PAIA Manual

MANUAL PUBLISHED IN TERMS OF SECTION 51 OF THE PROMOTION OF ACCESS TO INFORMATION ACT 2 OF 2000

CONTENTS:

1. Introduction

2. Availability of this PAIA Manual

3. Availability of Guides to the PAIA and POPI Acts

4. Company Contact Details

5. Processing of Personal Information

6. Purposes of Processing Personal Information

7. Sharing of Personal Information

8. Company Records

9. Records Kept in Accordance with Legislation

10. Security Measures to Protect Personal Information

11. Requests and Fees

INTRODUCTION

Asuer (Proprietary) Limited (“Asuer” or the “Company”) provides financial technology solutions, including funeral insurance and mobile virtual network services tailored to African markets. This manual provides an outline of the types of records and personal information Asuer holds, and explains how to submit requests for access to these records in terms of the PAIA Act. It also explains how to access or object to personal information held by the Company, or to request corrections, under the Protection of Personal Information Act 4 of 2013 (POPI Act).

AVAILABILITY OF THIS PAIA MANUAL

This manual is available on the Company website at www.asuer.co.za. Alternatively, a copy can be requested from Asuer’s Information Officer.

AVAILABILITY OF GUIDES TO THE PAIA AND POPI ACTS

Guides, policies, and guidance notes on the PAIA and POPI Acts are available on the Information Regulator’s website at www.justice.gov.za/inforeg.

COMPANY CONTACT DETAILS

• Registration Number: [Insert Registration Number]

• Physical Address: [Insert Address]

• Postal Address: [Insert Postal Address]

• Telephone Number: [Insert Telephone]

• Email Address: info@asuer.co.za

• Website: www.asuer.co.za

• Directors: [List Directors]

• Information Officer: [Name]

• Information Officer Email: [Insert Information Officer’s Email]

PROCESSING OF PERSONAL INFORMATION

Asuer will process personal information in accordance with South African privacy laws. Our Privacy Policy, detailing further processing practices, is available at www.asuer.co.za or can be requested from the Information Officer.

PURPOSES OF PROCESSING PERSONAL INFORMATION

Asuer processes personal information for various purposes, including:

• Managing and providing products and services;

• Identifying individuals upon contact;

• System and record maintenance;

• Recruitment and employment-related purposes;

• Legal, contractual, and health & safety purposes;

• Preventing fraud and money laundering;

• Debt recovery;

• Customer profiling and analysis; and

• Marketing other relevant products and services to data subjects.

SHARING OF PERSONAL INFORMATION

Personal information may be shared with:

• Affiliates, partners, or suppliers for service delivery;

• Government authorities or third parties as legally required;

• Employees who need access to perform their roles; and

• Marketing service providers, if relevant.

COMPANY RECORDS

Records are kept within various departments and may include:

• Health and Safety: Policies and records

• Finance: Financial statements, tax records

• Human Resources: Employee and recruitment records

• Legal: Contractual agreements and policies

• Sales and Marketing: Market data and customer profiling

• Operations/Logistics: Production records

• Facilities Management: Physical and electronic security information

RECORDS KEPT IN ACCORDANCE WITH OTHER LEGISLATION

Asuer complies with all relevant legislation, such as:

• Basic Conditions of Employment Act 75 of 1997

• Companies Act 71 of 2008

• Consumer Protection Act 68 of 2008

• Promotion of Access to Information Act 2 of 2000

SECURITY MEASURES TO PROTECT PERSONAL INFORMATION

Asuer has implemented reasonable, technical, and organizational measures to protect personal information from unauthorized access, manipulation, or destruction. Examples of security measures include:

• System security and anti-virus software

• Email encryption

• Controlled access based on employee level

• Regular risk assessments

REQUESTS AND FEES

To request access to records:

• Use the prescribed form available on the Information Regulator’s website.

• Address requests to the Information Officer, with detailed information to identify the record, the requester, the form of access required, and the specific right sought to be exercised.

Fees apply, including:

• Request Fee: R50.00 for processing (non-personal requests).

• Deposit: If processing exceeds six hours, a deposit may be required.

Records may be withheld until fees are paid. Decisions on requests are final, but applicants may seek relief through a court or the Information Regulator if a request is denied.