Data protection guidance for local businesses

August 20th, 2018, Published in Articles: PositionIT

The newly released book, A Commentary on the Protection of Personal Information Act, examines the eight conditions of lawful processing, the difference between personal and special personal information and the exemptions, exceptions and exclusions as set out in the Act. The authors set out the powers of the Information Regulator and possible fines, compensation and damages and cover the impact of the POPI Act on several important issues including employment law; non-automated and automated decision-making; outsourcing of processing; marketing and direct marketing; credit reporting and the Internet. It is also one of the first South African publications that covers the requirements for compliance to the General Data Protection Regulation (GDPR) which came into force on 25 May 2018, linking the POPI Act to these compliance obligations and has application to SA companies. POPI will bring South Africa in line with international data protection standards. It is widely accepted that the European Union has been at the forefront of the development of the framework for the protection of personal information. It is for this reason that the authors of the book have relied extensively on the GDPR to provide guidance on how POPI is likely to be implemented.

Contact Shannon Ambrose, LexisNexis South Africa, Tel 031 268-3238, shannon.ambrose@lexisnexis.co.za