Thursday, 24 May 2018

General Data Protection Regulation (GDPR) and POPIA

In case you have been under a rock, or out since the 90’s, after years of preparation and debate, the General Data Protection Regulation(GDPR), which was passed by the EU Parliament in April 2016, comes into full force and effect from 25 May 2018.

What does this mean for South African businesses? Short answer: the GDPR is only relevantif a business processes the personal information of an EU resident.  

Does a South African business that is compliant with the Protection of Personal Information Act (POPIA) need to do anything different to comply with the GDPR?  Yes – but potentially not too much.  As others have noted, POPIA and GDPR are different shades of the same colour – in basic terms, they both attempt to achieve the same thing.

Key with POPIA and GDPR is on-going compliance and having privacy as a core concern.  Compliance is not a once off exercise or a static target and will be an on-going process.

As with all forms of data protection laws, POPIA and the GDPR require opt-inconsent: an expression of will to indicate that the person agrees with his/her data being processed.  In the past, businesses relied on an “opt-out” (tell us to stop if it annoys you, but we will use your information as we please) – this is no longer the case, although communication should still include some form of opt-out mechanism, even after express consent. Further, it must be clear why data is being collected; how it is being collected; why it is being processed; how long it is retained; and finally, if and how it is being shared with other parties.  

In any business – from small to listed entity – documented policies must exist setting out how personal information is collected, processed and used.  This is not rocket science.  But it takes some preparation, thought and plenty administration… 


  1. Great post! I am actually getting ready to across this information, It’s very helpful for this blog.Also great with all of the valuable information you have Keep up the good work you are doing well.

    Devops training in Chennai

    Devops training in Bangalore

    Devops training in Pune

    Devops training in Online

    Devops training in Pune

    Devops training in Bangalore

    Devops training in tambaram

  2. Your very own commitment to getting the message throughout came to be rather powerful and have consistently enabled employees just like me to arrive at their desired goals.

    java training in chennai | java training in bangalore

    java online training | java training in pune

    selenium training in chennai

    selenium training in bangalore

  3. After reading your post I understood that last week was with full of surprises and happiness for you. Congratz! Even though the website is work related, you can update small events in your life and share your happiness with us too.
    python online training
    python training in OMR
    python training course in chennai

  4. Thanks for splitting your comprehension with us. It’s really useful to me & I hope it helps the people who in need of this vital information. 
    Devops training in sholinganallur
    Devops training in velachery
    Devops training in annanagar
    Devops training in tambaram