Information security

Media24 acknowledges the importance of information security measures to ensure the confidentiality, integrity & availability of your Personal Information

Our commitment to security
  • Media24 has put in place administrative, technical and physical safeguards to protect your personal information and prevent loss, damage or unauthorised access to or disclosure of your information. These security safeguards are based on generally accepted information security practices and procedures which apply to the platforms, products and services we provide. We regularly check that these safeguards are correctly implemented and continually updated in response to new risks or any identified deficiencies.
  • Any information that you submit to us through the internet is at your own risk. Once we receive your personal information, our security safeguards apply.
  • If we outsource any services to a third party that require the collection or use of your personal information, we put in place contracts that require these companies or people to respect the security of your personal information, treat it in accordance with the law, and collect and use it only for the purposes authorised by us.
Framework

Media24 has adopted the Centre for Internet Security (CIS) framework to ensure the relevant security controls are implemented, managed, and monitored as required throughout the organisation.

Technical security controls
    • Media24 has implemented key technical security controls in the following areas: Multi-Factor Authentication (MFA) user access control with least privilege access, end-point protection (EDR) including anti-virus & anti-malware, encryption, secure email gateway, asset management, secure storage, VPN and secure backups.
    • Multi-Factor Authentication (MFA) is enabled on critical systems and cloud environments by leveraging Okta, a global identity and access management platform. MFA is enabled for all system administrators, or users with access to perform sensitive functions.
Physical controls

Media24 has physical organization controls including physical facilities access control, security personnel, CCTV, Covid screening controls, secure data centres and secure storage.

Monitoring
The Media24 landscape is externally monitored by a Security Operations Centre (SOC) who are responsible for managing security alerts. This includes both endpoint protection and Security Information and Event Management (SIEM). Identity & Access Management
Identity & access management

Media24 has a dedicated Identity and Access Management (IAM) capability within the information security team. Access to Media24 systems is managed on a least privilege access principle. All users (employees, customers, contractors) are restricted as per the system requirements.

Media24 Head Office

40 Heerengracht
Cape Town
South Africa

Please click here to submit any request regarding your personal information that is processed by Media24.

If you are dissatisfied with our resolution of your complaint, you have the right to refer it to the Information Regulator, the supervisory authority for data protection issues in South Africa.

General Enquiries Email: enquiries@inforegulator.co.za

Complaints Email: PAIAComplaints@inforegulator.co.za

To view Media24’s Promotion of Access to Information Act (PAIA) manual, click here.