Moabalobelo, TerrenceNgobeni, Sipho JMolema, Bokang CPantsi, Phumeza NDlamini, Thandokuhle MNelufule, Nthatheni2024-03-152024-03-152023-06Moabalobelo, P.T., Ngobeni, S.J., Molema, B.C., Pantsi, P.N., Dlamini, T.M. & Nelufule, N. 2023. Towards a privacy compliance assessment toolkit. http://hdl.handle.net/10204/13630 .978-1-905824-71-7979-8-3503-0639-2DOI: 10.23919/IST-Africa60249.2023.10187837http://hdl.handle.net/10204/13630The South African Protection of Personal Information (POPI) Act No.4 of 2013 makes it illegal to collect, use, process or store personal information unless it is done in accordance with the prescribed legal and regulatory clauses enriched in the Act. Organizations should take stock of the personal information they collect and who they share it with before they can put controls in place to safeguard it. Failure to comply with POPI Act may potentially expose the responsible party and its associated third parties to steep legal penalties including possibly imprisonment of up to 10 years or R10 million fine which is imposed by the Information Regulator of South Africa. This paper presents the results of a system called Protection of Personal Information Act Compliance Assessment Toolkit (PCAT). The main aim of this system is to assist organisations to assess their current state of compliance to the POPI Act. The PCAT solution followed an experimental research and development process, where three existing similar technologies in the market were analysed and compared to the PCAT. The results of the PCAT shows that it simplifies the POPIA compliance requirements compared to the other three existing technologies. Future work will include development of executive summary report which will make it easier for executive to view the compliance assessment in a high-level format.FulltextenThe South African Protection of Personal Information ActProtection of Personal Information ActPOPIATowards a privacy compliance assessment toolkitConference PresentationMoabalobelo, P. T., Ngobeni, S. J., Molema, B. C., Pantsi, P. N., Dlamini, T. M., & Nelufule, N. (2023). Towards a privacy compliance assessment toolkit. http://hdl.handle.net/10204/13630Moabalobelo, Phindile T, Sipho J Ngobeni, Bokang C Molema, Phumeza N Pantsi, Thandokuhle M Dlamini, and Nthatheni Nelufule. "Towards a privacy compliance assessment toolkit." <i>IST-Africa 2023 Conference, CSIR ICC, Pretoria, South Africa, Pretoria, 31 May - 2 June 2023</i> (2023): http://hdl.handle.net/10204/13630Moabalobelo PT, Ngobeni SJ, Molema BC, Pantsi PN, Dlamini TM, Nelufule N, Towards a privacy compliance assessment toolkit; 2023. http://hdl.handle.net/10204/13630 .TY - Conference Presentation AU - Moabalobelo, Phindile T AU - Ngobeni, Sipho J AU - Molema, Bokang C AU - Pantsi, Phumeza N AU - Dlamini, Thandokuhle M AU - Nelufule, Nthatheni AB - The South African Protection of Personal Information (POPI) Act No.4 of 2013 makes it illegal to collect, use, process or store personal information unless it is done in accordance with the prescribed legal and regulatory clauses enriched in the Act. Organizations should take stock of the personal information they collect and who they share it with before they can put controls in place to safeguard it. Failure to comply with POPI Act may potentially expose the responsible party and its associated third parties to steep legal penalties including possibly imprisonment of up to 10 years or R10 million fine which is imposed by the Information Regulator of South Africa. This paper presents the results of a system called Protection of Personal Information Act Compliance Assessment Toolkit (PCAT). The main aim of this system is to assist organisations to assess their current state of compliance to the POPI Act. The PCAT solution followed an experimental research and development process, where three existing similar technologies in the market were analysed and compared to the PCAT. The results of the PCAT shows that it simplifies the POPIA compliance requirements compared to the other three existing technologies. Future work will include development of executive summary report which will make it easier for executive to view the compliance assessment in a high-level format. DA - 2023-06 DB - ResearchSpace DP - CSIR J1 - IST-Africa 2023 Conference, CSIR ICC, Pretoria, South Africa, Pretoria, 31 May - 2 June 2023 KW - The South African Protection of Personal Information Act KW - Protection of Personal Information Act KW - POPIA LK - https://researchspace.csir.co.za PY - 2023 SM - 978-1-905824-71-7 SM - 979-8-3503-0639-2 T1 - Towards a privacy compliance assessment toolkit TI - Towards a privacy compliance assessment toolkit UR - http://hdl.handle.net/10204/13630 ER -26858