The Chief Executive Officer of a private body may appoint any natural or juristic person as the entity's information officer. The primary duty of an information officer is to inform and advise the responsible parties on compliance with the conditions for lawful processing of personal information and to assist data subjects make requests, lodge complaints and seek financial compensation.
When appointing an information officer consider the professional experience and expertise the information officer should have in safeguarding personal information, enabling data subject rights, complying with the conditions and available enforcement mechanisms. The required level of expertise is not defined in POPIA or PAIA, but it must be commensurate with the sensitivity the personal information and complexity of the organisation's processing operations.
Our information officers participated in the development of POPIA and have considerable practical data protection expertise. Read more ...
...
...
...
...
...
...
Data protection policies and procedures, data mapping, documenting processing operations, preliminary assessments, safeguards, technical and organisation measures, tools ensure data subjects' rights are protected. Read more ...
A solution to implement and operate a POPI Act compliance framework and monitoring system as well as to handle data subject requests, track resolution of complaints and manage consent. Read more ...
Our experienced information officers have 10+ years practical experience and extensive technical and organisational knowledge to ensure responsible parties comply with the POPI Act. Read more ...