The Information Regulator has recently launched its online portal for registration of Information Officers and Deputy Information Officers. Organisations are encouraged to complete the online registration forms before the 1 July 2021 deadline, which can be accessed here.
It is important to take note that:
- The Protection of Personal Information Act, 4 of 2013 (“POPIA”) automatically appoints the head of a private body as the Information Officer. However, the head of the private body may authorise another employee within the organisation, who occupies a senior position as the Information Officer. Responsible Parties are required in terms of POPIA to register their Information Officers and Deputy Information Officers with the Information Regulator.
- Certain duties of the Information Officer came into force on 1 May 2021 when Regulation 4 of the Regulations relating to the Protection of Personal Information, pertaining to the ‘Responsibilities of Information Officers’ was enacted with the balance of the duties in sections 56 and 57 coming into force on 1 July 2021.
- Duties of the Information Officer include inter alia ensuring a POPIA compliance framework is developed, conducting privacy impact assessments, promoting POPIA compliance via internal awareness sessions, liaising with the Information Regulator and assisting with data subject requests.
If you need any assistance with understanding the implications of POPIA to your business, assistance with the appointment and registration of your Information Officer and Deputy Information Officers or any POPIA related training, please reach out to Ernie van der Vyver and Savanna Stephens.