Contact

POPIA update: POPIA regulations are coming into effect and the guideline on the codes of conduct is published

Back to top

POPIA update: POPIA regulations are coming into effect and the guideline on the codes of conduct is published

On 26 February 2021, the Guideline to Develop Codes of Conduct (Guideline) was gazetted and notice was given that Regulations issued in terms of the Protection of Personal Information Act 4 of 2013 (POPIA) are coming into effect. In relation to the Regulations, the Government Gazette (No 44191) notified that Regulation 5 (relating to the application for issuing of Codes of Conduct) is effective as of 1 March 2021. Regulation 4 (relating to certain responsibilities of Information Officers) will be effective on 1 May 2021 and the rest of the Regulations will come into effect on 1 July 2021.

2 Mar 2021 2 min read Technology, Media & Telecommunications Alert Article

At a glance

  • The Regulations issued under POPIA will have different effective dates: Regulation 5 (application for issuing Codes of Conduct) was effective from 1 March 2021, Regulation 4 (responsibilities of Information Officers) will be effective from 1 May 2021, and the remaining Regulations will come into effect on 1 July 2021.
  • Information Officers will have specific responsibilities under Regulation 4, including developing a compliance framework, conducting personal information impact assessments, maintaining an access to information manual, implementing systems to process requests for information, and conducting internal awareness sessions.
  • The Guideline to Develop Codes of Conduct has been published, providing guidance for industry bodies to apply for the approval of codes of conduct by the Information Regulator. Businesses need to ensure their processing of personal information aligns with POPIA provisions before the full implementation of the Regulations on 1 July 2021.

Responsibilities of Information Officers

With Regulation 4 being effective as from 1 May 2021, information officers will be required to comply with the following:

  • develop, implement, monitor and maintain a compliance framework;
  • undertake a personal information impact assessment to ensure that adequate measures and standards exist;
  • develop, monitor and maintain an access to information manual required in terms of the Promotion of Access to Information Act 2 of 2000 (PAIA) (commonly known as a PAIA manual);
  • develop internal measures and systems to process requests for information or access; and
  • conduct internal awareness sessions.

This would mean that the Information Regulator is likely to communicate the mechanism or process to allow for the registration of information officers in the coming weeks, in order that information officers may assume their duties.

Issuing a code of conduct under the Guideline

Chapter 7 of POPIA provides for the development of codes of conduct which may apply to certain types of personal information, specific industries, professions, bodies or to specific types of activities. 

The Guideline which has been published, is for the development of codes of conduct by the relevant industry bodies in terms of section 65 of POPIA. The Guideline provides guidance to industry bodies on the making of an application for a code of conduct to be approved by the Information Regulator. The Regulations prescribe the form for such application to the Information Regulator which may be submitted as from 1 March 2021.

With the remainder of the Regulations to commence on 1 July 2021, it is now more important than ever for businesses to ensure that their processing of personal information complies with the provisions of POPIA.

The information and material published on this website is provided for general purposes only and does not constitute legal advice. We make every effort to ensure that the content is updated regularly and to offer the most current and accurate information. Please consult one of our lawyers on any specific legal problem or matter. We accept no responsibility for any loss or damage, whether direct or consequential, which may arise from reliance on the information contained in these pages. Please refer to our full terms and conditions. Copyright © 2025 Cliffe Dekker Hofmeyr. All rights reserved. For permission to reproduce an article or publication, please contact us cliffedekkerhofmeyr@cdhlegal.com.

You might also be interested in

30 Oct 2024

by Kate Anderson and Keagan Hyslop

50/50 shareholders and oppressive conduct: When some shareholders are more equal than others

A fundamental principle of South African company law is “ majority rules ” – shareholders and directors are bound by the decisions of the majority even where such decisions are not in their interest. However, recognising the potential for unfair abuse of such a principle, the Companies Act 71 of 2008 (Companies Act) devised section 163, which allows a director or shareholder of a company to apply to court for relief from oppressive conduct of the company or a person related to it that unfairly disregards or prejudices the interests of the applicant. Section 163 therefore paints the picture of a majority shareholder abusing its ability to control the company to unfairly bully or oppress minority shareholders. But what happens if the shareholders are equals – can a 50/50 shareholder be oppressed by their equal? This was the question before the High Court in Van der Watt v Schoeman and Others 91 SA 531 (ECGq).

Corporate & Commercial Law

4 min read

3 Oct 2024

COSATU’s nationwide protest: Monday, 7 October 2024

The Congress of South Africa Trade Unions (COSATU) has notified the National Economic Development and Labour Council (NEDLAC) of its intention to hold nationwide protests in all majormetropolises. 

Employment Law

1 min read

2 Apr 2025

by Chané Stievenart

The security options available when transacting with contract mining service providers or the holder of a mining right

When transacting with the holder of a mining right or a service provider who provides mining services (contract miner) in a transaction which requires security, there are certain security options available to the parties. A very brief outline of some of the security options are considered below.

Corporate & Commercial Law

4 min read

7 Nov 2024

by Thobeka Dhlamini

Justice and Public Interest on the Mic - Episode 2 - Trusts & Estates

Since 2011, CDH's Pro Bono & Human Rights practice (Pro Bono practice) has been at the heart of our firm's commitment to making a real difference. Over the past decade, our Pro Bono practice has passionately championed the cause of public interest, providing pro bono legal support to clients in need. The decision to establish a dedicated practice was motivated by our belief in giving back to the communities in which we operate and in the power of the legal profession to spark positive change.

Pro Bono & Human Rights

11:02 Minutes

31 Jan 2025

by Burton Meyer and Denise Durand

The dispute resolution landscape for the mining industry in South Africa

South Africa, a country rich in minerals, presents significant opportunities, as well as challenges, for international investors seeking to invest in South Africa and beneficiate minerals for the good of the local and global economies. Investment in South African minerals, whether in the form of debt funding or equity, requires knowledge and understanding of the context and legal frameworks within which such investment is made.

8 min read

19 Nov 2024

by Belinda Scriba, Claudia Grobler and Luke Kleinsmidt

Tribunal takes no nonsense with director removals

Section 71 of the Companies Act 71 of 2008 (Act) sets out the process of removing a director of a company. Usually, subsections 3 and 4 would apply, which prescribe (i) a shareholder or board resolution authorising such removal; and (ii) prior notice of such resolution being given to the affected director. In the case of Howard N.O v Powell and Another (CT01682ADJ2024) COMPTRI 57 (24 May 2024), the Companies Tribunal (Tribunal) confirmed the process of the alternative mode of removal of a director when there are fewer than three directors in theboard.   

Dispute Resolution

5 min read

This website uses cookies to enhance the browsing experience. For more information, please see our Cookie Policy.

Accept Decline