The Protection of Personal Information Bill was signed into law on 19 November 2013 and published in Government Gazette number GG 37067 on 26 November 2013.
The commencement provision of the now Protection of Personal Information Act provides that the date on which the Act will come into force will be determined by the President through a proclamation to be published at a later date.
What does this mean?
What this means is that the 1 year grace period provided for in the Act, will only commence on the date announced by the President in the near future.
Do I have to be concerned?
The fact that the Act is now law, and not merely a bill, is significant. It enables the formation of the regulator and other administrative aspects to gear up for policing the Act. The message in this latest move is thus clear: compliance with the Protection of Personal Information Act will soon be required, businesses who can effectively leverage data analysis opportunities, cross border data transfer efficiency and secure outsourced data management relationships while implementing compliance will most certainly have the competitive advantage.
What do I do next?
For more information on when compliance is required, and to enquire about a POPI Readiness Assessment, contact:
Dean Chivers, email: firstname.lastname@example.org
Tel: +27 11 806 5159
Daniella Kafouris, email: email@example.com
Tel: +27 11 209 8101