For many businesses, POPIA is becoming that “monster under the bed”, almost paralysing them from implementing the necessary.
POPIA is less of a monster than current trends make it out to be. In most basic terms, it requires of businesses and organisations to put their best efforts in place, or at the very least to be working towards it, to ensure that the data they collect of clients, is dealt with in a way that secures the privacy thereof, within the requirements of the relevant business transaction.
POPIA does indeed make provision for fines of up to R10 million and a jail sentence of up to 10 years, depending on the seriousness of the breach; but POPIA’s aim is not to penalize but rather to convince businesses to establish good business governance principles with regards to the personal information that they deal with. Take the prompt from Barack Obama’s words: “The best way to not feel hopeless is to get up and do something.”