number).
  • Contact details: email, phone numbers, physical addresses.
  • Online identifiers such as social media profiles.
  • Biometric data (fingerprints, facial recognition, signature, or voice).
  • Race, gender, health, religion, culture, medical history, employment history.
  • Opinions, preferences, confidential correspondence, and third-party views about you.
1.2 What is special personal information?

Special personal information includes details about your religious, philosophical, political beliefs, race, ethnic origin, union membership, health, biometrics, or criminal behaviour.

1.3 How does Wooltru Healthcare Fund collect personal information?

We collect information directly from you, from employers, intermediaries, and sometimes third parties acting on our behalf. If not collected from you, we will disclose the source.

1.4 What type of personal information do we collect?

We collect details such as name, contact, ID, gender, employment details, marital status, family details, financial, medical, health information, and online identifiers.

1.5 When will we process your personal information?

We will process your information when:

  • You or an authorised person consents.
  • It is required by law or a court.
  • It is necessary for a contract with you.
  • It protects legitimate interests.
  • You are a child and a competent guardian consents.
1.6 When will we process your special personal information?

We may process your special personal information if required by law, with consent, for research, if made public by you, or if necessary for insurance purposes.

1.7 Reasons for processing your personal information

We process your personal information for purposes including payment processing, insurance underwriting, fraud prevention, compliance with law, account management, identity verification, customer satisfaction, marketing, and delivery of goods and services.

1.8 Processing Information of a child

We protect children’s privacy and only process their information with guardian consent or as legally required (e.g., for trusts, wills, insurance policies, or bank accounts).

1.9 Obtaining personal information about clients

We collect information from you directly, through your use of our services, interactions, public sources, and authorised third parties such as employers, service providers, insurers, regulators, law enforcement, and affiliates.

1.10 Processing Information about Persons Related to a Juristic Person

If you are a juristic person, we may process related persons’ information (directors, officers, shareholders, etc.). You warrant their consent if you provide their information to us.

1.11 Direct Electronic Marketing

We may use your information for marketing purposes with your consent. You may opt out at any time.

2. Cookie Policy

Cookies are small files stored on your device to enhance your website experience. We use session and persistent cookies for analytics, security, and session management. You may disable cookies, but this may limit functionality.

3. Location Services

We use location services for specific products, with your prior consent.

4. Confidentiality and Security
4.1 Routine Precautions

We have physical, technological, and procedural safeguards in place to protect your information, including sensitive data such as health, banking, and policy information.

5. Your Personal Information
5.1 Securing personal information

We take technical and organisational precautions to secure your data.

5.2 Reviewing and correcting information

You may request to review, update, or delete your information unless retention is legally required.

5.3 Managing Data Privacy at Momentum Metropolitan

The Momentum Metropolitan Board oversees privacy and cybersecurity risks through its committees and officers.

5.4 Employee Training

Employees receive ongoing mandatory training in POPIA compliance, cybersecurity, and data privacy.

5.5 Centralised Security Functions

Dedicated IT Security and Data Management functions coordinate to address cyber and data security across the Group.

5.6 Cookies

We use cookies to personalise your website experience.

5.7 Third Parties

We are not responsible for third-party privacy policies. You should review them directly.

5.8 Sharing your Information

We do not sell or rent your information but may share it with selected service providers, regulators, or affiliates with your consent.

5.9 Cross Border Sharing

Your data may be transferred internationally with safeguards in place as required by law.

6. Changes to Privacy Policy

We may amend this policy from time to time. Please review it regularly. South African law governs this policy.

7. Get in Touch

Information Officer: Francois de Wit
Email: [email protected]
Address: Parc du Cap 6, Mispel Road, Bellville 7530

PAIA Information Officer (Momentum Health): Douw Lotter
Email: [email protected]

POPIA Information Officer (Momentum Metropolitan): Jeanine Norden
Email: [email protected]

General Contact: Momentum Metropolitan
Tel: +27 (0) 12 065 0445
URL: www.momentummetropolitan.co.za

8. Complaints

If you believe your personal information has been misused, first attempt to resolve it with the Fund or Administrator. If unresolved, you may contact the Information Regulator:

Tel: 012 406 4818
Fax: 086 500 3351
Email: [email protected]