Legal

PAIA manual

This page defines the public access-to-information process for CyberSec as a South African private body, including request channels, verification expectations, and response handling boundaries.

Canonical artefact metadata

Owner
CyberSec Legal and Trust Office
Approver
CyberSec Executive Governance
Version
1.0.0
Last reviewed
2026-04-20
Next review due
2026-10-20

Manual purpose

This manual sets out how requesters may seek access to records held by CyberSec and outlines the main categories of records maintained by the business.

Information Officer contact

  • Information Officer, CyberSec Consultants
  • PAIA requests: info@cybersec.co.za
  • Subject line format: PAIA Access Request.

Records categories

  • Corporate and statutory records.
  • Service and operational records.
  • Human resources and financial records.
  • Customer, support, and platform activity records subject to legal and contractual limits.

Request process

  1. Submit a PAIA request through the published intake email and include sufficient record detail.
  2. CyberSec performs requester identity and authority checks before record release.
  3. Where applicable, permissible fees and timelines are communicated before fulfilment.
  4. Refusal or partial-access decisions are issued with the applicable reason category and escalation guidance.

Grounds for refusal

Access may be refused or limited where disclosure would reveal confidential third-party information, compromise security safeguards, disclose privileged material, or where refusal is otherwise permitted by PAIA, contract, or law.

Was this page helpful?

Trust and legal

Trust and legal baselinePrivacy notice (POPIA)PAIA manualCookie and tracking noticeWebsite termsSecurity testing authorizationPlatform termsResponsible disclosure