| (1) |
Principles for ensuring security- The following safety measures must be adhered to— |
| (a) |
Users with controlled access to the system must sign a declaration of confidentiality. |
| (b) |
All activities on the system must leave an audit trail. |
| (c) |
Accountable officers such as the system administrators must maintain and manage user access to the system. |
| (d) |
A modular approach for easy management of the system must be followed. |
| (e) |
Storage and printing of certificates must take place in a secure environment. |
| (f) |
A record of all certificates issued must be maintained. |
| (g) |
Credible certificate background paper, which has security features that are regularly enhanced, must be used; and |
| (h) |
Backup and storage of data must be maintained. |
| (2) |
Security features of the certificate— |
Umalusi must ensure that the format for the certificate background paper includes various security features and must improve these security features frequently by introducing the latest developments in the field of security printing, with the aim of avoiding the possibility of fraudulent certificates being produced.
| (3) |
Monitoring of the security system— |
Umalusi must—
| (a) |
Monitor whether its printers comply with security policy; and |
| (b) |
Manage the printing and storage of certificates issued to candidates. |
Statistics Act, 1999
