On 2 December 2020, the National Assembly passed the Cybercrimes Bill and accepted the amendments made by the National Council of Provinces. The Cybercrimes Bill has been amended throughout the years since it was first introduced, but this latest version is the final version that will become law. This is the signal that it is time to take action in your organisation to prepare for the enactment.

What does this mean?

This means that the Bill is now with the President awaiting his signature so that it can become law.

Why is the Cybercrimes Bill important?

South Africa needs a law that deals effectively with cybercrimes. South Africa has one of the highest rates of cyberattacks and many people have been victims of cybercrime. The Cybercrimes Bill will play a significant part in the fight against cybercrime as it sets out what the crimes are, and the various penalties for committing these crimes. For example, if you are an electronic communications services provider (ECSPs) or a financial institution, you will have certain incident reporting requirements in terms of the Cybercrimes Bill. So you will likely have to review your policies (such as infosec policies) and agreements to ensure that these requirements are recorded in your documents.

With the world facing the current coronavirus pandemic, there is an even greater risk of cybercrimes. Whether it is security concerns when working remotely or an increased risk of cyberattacks to businesses that have resumed operations, it is still very important that our law can address these concerns and provide assistance. We need the Cybercrimes Bill now more than ever.

What action should you be taking today?