Introduction
This manual is prepared for transparency in relation to the Promotion of Access to Information Act, 2000 (PAIA) and the Protection of Personal Information Act, 2013 (POPIA). It is intended for a private South African business operating the Fabricata Cut SaaS platform.
Purpose of the Manual
The purpose of this manual is to describe how records may be requested, what categories of records may be held, what personal information may be processed, and how related POPIA rights can be exercised.
Details of the Private Body
The legal entity, trading name, registration number, VAT number, address, and contact details are listed in the Legal Notice. Formal details not shown publicly may be made available on formal invoice or written request.
Information Officer Details
The Information Officer wording and contact routing are listed in the Legal Notice. Requests can be sent through the published privacy contact or Contact page.
PAIA Guide Availability
The Information Regulator makes a PAIA guide available to assist people who wish to exercise rights under PAIA and POPIA. Requesters should consult the Information Regulator website for the latest guide and forms.
Records Available Without Formal Request
Public website pages, pricing pages, support contact information, high-level product information, and published legal policies may be available without a formal PAIA request.
Categories of Records Held
Fabricata Cut may hold company records, customer and account records, billing records, support records, operational and technical records, website records, legal records, and marketing records.
Company Records
Company records may include incorporation records, governance records, tax and accounting records, contracts, policies, service-provider agreements, and internal operational documents.
Customer and Account Records
Customer records may include account owner details, invited user details, company details, subscription details, workspace roles, login activity, usage records, and communications.
Billing Records
Billing records may include invoices, payment references, payment status, subscription plans, payment-provider references, proof-of-payment records where applicable, refunds, cancellations, and accounting records.
Support Records
Support records may include enquiries, bug reports, screenshots, messages, email correspondence, support notes, and resolution history.
Operational and Technical Records
Operational records may include project data, stock records, cut lists, offcut records, material traceability data, exports, logs, security events, deployment records, and system diagnostics.
Website and Marketing Records
Website and marketing records may include contact form submissions, campaign content, analytics data where configured, website content, public product copy, and consent or preference records where applicable.
POPIA Processing Details
Fabricata Cut processes personal information for account management, service delivery, billing, support, security, legal compliance, operational reporting, and product improvement.
Categories of Data Subjects
- Workspace owners and users
- Customer representatives entered by users
- Prospects and demo users
- Support contacts
- Suppliers and service-provider contacts
- Website visitors
- Employees or contractors, where applicable
Categories of Personal Information Processed
- Names, surnames and email addresses
- Company and billing details
- Role and access information
- Support messages and uploaded support files
- Payment status and references
- Technical and security data
- Operational data that may contain personal information if users enter it
Recipients, Operators and Service Providers
Information may be shared with operators and service providers that support hosting, database operations, storage, email, payment processing, analytics, support, security, accounting, or legal services.
Planned Transborder Flows
Some cloud, email, analytics, support, or payment providers may process information outside South Africa. The business should confirm and document provider locations and safeguards as part of legal review.
Security Measures
Security measures may include access controls, password hashing, encrypted transport, administrative controls, logging, upload validation, backups where configured, and service-provider security controls.
Request Procedure
Requests for access to records should be submitted to the Information Officer using the prescribed PAIA form where applicable, with sufficient detail to identify the record and the right being exercised or protected.
Fees Where Applicable
PAIA request fees, access fees, reproduction fees, or other lawful fees may apply where permitted by law. The requester will be informed where payment is required before records are provided.
Refusal of Access
Access may be refused where PAIA allows or requires refusal, including privacy of third parties, confidential commercial information, legal privilege, safety, security, or records that cannot reasonably be found.
Remedies and Complaints
A requester who is dissatisfied with a decision may use the remedies available under PAIA, including complaint mechanisms through the Information Regulator or appropriate court processes.
Information Regulator Contact Reference
The Information Regulator (South Africa) is the regulator for POPIA and PAIA. Requesters should use the current contact details published on the Information Regulator website.
Forms Reference
Applicable PAIA request forms and POPIA complaint forms should be obtained from the Information Regulator or official sources to ensure the latest version is used.
Updates to the Manual
This manual may be updated when company details, records, processing activities, service providers, law, or operational practices change.
Contact Fabricata Cut
Legal, privacy, billing, support, and Information Officer details are listed in the Legal Notice. Formal business identifiers that are not displayed publicly may be made available on formal invoice or written request.