Gain insights on the latest regulatory updates related to digital, data and tech and what action they require of you by reading the latest updates (including alerts).
Only some are linked below. To read all previous insights and be alerted to future insights, join the relevant Michalsons programme. You can view the public and the “Members only” ones if you are a member and logged in.
Zimbabwe’s Cyber and Data Protection Act clearly sets out how organisations must collect, use, and protect personal information. Alongside the Cyber and Data Protection (Licensing of Data Controllers and Appointment of Data Protection Officers) Regulations, it forms a comprehensive legal [...]
Today, the South African information regulator held a webinar called "Ask the Regulator". The purpose of the webinar was to allow participants to ask the regulator questions and for the regulator to encourage and support them in complying with POPIA and PAIA. We understand that many people are busy and cannot dedicate an hour and a half to a webinar. Hence, we attended the webinar on behalf of our members. We've recorded a short three-minute Michalsons Microclass, which provides a summary of what happened and the key points from today's session. To access this content, join a Michalsons programme. If you are already a member and logged in, you will be able to view both public and “Members only” content.
The POPIA Amendment Regulations commenced with immediate effect on 17 April 2025. These amended regulations cover new proposed rules of procedure, administrative fines, and expand the data subject's rights to their personal information. In this post, we summarise the regulations, [...]
The information regulator published a Guideline on notification of security compromises to the information regulator in July 2020. The guideline explains the procedure responsible parties or information officers should follow to notify the regulator of a security compromise or data [...]
The information officer of every public body in South Africa must submit a PAIA section 32 report to the Information Regulator annually. Section 32 of PAIA makes it compulsory - a regulatory requirement. PAIA gives effect to section 32 [...]
All private bodies must submit a PAIA section 83(4) report (PAIA report) to the information regulator according to a notice the regulator published. The regulator has requested private bodies to submit this report annually in terms of section 83(4) [...]
The Department of Trade, Industry, and Competition (DTIC) plans to make CPA amendments to the Consumer Protection Act (CPA) regulations. These CPA regulation amendments aim to address direct marketing practices in South Africa by introducing a National government-run opt-out registry [...]
The Copyright Amendment Bill will have a significant impact on publishers. The bill aims to strike a balance between creators’ rights and the public's access to copyrighted works. While the bill includes some much-needed updates, it has sparked considerable debate [...]
The Botswana Data Protection Act, 2024 (the new Act) has officially come into effect on 14 January 2025 after the Data Protection Act of 2018 (the 2018 Act) was repealed after facing multiple delays since its transition in 2021. The [...]
The South African National Policy on Data and Cloud was published in May 2024. Data is at the heart of everything and so it is hard to imagine a more important government policy. If South Africa gets its government [...]
As AI technologies continue to advance and permeate various sectors, the European Union is taking proactive steps to regulate their impact on society. Two legislative initiatives aim to address the complexities surrounding the liability of AI. The revised EU Product [...]
Help develop South Africa's AI Policy Framework by contributing your input. The Department of Communications and Digital Technologies (DCDT) has called upon the public and stakeholders to provide its comments on the recently published South African AI Policy Framework. [...]
