We regularly consult with business owners who, when considering their compliance responsibilities, react thereto in love-hate terms. On the one hand, there is a positive response where compliance is constructively applied to the business’ own day-to-day running procedures and management. On the other hand, it appears less rosy where it is presented as a must-do red tape exercise, with a threat of financially damaging penalties for non-compliance imposed by government.   

Fortunately, compliance with POPI is neither of the above and we will illustrate this in our information messages this month by debunking the following myths:

  1. POPI is actually for big businesses to worry about, not so much the smaller ones
  2. POPI is an “IT” thing
  3. One-size-fits-all bundles are OK to achieve POPI compliance
  4. POPI is unnecessary red tape and another way for government to get at businesses
The Protection of Personal Information Act (POPI or POPIA), in the most simple terms, sets out ways in which businesses must deal with personal information that they hold. This includes personal details of their employees, as well as the personal details of their customers, clients and service providers, whether the customers and clients are individuals or other businesses/entities.

No matter the size of your business operation, you will hold (i
.e., record) details of your customers, employees and third parties that provide services to you, online or on paper. As such you should now commence steps to make sure the information is safeguarded as required by POPIA, to be compliant when the Act becomes enforceable in July 2021. Our Blog post this later this week will elaborate on this aspect in detail. Sign up here to receive this blog post series. 

Contact us should you have enquiries or need information on your compliance journey at