Zusammenfassung des Schutzgesetzes für personenbezogene Informationen, POPI Act, POPIA, südafrikanisches Datenschutzgesetz.
POPIA is the The General Data Protection Law in South Africa. Along with other privacy laws, defines the new rules for website tracking and tracking cookies in large scale.
The Protection of Personal Information Act (POPIA) is South Africa’s data protection law similar to GDPR. The purpose of POPIA is to protect people from harm by protecting their personal information. It has the similar defination like GDPR: The data subject, The responsible party (data controller), The operator (data processor).
POPIA allows companies and organisations to process data if it's deemed in the user's "legitimate interest". POPIA defines consent as any voluntary, specific and informed expression of will.
The consent of the data subject is central. Websites, companies and organisations have to prove that their processing is lawful, consents have been obtained from users.
The POPI commencement date is 1 July 2020 with 12 months grace period which makes the deadline for organisations to comply 1 July 2021.
Any company or organisation processing personal information in South Africa, who is domiciled in the country, or not domiciled but making use of automated or non-automated means of processing in the country.
Including adtech and social media companies make use of automated processing.
Personal information is only allowed to be processed if the end-user consents to the processing, including to the specific purposes for which the personal information is being collected.
A user can withdraw their consent at any time.
Use a consent management platform like UniConsent to offer consumers full control of data collection, opt-out features, manage the preferences communication for POPIA compliance together with GDPR.
All eight conditions must be met when processing personal information lawfully under POPIA. The consent of the data subject is central. Websites, companies and organisations have to prove that their processing is lawful, consents have been obtained from users.
The main supervisory and enforcing body under POPIA is the Information Regulator, SAIR.
POPIA and the GDPR have the almost identical definitions of consent.
POPIA definition: "any voluntary, specific and informed expression of will in terms of which permission is given for the processing of personal information"
Beginnen Sie damit, Ihre Website und Anwendung gemäß EU-DSGVO, US-CPRA, CA-PIPEDA usw. konform zu machen
Registrieren