POPIA
Skill packages tagged with “POPIA”
King IV and POPIA Narrative
Draft the POPIA–King IV governance narrative linking data protection compliance to King IV Principles 12 and 13 for South African organisations.
PIIA (SA) — Consultation Report
Draft the consultation report for a POPIA PIIA: document views from stakeholders or data protection experts consulted on the impact assessment.
PIIA (SA) — Mitigation Measures
Draft the mitigation measures for a POPIA PIIA: safeguards, security measures, and technical/organisational controls to address identified risks.
PIIA (SA) — Necessity and Proportionality
Draft the necessity and proportionality assessment for a POPIA PIIA: document that processing is necessary and that no less-intrusive method exists.
PIIA (SA) — Purpose of Processing
Draft the purpose of processing and lawful basis documentation for a POPIA PIIA, aligned with purpose specification and lawful processing.
PIIA (SA) — Risk Assessment
Draft the risk assessment for a POPIA PIIA: analyse risks to data subjects' rights and freedoms, including harm, discrimination, and financial loss.
PIIA (SA) — Sign-off
Draft the PIIA sign-off: final approval from the Information Officer or senior management acknowledging residual risk.
PIIA (SA) — Systematic Description of Processing
Draft the systematic description of processing for a POPIA PIIA: step-by-step description of how personal information is collected, used, stored, and deleted.
POPIA Compliance Framework — Manual & PAIA Manual (South Africa)
Draft and validate POPIA (Act 4 of 2013) compliance framework documentation and the mandatory PAIA Manual. Covers the eight conditions for lawful processing, PAIA manual, Information Officer registration, and breach notification.
POPIA Information Officer Authorization
Draft the formal authorization (board resolution or CEO/MD letter) designating the Information Officer and Deputy IOs for submission to the Information Regulator.
POPIA Registration Form Part A — Information Officer
Draft Part A of the POPIA Information Officer registration form with full name, designation, and contact details including direct email for the Information Regulator.
POPIA Registration Form Part B — Deputy Information Officers
Draft Part B of the POPIA Information Officer registration form with contact details for each Deputy Information Officer (DIO) for the Information Regulator.
POPIA Registration Form Part C — Organisation Details
Draft Part C of the POPIA Information Officer registration form with registered company name, address, and registration number for the Information Regulator.