KPMG's POPI team can assist by identifying specific risks for compliance, and at implementing controls to mitigate against those risks.
Work required in achieving POPI compliance often underestimated
The South African legislative environment is constantly changing - often before business has become completely comfortable with its obligations under the preceding legislation; a challenge for any company director.
It was no different when the Protection of Personal Information Act (POPI) was enacted in November 2013. Much fanfare was made in the press about the Act, but most especially about the “radical” changes that business is expected to adopt in order to be compliant. Almost every comment made noise about the fines that would be imposed if businesses failed to comply with its provisions. But how much of this is hype?
Find out how KPMG has responded to this issue.
Appointment of an Information Regulator
The President of South Africa has confirmed the appointment of Advocate Pansy Tlakula as the Chairperson of the Information Regulator and Advocate Lebogang Stroom, Johannes Weapond, Professor Tana Pistorius and Sizwe Snail Ka Mtuze as members of the Information Regulator.
These appointments follow the National Assembly’s recommendation on 7 September 2016. The members have been appointed with effect from 1 December 2016 and will serve a period of five years. It is anticipated that the commencement date for the remaining provisions of the POPI Act will soon follow the appointment of the members of the Information Regulator.
Read more about the appointment of an Information Regulator.
Visit the Information Regulator's website
Find out more about the path taken en route to signing the POPI legislation into law