Who does the Data and Cloud Policy apply to?
The policy applies to the government, its service providers, and private entities processing government data.
What is the difference between a policy intervention and a policy proposal?
Policy interventions are actions the government is currently implementing, while proposals are suggestions for future actions.
Is there a standard definition of what a ‘cloud’ is?
The National Institute of Standards and Technology (NIST) defines cloud computing as "a model for enabling ubiquitous, convenient, and on-demand network access to a shared pool of configurable resources (e.g., networks, servers, storage, applications, and services) that can be rapidly [...]
Is there insurance specifically for cybercrimes?
Yes. There is cyber risk insurance, for your own loss, and cyber liability cover.
Who should be the designated or deputy information officer?
Now, there is a question. It depends on the organisation, but often, it is someone in legal or compliance. But no formal qualifications are required by law. It is essential that the person you select as your information officer (IO) [...]
How do I register my information officer on the Information Regulator portal?
Responsible parties should register their information officer online (encouraged) as soon as possible. Failing to register your information officer is not a criminal offence, but there can be severe consequences. If you struggle to register on the portal, we [...]
What are some things to look out for when picking an AI system?
These are some of the things to keep in mind when deciding which AI system is best suited to you. You should; choose AI that aligns with your strategic objectives, determine your risk appetite (what are the risks involved and [...]
How do I protect highly sensitive data when implementing AI in business?
AI processes large volumes of data which can include personal data. Because your AI systems processes personal data, data privacy laws will apply. Our Trustworthy AI Programme includes a step-by-step guide to ensure your business manages the data protection and [...]
How do I deal with ethical issues and bias within AI?
Your most important aspect of ensuring ethical and non-discriminatory outputs is to raise awareness about the potential of discriminatory outputs generated by AI. One way to achieve this is to have a human in the loop who is able to [...]
Where do I start when implementing good corporate governance for developing and using AI internally?
Organisations must establish a comprehensive plan, clearly defining roles, responsibilities and actions. The first step would be to complete an AI impact assessment. Once you have a good understanding of how AI impacts your organisation, you can put policies and [...]
How can AI support my business?
You can start by completing an AI readiness assessment, identifying areas where you may want to use AI and what you want it to do. AI comes in many forms and can perform many functions from automation to data analytics. [...]
What AI laws are there in the South African context? And what direction should we be taking as a country?
South Africa doesn’t have any AI-specific laws in place. We recommend relying on existing legislation such as POPIA and the principles of the Constitution in the development and deployment of AI. South Africa is not unique in not having AI-specific [...]