Data Protection

This useful site contains a list of resources on the introduction into law of the Protection of Personal Information Act, 2013 (POPIA), which the President enacted from 1 July 2020.  All entities in South Africa to whom this Act applies have one year to become compliance.  See

The Information Regulator was created under POPIA and is a unit within the Department of Justice.  Also find key resources on their site at

Compliance is key: the impact of the General Data Protection Regulation. 


Vicarious liability for data breaches – beware! (2019). See

Social media and the law.  See (courtesy of the Law Society)

Find out more about hacking and data from Elizabeth de Stadler: (2019)

Find out more about the Codes of Conduct guidelines from the Information Regulator of South Africa: InfoRegSA-Guidelines-DevelopCodeOfConduct-22Feb2021.pdf (

Take our POPI module in the Courses section.