POPIA Update: Prior Authorisation applications What is Prior Authorisation? The Protection of Personal Information Act 4 of 2013 (“POPIA”) establishes the requirement of Prior Authorisation […]
Transferring personal data to or from South Africa? Will POPIA be adequate?
A simple comparison between the GDPR and POPIA on cross-border transfers of data. Will South Africa be inadequate?
POPI Act Principles: Data Minimisation
A simple explainer on the data minimisation principle with reference to the decision of Ireland’s Data Protection Commission on Groupon under the GDPR in December […]
Small Businesses and the Protection of Personal Information Act, 2013
Must small businesses comply with POPIA? Compliance with the Protection of Personal Information Act, 2013 (“POPIA”) is not dependent on turnover or number of employees. […]
POPIA’s Notification Conundrum
Are all data breaches notifiable, or do we follow a risk-based approach?