JCSE director, Professor Barry Dwolatzky, said that POPI regulates how anyone who processes personal information must securely manage this information: "While the law is not yet in force, it is very important for businesses to ensure that they can comply with its stringent requirements."
Dwolatzky said that while the government still has to announce a commencement date, IT businesses must use the time to prepare adequately and ensure they are compliant: "When POPI commences it will place stringent responsibilities on companies accountable for managing personal information. There will be severe penalties if the Act is not complied with, which could also include a prison sentence."
The Act applies to any information regarding customers or suppliers, including contact details and correspondence; human resources and payroll data; curricula vitae, applications for employment, CCTV records, performance reviews and internal email records. POPI also covers cross-border data transfer requirements, as information may not be relocated to countries with inadequate information protection frameworks.
With an objective to improve IT processes and educate IT professionals, the JCSE in collaboration with Jozihub, will be hosting an information session where POPI and its impact on IT professionals will be explored. Guest speaker Danie Strachan, partner of Adams and Adams and a member of the Law Society of the Northern Province and a fellow of the South African Institute of Intellectual Property Law, will provide insight into POPI and what IT professionals need to know.
The session will be held on Wednesday, 16 April, from 6pm-8pm at the Jozi Hub, 44 Stanley Road, Milpark, Joburg.
To register, go to www.quicket.co.za/events/4726-the-popi-act
