Contact

Personal Information: Four key areas to be aware of

Back to top

Personal Information: Four key areas to be aware of

Personal information is everywhere. It is almost impossible to do business these days without collecting personal information of customers, suppliers and employees. Personal information is collected in so many ways, although to an ever increasing extent, online through contact forms, email and the creation of online profiles. The Protection of Personal Information Act of 2013 (POPI) – when it becomes fully operative – will regulate the collection, storage and dissemination of personal information. Businesses must ensure that the necessary consents for the collection, storage and dissemination of personal information are obtained. But first, businesses will need to be clear that what they are collecting is in fact personal information.

30 Jun 2020 3 min read POPI Bumper Special Alert Article

So, what is personal information? Personal information includes, among other things, the following:

  • information relating to the race, gender, sex, pregnancy, marital status, national, ethnic, colour, sexual orientation, age, physical or mental health, well-being, disability, religion, belief, culture, language and birth of the person;
  • information relating to the education or the medical, financial, criminal or employment history of the person;
  • the e-mail address, physical address and telephone number of the person;
  • the biometric information of the person;
  • the personal opinions, views or preferences of the person; and
  • the name of the person if it appears with other personal information relating to the person or if the disclosure of the name itself would reveal information about the person.

There are four key areas of collection of personal information that businesses need to be aware of:

(1) Market research via direct marketing

Collecting personal information is big business. Understandably, businesses can profitably make use of this information to market their products or services. Many businesses undertake research as regards prospective customers by, among other things, accessing information already available in the public domain (for example, through publicly accessible social media platforms and websites) as well as obtaining contact information in respect of potential customers (for example, from a company switchboard). The personal information is then captured and stored to be used for purposes of direct marketing. The business then reaches out to these persons via personalised or mass-generated emails and/or via telephone calls. This is all personal information. Even the personal information of persons who have indicated that they do not wish to be contacted again via direct marketing is required to be stored for a certain period of time.

(2) Online

As noted, most businesses these days also collect information from their clients and customers via their websites. For example, most e-commerce stores require users to complete a profile of themselves, containing personal information. If you collect personal information from your clients or customers, make sure that they are made aware of this in clear and express terms, and make sure that you provide that they expressly consent to the collection, sharing and storage of such personal information. This can be achieved by introducing such consents into the business’s online terms and conditions.

(3) Employment Agreements

A third significant source of personal information that businesses collect, store and disseminate is that of its employees and prospective employees. Employment agreements (including both permanent and fixed term employment agreements), as well as independent contractor and consultancy agreements need to have the requisite provisions in place as regards the collection, storage and dissemination of the personal information. Similarly, any application forms that are used for application purposes will need to contain similar provisions (even if the person never becomes an employee of the business).

(4) Service Level Agreements

Service level agreements (or ‘SLAs’) are a common source of personal information that businesses collect, store and disseminate. This will contain information about customers or third party service providers. Customer-facing service level agreements and third-party supply agreements need to have the requisite provisions in place to ensure that consent is provided to collect, store and disseminate this information.

It is critical that businesses are alive to the personal information being collected, stored and disseminated via market research, online browsing, employment agreements, customer-facing service level agreements and third party supply agreements, and ensure that the requisite approvals are in place from data subjects. The collection, storage and dissemination of all of this personal information will need to comply with the requirements of POPI.

The information and material published on this website is provided for general purposes only and does not constitute legal advice. We make every effort to ensure that the content is updated regularly and to offer the most current and accurate information. Please consult one of our lawyers on any specific legal problem or matter. We accept no responsibility for any loss or damage, whether direct or consequential, which may arise from reliance on the information contained in these pages. Please refer to our full terms and conditions. Copyright © 2024 Cliffe Dekker Hofmeyr. All rights reserved. For permission to reproduce an article or publication, please contact us cliffedekkerhofmeyr@cdhlegal.com.

You might also be interested in

19 Mar 2024

by Fiona Leppan, Kgodisho Phashe and Biron Madisa

Webinar Recording | Health and Safety in the Workplace webinar series: COIDA

Health and safety is an important component of all workplaces. Watch the first webinar discussion of our Health and Safety series.

Employment Law

01:02:02 Minutes

1 Sep 2023

by Brigitta Mangale

Developments in anti-bullying measures in South Africa: Possible jail time for bullies

South Africa is a country plagued by bullying and associated child-on-child abuse. Despite there being five separate pieces of legislation aimed at preventing and addressing bullying among minors in and outside of school, educational institutions, parents, and teachers are still struggling to grapple with the complex nature of bullying. Over the past few months, our country has had a notable increase in minor student suicides, which have been heavily reported to be a consequence of bullying.

5 min read

25 Mar 2024

by Chris Charter

Competition Commission sets sights on digital and social media platforms

Head of our Competition Law practice, recently joined Gugulethu Mfuphi on KAYA FM to discuss the Competition Commission's focus on digital and social media platforms and their impact on quality news media.

10:10 Minutes

8 Sep 2023

by Simone Dickson

Women in the tech industry

Simone Dickson, Consultant in the Corporate & Commercial practice, appeared on eNCA to discuss women in the tech industry.

Technology, Media & Telecommunications

02:16 Minutes

11 Mar 2024

by Abednego Mutie

Revised fees for immigration services in Kenya from 1 March 2024

Kenya is the largest and most advanced economy in East and Central Africa. The country is open for business to well-positioned companies with strategic objectives to tap into the growing potential of emerging markets in theregion.  

Immigration

7 min read

14 Jun 2023

by Albert Aukema and Ruan Jacobs

Striking the balance: The correct approach to competing public interest considerations

The Competition Amendment Act 18 of 2018 (Amendment Act), was signed into law on 13 February 2019 by President Cyril Ramaphosa. It made several significant amendments to the Competition Act 89 of 1998 (Competition Act), one of which was the amendment of section 12A by the addition of a paragraph (e) in subsection (3). This paragraph directs the competition authorities, when considering whether a merger can or cannot be justified on public interest grounds, to consider the effect that the merger will have on “ the promotion of a greater spread of ownership, in particular to increase the levels of ownership by historically disadvantaged persons and workers in firms in the market ”.

Competition Law

4 min read

This website uses cookies to enhance the browsing experience. For more information, please see our Cookie Policy.

Accept Decline