Governance

Good governance is essentially the governing body of an organisation leading it in an ethical and effective way. IT Governance or (information technology governance) is part of good governance and has become a hot topic worldwide, but especially due to the prominence it is given in the King Report and King Code on Corporate Governance. It is part of corporate governance and is not the same as IT compliance. Gartner defines it as “the processes that ensure the effective and efficient use of IT in enabling an organisation to achieve its goals.”

King V Code published for application

The final King V Code on corporate governance was published on 31 October 2025 by the Institute of Directors in Southern Africa (IoDSA). It is approximately 20 pages long and includes only the code (unlike previous versions, which also included [...]

By |2025-11-03T10:56:58+02:00October 31st, 2025|Categories: Data governance, Governance, Information Law|Tags: , , |
Read More

King V and cybersecurity – locking down corporate governance

The King V Code is changing corporate governance in South Africa by moving cybersecurity from a purely technical issue to a central responsibility for company boards. The Institute of Directors in Southern Africa (IoDSA) published King V's draft on 24 [...]

By |2025-05-26T14:58:04+02:00May 26th, 2025|Categories: Cybersecurity Law, Governance|Tags: , , |
Read More

Book on Rules by Eisen | Respectful Policies and Directives

As a lawyer, I’ve encountered many policies over many years. I’ve read, reviewed, interpreted, and drafted them. I now realise that they were almost all horrible. I’ve seen the light and woken up to a whole new world. The light [...]

By |2025-08-18T09:27:43+02:00January 22nd, 2025|Categories: Governance, IT Law, POPI and Data Protection|Tags: , , |
Read More

The difference between a policy, procedure, standard and guideline

We have assisted many organisations over the years with their policies and policy framework. We've noticed that policy drafters are often confused about the difference between a policy, procedure, standard and guideline. They use these concepts interchangeably or include [...]

By |2025-12-05T14:16:40+02:00January 11th, 2025|Categories: Governance|Tags: , , , |
Read More

Reviewing and updating IT policies

Think of IT policies as scaffolding around a growing building: they create structure, offer protection, and adapt as the organisation expands. However, this scaffolding must be adjusted regularly as technology advances and regulations shift. Organisations must treat IT policies as [...]

By |2024-11-08T15:21:16+02:00November 7th, 2024|Categories: Governance|Tags: , |
Read More

Effective IT policy-making

Creating effective IT policies is like carving intricate designs out of wood; each carefully shaped policy contributes to the ultimate structure of your organisation. This article explores how well-crafted policies can help you meet compliance requirements without alienating those who [...]

By |2024-08-27T16:05:28+02:00August 27th, 2024|Categories: Governance|Tags: , |
Read More

BCDR testing: Everything you’ve ever wanted to know

In today’s fast-paced and digitally connected world, business continuity and disaster recovery (BCDR) are more crucial than ever. BCDR testing is pivotal in ensuring an organisation can quickly resume operations after a disruptive event. In this post, I delve into [...]

By |2024-08-26T21:45:19+02:00January 11th, 2024|Categories: Governance|
Read More

Ten practical steps to draft a business continuity policy

A well-crafted business continuity policy is essential for your organisation to navigate unexpected interruptions while ensuring the continued delivery of products and services. Because of industry confusion, most people think a business continuity policy and plan are the same. But [...]

By |2024-08-26T22:02:00+02:00July 16th, 2023|Categories: Governance, Policies|Tags: , |
Read More

Practical steps to drafting business continuity objectives

Drafting effective business continuity objectives is vital to implementing ISO 22301 and developing a robust Business Continuity Management System (BCMS). However, many organisations face challenges in understanding the types of objectives, their purpose, and how to set them. In this [...]

By |2024-08-26T21:58:49+02:00July 15th, 2023|Categories: Contracts, Governance|Tags: |
Read More

Conducting a business impact analysis for business continuity

In the ever-changing and unpredictable business world, having a thorough understanding of the potential impact of disruptions on your operations is essential. Further, this understanding empowers you to plan proactively for and mitigate against disruptions. One crucial tool that plays [...]

By |2024-08-26T21:53:31+02:00May 24th, 2023|Categories: Governance|Tags: , |
Read More

Business continuity: Everything you’ve ever wanted to know

Let’s talk about business continuity. The post is aimed at organisations looking to ensure they can continue operating during unexpected disruptions. In brief, the post describes business continuity and its objectives and value. You’ll also get a detailed description [...]

By |2024-08-26T21:15:44+02:00April 29th, 2023|Categories: Governance|
Read More