IGA Supermarkets
Retail & Ecommerce
No relevant claims found in policy. Overall: Room for improvement.
10 dimensions · 61 claims · assessed 18 May 2026 · methodology · source policy ↗
Score Breakdown
Transparency
Good with minor gaps
7.17/107.17/10
Transparency
Good with minor gaps
Transparency & Clarity
8/10Comprehensive scope statement covering multiple stakeholder types, clear contact information for Privacy Officer, current date stamp, and good structural organization with section headings. Strong commitment statement and policy availability details exceed basic requirements.
Purpose Limitation & Use
6/10Extensive list of primary purposes but includes broad catch-all clauses that weaken purpose limitation. Marketing consent requirements are clear with opt-out mechanisms, but overall purpose framework is quite expansive.
Policy Maintenance & Accountability
7/10Clear Privacy Officer designation with contact details, defined update and notification processes, comprehensive complaint handling with regulatory escalation pathways. Good governance framework though review frequency is unspecified.
Data Protection
Good with minor gaps
6.67/106.67/10
Data Protection
Good with minor gaps
Data Collection Disclosure
8/10Highly detailed enumeration of personal information types collected, comprehensive coverage of collection methods (direct, third-party, automated), specific legal basis references, and clear disclosure of sensitive information handling. Granular specificity exceeds minimum requirements.
Third-Party Sharing & Disclosure
7/10Clear categorization of third-party recipients with specific named parties (Google Analytics, Meta tracking), comprehensive overseas disclosure locations, and detailed purposes. Good coverage of consent mechanisms and opt-out rights for marketing.
Data Security
4/10Generic 'reasonable steps' language without specific security measures, encryption details, or certifications. Limited to basic commitments around data destruction and breach investigation without technical specifics.
Cross-Border Data Flows
7/10Specific countries and regions named for overseas transfers with clear notification provided. Includes reasonable safeguard commitments for overseas recipients, though binding mechanisms are not specified.
Your Rights
Significant gaps
4/104/10
Your Rights
Significant gaps
Consumer Rights & Control
8/10Clear access and correction rights with specific contact mechanisms, comprehensive complaint process including regulatory escalation pathways with website details, and specific opt-out mechanisms for marketing. Strong coverage of key consumer rights.
Automated Decision-Making
2/10No explicit disclosure of automated decision-making processes despite mentioning data analytics and digital tracking technologies. Lacks transparency about automated systems, opt-out rights, or human review mechanisms.
Children's Data
not assessedNo relevant claims found in policy.
No specific findings.
Sector Comparison
Retail & Ecommerce comparison