VCA has been a national Human Resources Development (HRD) provider and outsourced HR consultancy since 1996.
In 2 easy steps we will have all the information we need to assess your POPI Compliance.
Please complete your details below
Please answer all the questions below.
All business are required to become compliant. This requires an extensive gap analysis as well as a plan to make significant policy and operational changes in the way a business manages data and inforamtion
All businesses must collect data from the data subject and a business must have the burden of proof when obtaining such consent.
POPI Act of 2013 - Condition 6, subsection 17 and 18
How to market to your clients and customers have stricter restrictions.
POPI Act of 2013 - Chapter 8 subsection 69
The POPI Act provides clear guidelines to which a business can transfer personal information beyond the South African Borders.
POPI Act of 2013 - Chapter 9 Subsection 72
The act is clear that a data subject has rights to keep their inforamtion safe. This does require from a company to be aware of their client lists, their client data base and repositories as well as linking any other process where information may exist within a company to ensure that they can affect a data subjects request to change/delete or update any of their data.
POPI Act of 2013 - Condition 8; Subsection 23 - 33
The penalties for noncompliance is far reaching, this may include a fine or prison sentence or both and civil lawsuits. But even more damaging is the reputational damage a company may face and that may in actual fact be more damaging than the aforementioned consequences.
POPI Act of 2013 - Chapter 11 subsection 100-109
The 8 conditions are prescribed guidelines in the act that indicates the various requisits that business must have in place when addressing their compliance inititatives.
POPI Act of 2013 - Chapter 3; Part A; Subsection 8 - 25
Contrary to popular belief, companies assume that if they have password protection and encryption that it is enough to protect the company. However, physical security is just as important and collecting data from the moment you enter a company right through the information lifecycle requires protect or some form of security measure.
POPI Act of 2013 - Condition 7 Subsection 19-25
Our team has over 5 years of experience in POPI compliance specialising in the small to medium enterprise.