• Marketers vs Lawyers: Why can’t we all just get along?

    Ever seen a toddler on one of those child leashes? They’re straining as hard as their little sausage legs allow, desperate to run free, talk to strangers and create a crayon masterpiece...

  • Do you need a POPIA crash course (or something a little stronger)?

    30 June 2021. Unless this is your birthday, this date probably fills most of you with some trepidation. No need – let’s turn the anxiety into excitement that POPIA is finally here...

  • Not another POPIA white paper: 10 years, 10 lessons

    It has been a decade since talk of the Protection of Personal Information Act started. Ten. Years. And finally we have an effective date. It is 1 July 2020. That’s right; it...

  • How to start your POPIA compliance project during lockdown

    It’s week 5 000 of the national lockdown, so we reckon everyone will appreciate a change of focus (since we can’t change the scenery). From what we can tell, most people’s pace during...

  • POPIA is coming, look busy.

    Why the face? The Information Regulator asked the President to announce 1 April 2020 as the commencement date for the Protection of Personal Information Act (POPIA). 1 April is also an auspicious date...

  • Mind the gap

    SA’s largest data breach & how you can protect your data

    It turns out SA’s largest recorded data breach was traced to a Web server registered to a real estate company based in Pretoria, Jigsaw Holdings. They are a holding company for several real...

  • Start working on those operator contracts

    Get the right operator contracts in place in 6 simple steps

    In week 6 of our POPI DIY programme we look at what an operator is, and how to make sure you have the right operator contracts in place with yours. In terms of...

  • The 5 key elements of a BYOD policy

    A ‘Bring Your Own Device’ policy (BYOD Policy) is essentially a set of rules applicable to employees who want to use their personal devices for work purposes. No policy is a one-size-fits-all, so...

  • Cybercrime and Cybersecurity Bill

    Unpacking the Cybercrime and Cybersecurity Bill  

    South Africa has drafted (and redrafted) the Cybercrime and Cybersecurity Bill. The Justice Portfolio Committee held hearings on this Bill last week, and I was there. If you’re interested in what the Bill...

  • London Bus

    UK Data Protection Bill introduced 

    We unpack the new UK Data Protection Bill and how it relates to GDPR. On 13 September 2017, the UK Government introduced the new Data Protection Bill (the Bill) in the House of...

  • 6 Steps to build your Business Continuity Program (BCP)

    I might be slightly obsessed with Billions, the series. It is riddled with quotable quotes. My personal favourite? “It’s like Highlander: there can be only one” - Bobby Axelrod. Despite my inherent dislike...

  • Going up in smoke

    3 Things that will torpedo risk management

    All businesses have risks. Ideally, a business would mitigate all the risks, but this simply isn’t practical – you have to prioritise. At a high level risk management is intended to: * Identify...

  • State of the Privacy Shield

    The EU-US Privacy Shield is a data transfer framework which provides for the transfer of personal data of EU citizens to the US for processing without the risk of breaching fundamental European privacy...

  • Edcon found guilty of unlawful charges

    The National Consumer Tribunal has released a finding which - essentially - finds that Edcon has been unlawfully charging its customers a fee to belong to its club. This finding is very significant...

  • You have a data breach…now what?

    Data breaches are almost inevitable. So, in addition to working towards preventing data breaches, you should be asking yourself whether your business is ready to respond quickly and effectively when the pawpaw (or...

  • No-one knows when POPI is coming (but they sure like to pretend that they do)

    Hey you! The douchebag attorney/compliance specialist with the newsletter or event to peddle. Stop saying that POPI is coming into effect/commencing/whatever early in whatever year/quarter/month/week you happen to find yourself in. That is...

  • USA's long arm of the law just got cut off

    The United State's Court of Appeals for the Second Circuit has refused to re-hear the case between Microsoft and Department of Justice, effectively resulting in it being impossible for a United States court to issue...

  • Cybercrimes bill published

    An updated version of the Cybercrimes Bill has been published by the Department of Justice and Constitutional Development. This legislation aims to bridge the gap in South African legislation which has emerged as...

  • Cybersecurity Bill approved by Cabinet

    South Africa's cabinet has approved the Cybersecurity Bill. If the Bill becomes an Act there will be very definite changes to the legal landscape for all businesses - partly because the cybersecurity bill...

  • Drowning in Red Tape: The new threshold for registration as a credit provider

    With all the pieces of legislation that are constantly being updated it is easy to miss changes to legislation that are really important – especially if that change comes in the form of...