The Protection of Personal Information Act (POPIA) requires every public or private body that determines the purpose of, and means for the processing of, personal information to appoint and register an information officer and deputy information officer with the Information Regulator. Who is the Information Regulator? One can describe the Information Regulator as “an independent body established in terms of section 39 of the Protection of Personal Information Act 4 of 2013. It is subject only...

An essential aspect of complying with the Protection of Personal Information Act 4 of 2013 (hereinafter ‘the Act”) is informing Data Subjects of security compromises/data breaches. This appears to be amplified by the digital era, where companies store most of their data on digital platforms, thus opening themselves to possible data breaches. In terms of Section 22 of the Act, a responsible party, any public or private body who process information on paper or electronically within South Africa,...

What is the Consumer Protection Act? The Consumer Protection Act (the “CPA”) has been promulgated into law to regulate the terms in which consumers enjoy special protection against suppliers, which main goals are to: Prohibit certain unfair marketing and business practices; Promote a legislative and enforcement framework referring to consumer transactions and agreements; Provide for improved standards of consumer information;Establish norms and standards relating to consumer protection; andTo...