POPIA compliance takes a team!
The Protection of Personal Information Act 4 of 2013 (“POPIA”) was signed into law on 19 November 2013 and draws extensively from the predecessor of the European Union’s General Data Protection Regulations (“GDPR”) which came into play on 25 May 2018. The President of South Africa announced that POPI would commence on 1 July 2020. South African businesses have until 30 June 2021 to be fully compliant.
THSA offers information mapping, digital marketing and end-user training that will help you put in place a practical plan on your road to compliance. This is not a legal service.
Kick-start your POPIA compliance
with a practical one day workshop.
End the day with an actionable PLAN!
What is POPIA all about?
POPIA regulates how your personal information may be collected, used, stored, and destroyed by the party collecting it. POPIA protects your right to privacy.
What is the cost of non-compliance?
Section 107 of POPIA makes provision for fines and even imprisonment. Other risks include reputational damage to your business or brand.
In this one day comprehensive session, we cover:
- Overview of the POPI Act with focus on Condition 7 of Chapter 3, Security Safeguards and Section 69 of Chapter 8, Direct Marketing.
- A comprehensive look at protecting your network and keeping data safe (firewalling, anti-virus, data encryption and more).
- Practical guidance on online and email advertising from industry experts in ICT and Marketing.
- How to protect your personal data in the office in a practical way.
Modules
Module 1 (Module 1 is offered to put module 2 in context)
- What is POPIA about?
- Where did it all start?
- Definition of terms and the responsibility of the responsible party What is personal data?
- What is lawful processing? The 8 conditions explained
- What about information in the public domain?
- How is direct marketing affected?
Module 2
- ICT services at the heart of POPIA
- Security Safeguards (Chapter 3, Condition 7) Guidelines from the United Kingdom Information Commissioner (Firewalls, end-point security, encryption, storage, destruction and access control)
- What more can I do to protect my data? A practical guide
- The importance of user training and effective policie
- Website security overview, from SSL to user login best practice
- A company assessment and action plan conclude every session.
- Your Action Plan on the Road to Compliance Starts Here!
End the day with a comprehensive company Assessment.
Walk out with an actionable PLAN!
What does the session not cover?
Our practical session is not a legal discussion and does not include an executive briefing by an attorney. We encourage all our attendees to meet with a data protection compliance legal expert before 30 June 2021. Your attorney will, however, refer you to IT, Communication and Marketing providers in addition to their legal services to help you put in place a practical data protection plan. If you have opted for this one day practical session, you have already completed a necessary step! Take your assessment with you to your attorney. He or she will ask you for it!
This session does not include information mapping. Information mapping is a crucial step in ensuring that the flow of information in your business is documented. We do, however, offer information mapping and end-user training services. Please ask the speaker for more information about our services after the session. We also offer, in collaboration with NCC Central (Pty) Ltd, end-user training to ensure that employees know how to avoid common scams that can potentially lead to a data breach.
ICT Security Specialists. Protect your data for any size business.
Branding and Marketing. Protect your brand.
Accrete CRM. Compliant, sales-focused CRM software.
Communications, Information Mapping and Digital Marketing.