A typical response to questions around PoPIA compliance is “we don’t need to worry about PoPIA (the South African Protection of Personal Information Act) until it’s fully implemented”. I’ve heard similar comments at several conferences. It seems that South African companies are waiting until the last minute and assuming that they will have enough time…
Over the Youth Day weekend, Liberty informed its customers, and later everyone else, that it had been the subject of a successful security intrusion. In a media statement, it claimed that an email repository had been compromised, and that an as yet undisclosed number of emails had been accessed, possibly together with their attachments. This…
This weekend’s scandal involving the Australian cricket team and their attempt to cheat against South Africa has made world news. Even CNN had a ticker running in the subject and Americans don’t even watch cricket. For those that haven’t been paying any attention to the news – on Saturday, as the third Test match in…
The European Union’s Global Data Protection Regulation comes in to effect in just over two months. Given that this is European legislation, why should South African businesses care? The obvious answer – GDPR applies to any business that deals with the personal data of EU citizens. This may mean you – even if your business…
“breach” An act of breaking or failing to observe a law, agreement, or code of conduct. A break in relations. A gap in a wall, barrier, or defence, especially one made by an attacking army\ Oxford English Dictionary Last week’s revelation that the personal information of over 30 million South African has been compromised. The exposure…
The most recent McKinsey-IIF survey on risk data and technology shows that banks are making significant investments in data management in order to meet BCBS 239 and other compliance targets. Ironically, according to bank’s own quantified self assessments, overall compliance levels have declined since 2015 in spite of this investment. Why is this? For regulatory…
Until a couple of weeks ago, I had never even heard of GDPR – the new General Data Protection Regulation set by the European Union (EU). And yet, for companies offering or wanting to offer services to clients located in Europe, the implication of infraction are clear: very high fines. This new European legislation, which…
