POPIA data breach

Too often fraudulent activities occur as a result of avoidable data breaches, where unauthorised third parties obtain access to the personal information held by an organisation. Data breaches can be devastating to organisations and their customers, especially when the data breach results in unauthorised access to sensitive personal information of individuals which is then used for fraudulent purposes as described above.

In terms of the Protection of Personal Information Act 4 of 2013 (“POPIA”) all organisations are required to secure the integrity and confidentiality of personal information in their possession or under their control by taking appropriate, reasonable technical and organisational measures to prevent the unlawful access to or processing of personal information.