POPI

How to start your POPIA compliance project during lockdown

2020-05-05T11:14:56+02:00By |Categories: Compliance and risk management, News, POPIA|Tags: , , , , , , , , |

It’s week 5 000 of the national lockdown, so we reckon everyone will appreciate a change of focus (since we can’t change the scenery). From what we can tell, most people’s pace during lockdown is either crazy-busy or bored-to-tears. So, for those of you leaning towards the bored spectrum, here [...]

POPIA is coming, look busy.

2020-02-25T17:21:52+02:00By |Categories: News, POPIA|Tags: , , , , , , , , |

Why the face? The Information Regulator asked the President to announce 1 April 2020 as the commencement date for the Protection of Personal Information Act (POPIA). 1 April is also an auspicious date widely known as April Fools Day. It is lesser known as Sourdough Bread Day. On 1 April [...]

Plain language privacy notices: Win your customers' trust

2018-03-15T10:24:39+02:00By |Categories: Compliance and risk management|Tags: , , , , , , |

Using plain language when you talk about privacy and personal information is key if you want to win your customers' trust. We have written about the POPIA requirement that a business must have a privacy notice* that explains what personal information the business collects and what it does with that [...]

Access denied. When may you refuse someone access to their PI?

2019-10-02T11:32:18+02:00By |Categories: POPIA|Tags: , , , , , , |

Did you know that people may ask you to delete the personal information you have about them? The Protection of Personal Information Act (POPI) gives the data subject (a person or company) the right to request access to their personal information (PI) in the possession of a responsible party. The data [...]

Get the right operator contracts in place in 6 simple steps

2018-03-15T10:26:01+02:00By |Categories: Compliance and risk management, POPIA|Tags: , , , , , , , , , |

In week 6 of our POPI DIY programme we look at what an operator is, and how to make sure you have the right operator contracts in place with yours. In terms of POPI an operator is a person or company who processes personal information on behalf of the responsible [...]

Unpacking the Cybercrime and Cybersecurity Bill  

2018-03-15T10:26:23+02:00By |Categories: Compliance and risk management|Tags: , , , , , , , , |

South Africa has drafted (and redrafted) the Cybercrime and Cybersecurity Bill. The Justice Portfolio Committee held hearings on this Bill last week, and I was there. If you’re interested in what the Bill means for SA, and how to keep up to date with the latest changes, the University of [...]

UK Data Protection Bill introduced 

2018-03-15T10:26:36+02:00By |Categories: Compliance and risk management|Tags: , , , , , , |

We unpack the new UK Data Protection Bill and how it relates to GDPR. On 13 September 2017, the UK Government introduced the new Data Protection Bill (the Bill) in the House of Lords. If enacted, the Bill will repeal and replace the existing Data Protection Act 1998 and supplement [...]

Go to Top