In Lester Connock Commemoration Fund v Brough Capital, the high court held Brough Capital liable for a breach of agreement in administering funds for the Rotary Club of Rosebank. The court found that fraudulent email transactions totalling R3.1 million occurred [...]
On 30 October, President Joe Biden issued a comprehensive executive order on artificial intelligence (AI). The executive order marks a significant step towards addressing the challenges and leveraging the benefits of this rapidly evolving technology. The executive order prioritises standards [...]
Last week, the information regulator issued PAIA compliance notices to several public and private bodies in terms of the Promotion of Access to Information Act (PAIA). Although the regulator's notice is addressed to public bodies and to "Deputy Information Officers", [...]
On Friday, 6 October, I listened in on an interesting interview with Adv Pansy Tlakula. She shared some interesting insights about the regulator's work, the status of certain enforcements and some projects they are working on. I decided to share [...]
The information regulator issued a Dis-Chem enforcement notice to Dis-Chem Pharmacies for non-compliance with the Protection of Personal Information Act (POPIA). In April 2022, an unauthorised party gained access to more than 3 million data subjects' records from Dis-Chem's database. [...]
The DMASA Code of Conduct has been in the works for some time. The Direct Marketing Association of South Africa (DMASA) call it the Direct Marketing POPIA Code of Conduct. The regulator has received a code of conduct from the Direct [...]
The information regulator issued an enforcement notice to the Department of Justice (DoJ) for contravening the Protection of Personal Information Act (POPIA). The regulator found that the DoJ breached POPIA by failing to secure the personal information of over 250,000 [...]
In 2014, the African Union (AU) Convention on Cyber Security and Personal Data Protection adopted a legal framework for addressing cybercrime and data protection in Africa. The Convention is also known as the Malabo Convention and several African countries signed [...]
The information regulator issued its first enforcement notice to SAPS. After conducting an independent investigation, the regulator found that SAPS breached several conditions for the lawful processing of personal data. The regulator also found that SAPS failed to notify the [...]
Data protection fines in Africa are on the rise as more authorities enforce compliance with data protection laws. Data protection authorities in Angola and Kenya have hit the ground running by enforcing data protection laws. In this article, we highlight [...]
Since 2022, the number of data protection laws in Africa has been increasing steadily. And new laws create new compliance obligations. That’s why it is important for organisations that have a presence, or customers in Africa, to understand what data [...]
The Information Regulator published a notice calling for comments on the draft POPIA Rules for the Enforcement Committee (Committee). The draft Rules outline the Procedure that the Enforcement Committee must follow when the regulator refers a POPIA complaint to them [...]
