The Protection of Personal Information Act (POPIA) is South Africa’s data protection law. The purpose of the Act is to protect people from harm by protecting their personal information.
The Protection of Personal Information Act involves three parties:
* The data subject: the person to whom the information relates.
* The responsible party: the person who determines why and how to process.
* The operator: a person who processes personal information on behalf of the responsible party.
POPIA places various obligations on the responsible party, which is the body ultimately responsible for the lawful processing of the personal information.
Is xneelo POPIA compliant (certified)?
At xneelo, we care deeply about the security of your personal information provided to us to manage your xneelo account. You can read more about what xneelo has done to comply with data protection laws, including POPIA in our FAQs for data protection compliance.
It is not possible to be certified as the Information Regulator has not yet set up a system allowing organisations the ability to obtain a POPIA certification.
Although POPIA was signed into law on 26 November 2013 and commenced on 1 July 2020, it is not yet effective as there is a one year grace period that expires on 1 July 2021.
You can find further details relating to our compliance with data protection laws in our Legal Centre.