The POPI Act
In South Africa, the Protection of Personal Information Act (POPI) is intended to regulate how companies ensure the integrity and confidentiality of their data and assets by taking technical and organizational measures to prevent unauthorized access to personal information such as passwords and credit card numbers. The purpose of the Act is to protect and safeguard personal data in the public interest.
In 2013, South Africa passed the Protection of Personal Information Act (POPI) as part of the National Data Protection Act of 2013. Although it is ahead of the GDPR, it is often referred to as its “GDPR” counterpart.
The law aims to bring South Africa in line with international trends in data management and to hold the companies concerned accountable if they fail to protect personal data. Essentially, the PoPI is designed to ensure that South African institutions operate safely and responsibly when managing, collecting, and sharing personal information. South African entrepreneurs and executives need to reexamine the way data is handled and the role of data in their business.
This legislation is likely to revolutionize the way South African companies handle data and transmit it through their information networks. Over time, the law will only become stricter as new technologies such as mobile phones, tablets, and other mobile devices emerge.
The easiest way to become POPI Compliant is our diy POPI TOOLKIT!