Government ICT Procurement Framework: How Panels, RT Contracts and Open Tenders Work in 2026 — May 2026 Update

By Kabelo Molefe

Security contractors in Gauteng must now navigate a tightening regulatory landscape that intertwines ICT procurement with stringent safety and compliance standards. In 2026, every tender is scrutinised for PSIRA validity, CSD clearance, BBBEE status, SARS TCS compliance, and COIDA standing. Missing or outdated documentation can instantly disqualify a bid, jeopardising lucrative contracts and exposing firms to legal penalties. Understanding the updated framework is therefore not optional—it is essential for survival and growth in the provincial market.

The Regulatory Framework

The Public Procurement and Property Acquisition Act (PPPFA) 2015 remains the cornerstone of all government procurement, mandating fair, open, and transparent processes. For security services, the Protection of Security Industry Regulatory Authority Act (PSIRA) 1998 governs the licensing of companies and individual guards, while the Construction and Development Board Act (CDB Act) 2008 imposes CSD verification for any security deployment on construction sites. In addition, the Broad-Based Black Economic Empowerment (BBBEE) Act 2003 requires all suppliers to submit an updated BBBEE affidavit, and the Public Finance Management Act (PFMA) 2009, together with the Municipal Finance Management Act (MFMA) 2016, enforce fiscal discipline and tax compliance via the SARS Tax Clearance System (TCS).

These statutes converge in Gauteng’s ICT procurement process: panels and RT contracts are awarded only to firms that satisfy all statutory obligations, and open tenders demand the same rigorous documentation. Non‑compliance can lead to contract nullification, sanctions, or exclusion from future procurement cycles.

What Security Suppliers in Gauteng Must Have in Place

• PSIRA Registration – The company must hold a current PSIRA licence, and every guard deployed must possess an active PSIRA certificate (Grade A, B, or C). Issue: PSIRA; Portal: https://www.psira.co.za
  ; Validity: 1‑year for individuals, 5‑years for companies; Lapse: Immediate contract voidance and potential fines.
• CSD Clearance – For any work on construction sites, a valid CSD clearance is mandatory. Issue: Construction and Development Board; Portal: https://www.csd.gov.za
  ; Validity: 1‑year; Lapse: Suspension from all construction‑related tenders.
• BBBEE Affidavit – Updated BBBEE status must be submitted via the official BBBEE portal (https://www.bbbee.gov.za
  ). Validity: 12 months; Lapse: Exclusion from BBBEE‑eligible contracts and loss of preferential treatment.
• SARS Tax Clearance System (TCS) – A current TCS certificate confirms tax compliance. Issue: South African Revenue Service; Portal: https://www.sars.gov.za
  ; Validity: 1‑year; Lapse: Disqualification from all public tenders.
• COIDA Letter of Good Standing – Required for all security firms engaged in public sector work. Issue: COIDA; Portal: https://www.coida.org
  ; Validity: 12 months; Lapse: Suspension from COIDA‑registered tenders and potential legal action.

Each document must be uploaded to the tender portal before the submission deadline. Failure to provide any single certificate can trigger automatic rejection.

Step‑by‑Step Compliance Approach

1. Verify PSIRA Status for Every Guard
   Action: Log into https://www.psira.co.za

   , run a batch check for all guards scheduled for deployment.
   Why it matters: A single expired guard certificate voids the entire contract and can lead to civil liability for the company.

2. Obtain and Upload CSD Clearance
   Action: Request a CSD clearance via the CSD portal and attach the PDF to the tender submission.
   Why it matters: Construction sites impose additional safety obligations; without clearance, the tender is automatically disqualified.

3. Submit Updated BBBEE Affidavit
   Action: Complete the online form at https://www.bbbee.gov.za

   and attach the signed affidavit.
   Why it matters: BBBEE compliance is a mandatory criterion for all government ICT contracts in Gauteng.

4. Secure SARS TCS Certificate
   Action: Apply for the TCS certificate through https://www.sars.gov.za

   and upload the electronic copy.
   Why it matters: Tax compliance is non‑negotiable; any lapse results in immediate exclusion.

5. Attach COIDA Letter of Good Standing
   Action: Download the latest letter from https://www.coida.org

   and attach it to the tender dossier.
   Why it matters: COIDA standing confirms the company’s good reputation and adherence to security industry standards.

PSIRA certificates must be current for the company AND every deployed guard. A single expired guard certificate can void the entire contract. Verify at psira.co.za before submitting.

The Most Common Compliance Failures

Security submissions are frequently rejected because the PSIRA certificates are outdated or missing for one or more guards. Many firms also overlook the requirement that the company’s PSIRA licence must be valid; an expired company licence halts the entire tender process. CSD verification is another frequent pitfall—contractors often assume that a single clearance suffices for all sites, whereas each project requires its own valid clearance.

BBBEE affidavit errors are common: incomplete data, mismatched ID numbers, or failure to update the affidavit within the 12‑month window. Such mistakes trigger automatic disqualification. Additionally, the SBD forms are often filed with incorrect financial figures or missing signatures, leading to rejection. Finally, the compulsory briefing session requirement—mandatory for all bidders in high‑value ICT contracts—often goes unnoticed, and failure to attend results in a non‑participation status.

2026 Context: What Security Suppliers Should Focus On

Government procurement in 2026 places a premium on digital transformation and resilience. The Gauteng provincial IT strategy now mandates the integration of AI‑driven threat detection and cloud‑based security monitoring. Security suppliers must therefore demonstrate not only compliance but also technical capability to support these systems. Moreover, the Department of Public Service and Administration is tightening its oversight on subcontracting, insisting that all sub‑contractors also hold valid PSIRA and CSD certificates.

Regulatory direction points toward a more stringent enforcement of the PSIRA Act, with quarterly audits and increased penalties for non‑compliance. Firms that proactively update their PSIRA and CSD records and maintain a robust compliance audit trail will enjoy a competitive edge in the next procurement cycle.

How Tenders‑SA.org Helps

Tenders‑SA.org harnesses AI to match your security company’s compliance profile with the most relevant ICT tenders in Gauteng. By uploading your PSIRA, CSD, BBBEE, SARS TCS, and COIDA documents, the platform automatically flags any gaps and recommends corrective actions before you even start the tender application.

Our Company Profile Builder captures every guard’s PSIRA certificate, ensuring you never miss an expiry date. Real‑time tender alerts notify you of upcoming opportunities that match your verified compliance status, saving you time and boosting your win rate.

Browse Security tenders

ICT & Smart City Analyst specializing in digital transformation and security technology for South African municipalities.