South Africa has enacted its own information protection law, the Protection of Personal Information (POPI) Act, in 2013. 2018 saw the publication of the regulations. Neither the Act nor its regulations provide recommendations that assists organizations with achieving compliance. Furthermore, POPI impacts businesses from various sectors differently. The type of personal information stored and required for processing differs across organizations. Moreover, fines issued under the POPI Act could reach as high as 10 million Rand. This paper outlines a case study which explored within a single organization to identify what the challenges are that an organization could be faced with. The study is conducted throughout the organizational levels within a single organization. In the light of the imminent enforcement of the POPI Act, this paper highlights challenges that organizations could experience.
|Title of host publication||Proceedings of The 11th International Conference on Research in Science and Technology|
|Subtitle of host publication||14-16 May, 2021, Paris, France|
|Publisher||Diamond Scientific Publishing|
|Number of pages||12|
|Publication status||Published - 14 May 2021|
- POPI data protection South Africa