POPI Compliance
Data compliance can be a daunting task, but we're here to help. With JJR Inc. on your side, you'll be able to quickly and easily meet all the requirements of the law. Get started today and let us help you take the hassle out of POPIA compliance!
Understanding POPI Compliance
The following fields within the POPI Compliance department of JJR Inc. are covered:
- To promote the protection of our personal information when it is given to private and public bodies for processing.
- To introduce certain conditions in order to establish minimum requirements when processing personal information.
- To establish a code of conduct for the processing of personal information.
- Gender, race, marital status, nationality, sex, mental health, religion, belief, language – any information that can identify you as an individual person.
- Education, financial, criminal, medical and employment history.
- Biometrics – physical, behavior, physiological characteristics.
- E-mail address, telephone number, location information.
- Any correspondence of a private nature.
- An individual’s name – if the name could lead to the reveal of information about the individual.
- Any private or public individual who regulates or processes personal information.
- Every company / organization must have a “Responsible Party” who is to ensure and enforce compliance with the Act.
- Each company / organization must implement a Personal Information Policy highlighting and structuring the processing of personal information.
- A mandate or agreement must be implemented by the Responsible Party regarding the processing of personal information.
- The Act comes into effect of 1 July 2021.
- Companies have until 30 June 2021 to have policies put in pace dealing with the regulation, processing and storage of personal information.
- Potential risk of ruining your company / organizations reputation
- Non-compliance could also result in a penalty or fine of R10 Million and / or imprisonment of up to 10 years – depending on the severity of the information breach.
- Anyone within your company / organization.
- The Information Officer can be a full-time or part-time role.
The Act stipulates 8 principles that must be complied with when processing information, namely:
-
- Accountability;
- Participation of data subject;
- Information quality;
- Openness;
- Processing limitation;
- Purpose specification; and
- Security safeguards.
DEPARMENT LEADS
POPI Compliance
The POPOI Act and Compliance department of JJR Inc. is headed by Mr. JJ Jacobs with the assistance of various associates skilled in the field.