The majority of the remaining sections of South Africa’s Protection of Personal Information Act (POPIA) came into effect July 1, 2020, beginning a 12-month transition period for organizations to become POPIA-compliant before all sections come into force.
Although POPIA shares similarities with the GDPR, POPIA establishes new requirements for the processing of personal information, data subject rights, and brings a new set of compliance challenges for organizations with operations in South Africa.
The transition period for South Africa’s POPIA ends on June 30, 2021 and enforcement begins on July 1, 2021.