Privacy Policy

Who We Are

Infosec Advisory Group operates across two legal entities:

  • Infosec Consulting South Africa (ZA)
  • Infosec Advisory UK

These entities work together under the Infosec Advisory Group brand to deliver cybersecurity consulting and training.

 

 

Collection of Personal Data

We only collect personal data when necessary and always inform you beforehand. The types of data we may collect include:

  • Name
  • Email address
  • Telephone number
  • Job title
  • Company name

 

Additional information may be collected depending on your interaction with us. If you provide data about someone else, you must ensure you have their permission.

We collect personal data when you:

  • Sign up for our events
  • Register for training or webinars
  • Submit a contact form (e.g., to request a quotation or complete a survey)

 

How We Use Your Data

We process your personal data for the following purposes:

Purpose

Legal Basis

To provide services, respond to your requests, and communicate with you 

Contractual necessity

To deliver customer support

Legitimate interest

To send marketing materials (if opted-in)

Consent

To improve our services via statistics and analytics

Legitimate interest

To comply with legal obligations

Legal obligation

 

Your data may be shared with:

  • Our internal teams across ZA and UK
  • Trusted third-party service providers under strict agreements
  • Legal authorities when required by law

If our business is reorganized or sold, your data may be shared with potential buyers, subject to applicable privacy laws.

 

 

Cookies

We use cookies on our website primarily for caching purposes to enhance performance. These do not track your personal behavior or store identifying information.

We do not use marketing or analytics cookies.

 

 

International Transfers

Your data may be transferred between South Africa and the United Kingdom. When this occurs, we ensure appropriate safeguards are in place to comply with relevant data protection laws, including Standard Contractual Clauses or equivalent legal mechanisms.

 

 

Data Retention

We retain personal data only as long as necessary for the purposes described above or to meet legal obligations. When no longer required, your data will be deleted or anonymized.

 

 

Consent and Withdrawal

Where our processing relies on your consent (e.g., for marketing), you can withdraw it at any time by contacting us.

Withdrawal will not affect any processing already performed but may limit your access to certain services.

 

 

Your Rights

You have the right to:

  • Access the personal data we hold about you
  • Request correction or deletion of your data
  • Object to or restrict our processing
  • Request a copy of your data in a portable format
  • Lodge a complaint with your local data protection authority

To exercise any of your rights, please contact us using the details further down. We may request verification to protect your privacy.

 

Regulators:

South Africa

Information Regulator (SA)

JD House, 27 Stiemens Street, Braamfontein, Johannesburg

Contact: +27 10 023 5200 | enquiries@inforegulator.org.za

https://inforegulator.org.za

 

United Kingdom

Information Commissioner’s Office (ICO)

Water Lane, Wycliffe House, Wilmslow, Cheshire, SK9 5AF

Contact:  +44 1625 545 745 | international.team@ico.org.uk

https://ico.org.uk

 

 

Third-Party Links

Our website may contain links to external websites. We are not responsible for the privacy practices or content of third-party sites. We recommend reviewing their privacy policies before sharing any data.

 

 

Changes to This Policy

We may update this Privacy Policy to reflect changes in law, technology, or our services. The latest version will always be available on our website.

 

 

Contact Us

If you have any questions about this policy or would like to exercise your rights, contact us at: info@infosecag.net