Compliance and risk management2018-03-14T19:14:16+00:00

Compliance can be a complex beast – especially if you don’t have an in-house legal team or a dedicated compliance officer.

Perhaps you are a business owner with no clue where to begin (by the way, we have a whole page just for you). Some of us have been in-house lawyers in the past, so we know how strapped for time you are trying to get everything done.

Compliance and risk management

Novation is the cost effective alternative to having an expensive in-house legal team. Some clients call us their ‘out-house’ lawyers. We consult on compliance projects of all shapes and sizes. We protect businesses by being their compliance eyes and ears, empowering them to cleverly manage their risk and be more efficient.

We don’t do compliance for compliance’s sake. We take a holistic view from gap assessments and developing compliance and risk management plans to implementing those plans and designing kick-ass training that changes minds.

You won’t get any useless reports and opinions from us. We think like entrepreneurs first, lawyers second.

Want to do compliance differently? Then get in touch.


Crying over spilled data. Greenwich University and the GDPR.

By |

The University of Greenwich in the United Kingdom was recently fined £120 000 by their Information Regulator, the Information Commissioner’s Office. You can read the full decision here. Why do we care? We care because South Africa’s Protection of Personal Information Act (POPIA) is very similar to the General Data [...]

Why I deleted my Facebook account

By |

For many years I have had significant misgivings about Facebook’s approach to protecting personal information. Despite this I kept a Facebook account as a means for my friends to update me on what they were doing (rather than me updating them, as I just did not trust that Facebook would [...]

POPIA compliance and Codes of Conduct

By |

In a sense, the POPIA is a bit of an odd bird. In South Africa, we are used to rules-based legislation. Legislation that prohibits things, sets requirements, tells us what to do. This is not the case with the POPIA. As with its European ancestor, the European Union General Data [...]