The Protection of Personal Information Act (PoPIA) commenced on 1 July 2020 with a grace period of 12 months meaning that official enforcement will commence on 1 July 2021. PoPIA is the latest major data privacy law in the world, modelled alongside the EU's General Data Protection Regulation (GDPR).
The Act has altered the management of personal data amongst businesses in South Africa. Thomas Vollrath, 1-grid CEO states that “initially we were concerned about our small- to medium-sized enterprises as the new regulation may be intimidating as a result of the implications of non-compliance”.
Those who do not comply could suffer a fine of R1m to R10m, imprisonment of one to 10 years or be required to financially compensate the data subjects for the damages that they have suffered as a result of non-compliance. Vollrath adds, “these implications are large and will impact our SME’s significantly. As a hosting provider to a large number of South African SME’s, we ensure that all of our customers receive the highest levels of security and confidentiality”.
The South African government has allowed a grace period of 12 months meaning that our SME’s have another four to five months to prepare for the enforcement.
To read more on the article titled "Lessons from Africa on climate change adaptation" click here