Protection of Personal Information Act (POPIA)

Solutions
By Challenge
By Industry
By Regulation
- Overview
- GDPR
- CCPA
- ITAR
- CMMC
- EPMS
- DFARS/NIST
- HIPAA
- POPIA
- STANAG
- CUI
Execution
- Titus Deployment Methodology
Successfully deploy a data classification solution based on your unique data security needs.
Products
- Titus Classification Suite
Add rich context to on-prem and cloud data with the leading data classification solution.
- Titus Illuminate
Scan and analyze unstructured data at rest and apply appropriate identification attributes.
- Titus Identifiers for Privacy
Detect personally identifiable information (PII) at creation in email and files. Powered by Machine Learning.
- Titus Encryption
Combine data classification and encryption into a flexible data protection solution.
- Support when you need it
Get help with your Titus configuration and use via our secure customer service portal.
Partners
Resources
From our Library

Case Studies

Datasheets

Research

Solution Briefs

White Papers
Most Popular Content

Titus Classification for Microsoft Office

Titus Classification for Microsoft OWA

Enhancing MIP in an Era of Enhanced Regulation

The 5 Steps To Effective Data Protection

Data Classification Best Practices
Engage

Titus Newsroom

Upcoming Webinars

Webinars On-demand

Events
Blog
About
- In the News
- Careers
Request a Quote

What is POPIA?

The mandate of South Africa’s Protection of Personal Information Act (POPIA, formerly known as PoPI) is to regulate the processing of personal information. With this Act, data breaches need to be reported by law.

Organisations need to develop a clear data protection plan to build trust with customers, drive business growth, and avoid costly penalties.

The Act came in to force on July 1, 2020 with a 1 year grace period within which to ensure compliance.

How Titus helps organisations meet POPIA compliance

Our data classification solution helps you meet POPIA regulations by discovering, identifying, and classifying emails and files at the point of creation or in on-premise and cloud-based file shares to ensure compliant policy enforcement.

Obey legal obligations: Reduce risk and avoidable legal costs.
Avoid substantial penalties: Non-compliance can mean up to R10 million fines and/or 12 months in jail.
Create a culture of security: Extend security awareness to all systems and processes.
Limit reputational damage: Breaches must be disclosed.
Prevent client loss: A reputation for breaches could drive away customers and partners.

Proactively delete old data after a reasonable time

Personal information collected and retained by organisations is also subject to deletion.

It can be difficult to guarantee all personal data is deleted if it has been exported to files outside the central database.

The metadata Titus applies to files helps enable staff to locate files that should be deleted for compliance purposes, no matter where they are stored.

Supporting data subject access requests

Under POPIA, any personal data obtained by an organisation can be subject to access requests.

Anyone has the right to request if a company holds personally identifiable information (PII) on them, what the data is, the reason for collection, and how long the data will be held for.

In many cases, private individuals have the right to request that personal data be deleted from systems in its entirety.

Titus machine learning technologies effectively identify and locate hard-to-find PII in data repositories that include on-premise file shares and popular cloud repositories to take the guesswork out of data subject access requests.

What our thought leaders are saying about POPIA – and what it means for you

Read the blog post by Titus contributor Sean Glansbeek for a deeper dive into the importance of POPIA, what it means for your business, and some tips for POPIA compliance best practices.

Read the full article