Data Security

Our Commitment

We understand that the information you share with us is sensitive. We are committed to implementing appropriate technical and organisational measures to safeguard your personal information against unauthorised access, loss, misuse, or disclosure.

Security Measures We Use

We protect your data through a combination of the following practices:

Data Storage

Your personal information may be stored in both digital and physical formats. Digital records are maintained on secure systems with access controls in place. Physical documents are stored in restricted areas and disposed of securely when no longer required.

Third-Party Platforms

Where we use third-party platforms (such as cloud-based tools or communication services), we select providers with established security credentials and data protection commitments. We do not use third-party platforms to store sensitive client documents beyond what is operationally necessary.

Your Role in Data Security

We encourage clients to take the following steps to protect their own information:

• Do not share sensitive documents over unsecured channels such as public Wi-Fi
• Contact us immediately if you suspect that your information has been compromised
• Ensure that any physical documents you hand over are received by a verified Gateway Visas & Docs representative

Data Breach Response

In the event of a data breach that poses a risk to your rights and freedoms, we will:

• Notify the Information Regulator within the timeframe required by POPIA
• Inform affected individuals as soon as reasonably practicable
• Take immediate steps to contain and remediate the breach
• Document the incident and review our security practices accordingly

Retention and Disposal

Personal information is retained only for as long as is necessary. Once the retention period has lapsed, data is securely deleted from our systems and physical records are disposed of in a manner that prevents unauthorised recovery.