Protection of personal information reviews

With the imminent commencement of the Protection of Personal Information Act all companies will need to review the manner in which they process information, and in particular personal information, in order to comply with the provisions of the Act and other related legislation. In many entities the processing of information is unstructured, with little or any governance and management of the processing. For many entities the necessity of complying with the Protection of Personal Information Act will require a review of their current status, a vision of the status that they need to achieve to ensure compliance, and careful planning to make the changes necessary and implement appropriate technologies (or configurations of existing technology), the documentation of policy, procedures and standards and the development of training materials necessary to achieve the desired status.

To address these requirements and achieve the objectives necessary a multidisciplinary approach, with expertise in information governance, management and security as well as relevant legislation and protection of personal information know-how are minimum requirements.

Protection of personal information reviews may also be supplemented by Privacy Impact Assessments. These are intended to focus on specific information lifecycles, mapped against the Lawful Conditions of processing of personal information required in Chapter 3 of the Protection of Personal Information Act and other legislation or regulation which applies to the information being processed, assessing areas of non-compliance, determining the changes and control measures necessary to achieve compliance and the impact at technology, business and compliance levels that the necessary changes will have to the business conducted by the organisation.

Privacy Online consultants possesses the skills required to review the technology and process within an entity, recommend remedial and development interventions necessary to achieve the desired changes, and the education ability to transfer skills to identified people within the entity.

  • 08 August 2018 - 13:41:00
    On the 25th July 2018 as a result of announcements that were made by Facebook relating to its future revenues the market value of Facebook dropped by US$ 148 billion (or R1,95 trillion). This is almost half of South Africa’s total GDP in 2016.

    While there may be several reasons for the decline in Facebook’s revenue which led to the sell-off of shares, one of the three primary factors for the decrease in projected profitability of Facebook is the focus on privacy and security

  • 08 August 2018 - 13:36:00
    As I wrote in a previous article, South Africa according to the PWC Global economic crime and fraud survey of 2018 suffers the second highest number of cybercrimes of all the countries in the world. While I have no statistics to support this I would suggest that internet banking fraud must rank as one of the primary attack vectors for cybercriminals.

    The Ombudsman for Banking Services of South Africa (Ombud) reported that for the first time in 2017 internet banking fraud was the category of crime that was most prevalent of the disputes that the Ombud has been requested to deal with. No less than 1377 internet banking complaints were closed by the Ombud in 2017. It is clear that significantly more citizens are victims of internet banking fraud as not all of the matters have been referred to the Ombud.