Start your POPIA compliance journey

Residential Security Handbook 2021: SMART Estate Living Security Services & Risk Management

Regulators are no longer afraid to protect people’s rights to privacy against tech giants. In recent years, we have seen the likes of Google and Facebook receive large amounts of General Data Protection Regulation (GDPR) fines.

According to head of legal and chief privacy officer at LAWtrust, Rian Schoeman, it is time to look thoroughly at South African businesses and how far they are with their Protection of Personal Information Act (POPIA) compliance journey.

“POPIA in South Africa came into effect on 1 July 2020, and if you have not started with your compliance journey, you need to act fast as the one-year grace implementation period draws closer to the end,” says Schoeman.

He adds that it is never too late to start, and several quick wins can assist you in kicking off your POPIA compliance journey; following these steps can help you cover some of the large gaps in your POPIA compliance journey:

Commit: It is time to commit to a POPIA compliance journey. You can start by inculcating POPIA compliance in the day-to-day management of your business, so that it becomes second nature, just like a sales or other process.

Train your staff: Many sources offer POPIA training, some of them even for free, but often you get what you pay for. Before deciding on a training provider, make sure to read reviews and feedback from other businesses that have undergone this training.

Find your data: Many companies believe that this requires a massive data mapping exercise and the purchase of expensive data mapping tools. This is not the case. The best way to find out how personal information flows through your business is to look at how it interacts with your current business processes. Think of how you on-board new employees into your business or how you deal with new customers, for example.

Secure your data: This is much easier than you think. Most installations of Windows and Mac OS have disk encryption tools built in. By just making sure that you encrypt the desktop and laptop computers in your business, you have already gone a long way to protecting personal information, even if there will be further steps you need to take.

Schoeman says POPIA compliance is good for your business because customers deserve it. “You will soon find that it comes with added benefits for your own business, such as structuring your data and being able to provide prospective customers with the assurance that protecting their personal information is something you take seriously,” he concludes.




Share this article:
Share via emailShare via LinkedInPrint this page



Further reading:

Risk management and compliance enforcement
Security Services & Risk Management
Having a risk management and compliance programme (RMCP) is not just a procedural formality; it is a legal requirement under Section 42 of the Financial Intelligence Centre Act (FICA).

Read more...
The dangers of poor-quality solar cables
Security Services & Risk Management Smart Home Automation
Reports indicate that one in six fires attended by South African firefighters is linked to substandard solar installations, often due to faulty wiring or incompatible components.

Read more...
Growing risks for employers
Security Services & Risk Management
With South Africa’s unemployment rate exceeding 32% and expected to rise beyond 33% this year, desperation is fuelling deception in the job market. Trust is no longer a given, it is a gamble.

Read more...
Chubbsafes celebrates 190 years
Gunnebo Safe Storage Africa News & Events Security Services & Risk Management
Chubbsafes marks its 190th anniversary in 2025 and as a highlight of the anniversary celebrations it is launching the Chubbsafes 1835, a limited edition 190th-anniversary collector’s safe.

Read more...
New law enforcement request portal
News & Events Security Services & Risk Management
inDrive launches law enforcement request portal in South Africa to support safety investigations. New portal allows authorised South African law enforcement officials to securely request user data related to safety incidents.

Read more...
Continuous AML risk monitoring
Access Control & Identity Management Security Services & Risk Management Financial (Industry)
AU10TIX, launched continuous risk monitoring as part of its advanced anti-money laundering (AML) solution, empowering businesses to detect behavioural anomalies and emerging threats as they arise.

Read more...
Growing risks for employers
Security Services & Risk Management
With South Africa’s unemployment rate exceeding 32% and expected to rise beyond 33% this year, desperation is fuelling deception in the job market. Trust is no longer a given, it’s a gamble.

Read more...
Managing mining physical security risks
Zulu Consulting Security Services & Risk Management Mining (Industry) Facilities & Building Management
[Sponsored] Risk-IO, a web app from Zulu Consulting, is designed to assist risk managers in automating and streamlining enterprise risk management processes, ensuring no steps are skipped and everything is securely documented.

Read more...
SAFPS issues SAPS impersonation scam warning
News & Events Security Services & Risk Management
The Southern African Fraud Prevention Service (SAFPS) is warning the public against a scam in which scammers pose as members of the South African Police Service (SAPS) and trick and intimidate individuals into handing over personal and financial information.

Read more...
Rewriting the rules of reputation
Technews Publishing Editor's Choice Security Services & Risk Management
Public Relations is more crucial than ever in the generative AI and LLMs age. AI-driven search engines no longer just scan social media or reviews, they prioritise authoritative, editorial content.

Read more...










While every effort has been made to ensure the accuracy of the information contained herein, the publisher and its agents cannot be held responsible for any errors contained, or any loss incurred as a result. Articles published do not necessarily reflect the views of the publishers. The editor reserves the right to alter or cut copy. Articles submitted are deemed to have been cleared for publication. Advertisements and company contact details are published as provided by the advertiser. Technews Publishing (Pty) Ltd cannot be held responsible for the accuracy or veracity of supplied material.




© Technews Publishing (Pty) Ltd. | All Rights Reserved.