Almost every business in South Africa will be affected by POPI (the Protection of Personal Information Act), but don’t be misled by the many articles and media reports doing the rounds that imply you are at immediate risk of non-compliance. No general commencement date has yet been set, and even when it is, we will still have at least a full year thereafter to comply.
Having said that, there’s certainly merit in being prepared. In a nutshell, build your compliance program around identifying what personal data you hold, why and under what authority you hold it, and how secure it is.
But don’t panic if you haven’t started on that yet. When a commencement date is actually announced (hopefully in the not-too-distant future, now that the way is cleared for the appointment of an Information Regulator) we’ll let you have some practical advice on how to go about preparing for compliance.
If you want to get in touch with us to act in respect of any matter stated herein, please send an email to firstname.lastname@example.org
© DotNews, 2005-2015. This article is a general information sheet and should not be used or relied on as legal or other professional advice. No liability can be accepted for any errors or omissions nor for any loss or damage arising from reliance upon any information herein. Always contact your legal adviser for specific and detailed advice.