Meeting compliance obligations

1 October 2020 Security Services & Risk Management

Businesses operating in South Africa can now map and understand their obligations, roles and responsibilities to comply with local regulations and legislation – most notably the Protection of Personal Information Act (PoPIA) – with Microsoft’s Compliance Manager tool, announced recently at Microsoft Ignite.

“The protection of data and personal information is a critical obligation for organisations with access to this information, and this obligation is made ever more important as the world moves further into the cloud,” says Colin Erasmus, Modern Workplace Business Group lead at Microsoft.

Microsoft Compliance Manager is a user-friendly, centralised dashboard and tool that allows organisations to efficiently map and monitor regulatory adherence as it relates to their use of Microsoft cloud services on Microsoft 365 or Azure Active Directory.

“It serves several functions, not the least of which is being to provide a centralised, visual representation of an enterprise’s compliance posture, calculating a risk-based compliance score that measures progress towards data protection and adherence to regulatory standards,” says Kelly Chalom, GDPR and data privacy compliance specialist at Cloud Essentials. Cloud Essentials is a partner that contributed to the mapping of the various laws and standards, including local compliance legislation such as PoPIA, to Microsoft’s control framework for Compliance Manager.

Other legislation that has been mapped to the tool includes regional and global compliance standards such as GDPR and applicable ISO (International Organisation for Standardisation) standards, among others.

This mapping and laying out of roles and responsibilities to get a compliance score enables enterprises to identify where the gaps lie in meeting their compliance obligations and take action to address these gaps.

“Not only does it enable enterprises to visualise their compliance posture, it also allows for secure cloud storage of critical compliance documentation that is key to demonstrating the enterprise’s compliance as required by the legislation,” says Chalom.

“The Compliance Manager tool takes an holistic approach to compliance, combining technology with a level of care to ensure that organisations in South Africa understand their compliance obligations, can see where they are in terms of meeting these obligations through their compliance score and take action by allocating roles and responsibilities within the organisation to ensure they are fully compliant with laws such as PoPIA,” concludes Erasmus.




Share this article:
Share via emailShare via LinkedInPrint this page



Further reading:

Risk management and compliance enforcement
Security Services & Risk Management
Having a risk management and compliance programme (RMCP) is not just a procedural formality; it is a legal requirement under Section 42 of the Financial Intelligence Centre Act (FICA).

Read more...
The dangers of poor-quality solar cables
Security Services & Risk Management Smart Home Automation
Reports indicate that one in six fires attended by South African firefighters is linked to substandard solar installations, often due to faulty wiring or incompatible components.

Read more...
Growing risks for employers
Security Services & Risk Management
With South Africa’s unemployment rate exceeding 32% and expected to rise beyond 33% this year, desperation is fuelling deception in the job market. Trust is no longer a given, it is a gamble.

Read more...
Chubbsafes celebrates 190 years
Gunnebo Safe Storage Africa News & Events Security Services & Risk Management
Chubbsafes marks its 190th anniversary in 2025 and as a highlight of the anniversary celebrations it is launching the Chubbsafes 1835, a limited edition 190th-anniversary collector’s safe.

Read more...
New law enforcement request portal
News & Events Security Services & Risk Management
inDrive launches law enforcement request portal in South Africa to support safety investigations. New portal allows authorised South African law enforcement officials to securely request user data related to safety incidents.

Read more...
Continuous AML risk monitoring
Access Control & Identity Management Security Services & Risk Management Financial (Industry)
AU10TIX, launched continuous risk monitoring as part of its advanced anti-money laundering (AML) solution, empowering businesses to detect behavioural anomalies and emerging threats as they arise.

Read more...
Growing risks for employers
Security Services & Risk Management
With South Africa’s unemployment rate exceeding 32% and expected to rise beyond 33% this year, desperation is fuelling deception in the job market. Trust is no longer a given, it’s a gamble.

Read more...
Managing mining physical security risks
Zulu Consulting Security Services & Risk Management Mining (Industry) Facilities & Building Management
[Sponsored] Risk-IO, a web app from Zulu Consulting, is designed to assist risk managers in automating and streamlining enterprise risk management processes, ensuring no steps are skipped and everything is securely documented.

Read more...
SAFPS issues SAPS impersonation scam warning
News & Events Security Services & Risk Management
The Southern African Fraud Prevention Service (SAFPS) is warning the public against a scam in which scammers pose as members of the South African Police Service (SAPS) and trick and intimidate individuals into handing over personal and financial information.

Read more...
Rewriting the rules of reputation
Technews Publishing Editor's Choice Security Services & Risk Management
Public Relations is more crucial than ever in the generative AI and LLMs age. AI-driven search engines no longer just scan social media or reviews, they prioritise authoritative, editorial content.

Read more...










While every effort has been made to ensure the accuracy of the information contained herein, the publisher and its agents cannot be held responsible for any errors contained, or any loss incurred as a result. Articles published do not necessarily reflect the views of the publishers. The editor reserves the right to alter or cut copy. Articles submitted are deemed to have been cleared for publication. Advertisements and company contact details are published as provided by the advertiser. Technews Publishing (Pty) Ltd cannot be held responsible for the accuracy or veracity of supplied material.




© Technews Publishing (Pty) Ltd. | All Rights Reserved.