Protecting the customer or
client data and information
that you process

Not prioritising data privacy is tantamount
to sub-optimal governance

The era we live in is dubbed the “information age” or “digital age” because of how easy it has become to access, share, and process information. However, this deepening interconnectedness has not been without significant risk to businesses and organisations that process the data of their clients or customers and other stakeholders. One of the biggest challenges that businesses face in this digital dispensation, apart from not complying with data privacy laws and regulations, is the likelihood of suffering severe reputational damage from breaches due to incoherent data protection policies, procedures, and systems. It not only shows a lack of seriousness or concern in the eyes of customers or clients, but also points to inadequate governance, likely the most important management consideration alongside organisational strategy and astute financial management.   

Stolen information, ransomware, password guessing, recording keystrokes, phishing, malware, viruses, and Distributed Denial-of-Service (DDoS) are just some of the threats that businesses and organisations need to guard against. 

To combat these threats, numerous countries have either enacted new data privacy legislation or revised their current legislation to align with international standards. In the South African context, the Protection of Personal Information Act (“POPIA”) was enacted in July 2020. In Botswana, the Data Protection Act (“DPA”) came into effect in October 2021.

With over 150 tools, document templates and resources, and a sturdy track record of successful data privacy compliance projects across multiple industries in South Africa and Botswana, we help clients navigate the complexities of data privacy legislation from awareness to implementation by drafting, reviewing and/or implementing policies, processes, and measures to safeguard confidential client or customer data and information.

How we help clients

  • Setting up Centres of Data Privacy Excellence
  • Data privacy assessments
  • Information officer assistance programmes
  • Compliance workshops
  • Awareness training
  • Implementation projects
  • Policy reviews
  • Ad hoc assistance and advice
  • Tools and resources