November 23, 2021
South Africa’s comprehensive Protection of Personal Information (POPI) Act is now in effect. It is one of the world’s most sweeping regulations around personal information and carries hefty fines for businesses that break the law. In short, the POPI Act outlines how businesses, websites and government departments can process the personal information of their customers or citizens.
While the POPI Act does not require companies to get consent from customers to process their private details, they do need to comply with the 11 strict conditions detailed in the legislation. This Act was initially passed in 2013 but South Africa had until 1 July 2021 to fully comply with the new laws.
The POPI Act is important because it protects the personal information of citizens from theft, discrimination or misuse. This information includes names, nationalities, ages, bank account numbers and health statuses. While this Act has posed many obstacles for businesses in financial services, healthcare, marketing and information technology, it does mean that the people of South Africa are less likely to fall victim to identity theft, data hacks and scammers.
Internet users routinely enter personal information into social media sites, e-commerce stores and official websites. Many people may have Googled their own names and been surprised at how much information is stored in the results pages. The POPI Act now allows internet users to request the removal, correction or destruction of personal information from search engines and websites.
They are allowed to do so if the information is inaccurate, irrelevant, out of date, incomplete, misleading or if it has been obtained unlawfully. Businesses, websites and online stores are held accountable for this information and must act on any request by a citizen if it falls in line with the legislation. This is a massive improvement for privacy and control over one’s personal data.
All businesses must now comply with the POPI Act and ensure that their customers’ personal information is protected from theft, unauthorised access, interference, modification, destruction and disclosure to third parties. Chapter 3 of the Act prescribes the eight conditions (and three additional conditions) that a company or website must meet when processing personal data. Some of the most noteworthy points are outlined below:
This Act obviously holds significant implications for businesses that deal with private information, such as banks, insurance companies, healthcare, schools and online stores. Failure to comply with the laws can result in hefty penalties; fines up to R10-million and/or up to 10 years in jail. This is why it is vital for companies to be aware of the Act and ensure that they follow the regulations properly.
SEACOM owns Africa’s most extensive network of information and communications technology (ICT) infrastructure, including subsea cables and secure internet connections. We offer a diverse range of flexible, scalable and high-quality solutions for businesses that meet world-class standards for connectivity.
SEACOM is privately owned and operated, making it agile and adaptable to the needs of the customer. This makes us the preferred ICT and internet connectivity partner for African businesses and peripheral service providers. We can guarantee high-speed, low-latency and secure internet connections to corporates and small enterprises.
For more information on our internet and voice solutions, follow us on LinkedIn, Facebook or Twitter. Keep an eye on our news section for insightful articles and relevant news stories on African ICT, internet connectivity and our leading cloud and security solutions.
Need internet for your home? Our subsidiary, WonderNet, brings fast and cost-effective broadband internet to all Africans with a fibre-to-the-home offering.
Site by UNOMENA | © 2024 SEACOM. All rights reserved.