Protection of Personal Information Act (POPIA)

Meet compliance requirements to protect personal information in South Africa 

What is POPIA?

The mandate of South Africa’s Protection of Personal Information Act (POPIA, formerly known as PoPI) is to regulate the processing of personal information. With this Act, data breaches need to be reported by law. Organizations need to develop a clear data protection plan to build trust with customers, drive business growth, and avoid costly penalties. The Act came in to force on July 1, 2020. 

What is POPIA?

Why Should Organizations Comply with POPIA?

Obey Legal Obligation
Avoid Substantial Penalties Up
Create A Culture of Security
Limit Reputational Damage
Prevent Client Loss

Fortra’s Data Classification solutions helps you comply with POPIA regulations by discovering, identifying, and classifying emails and files at the point of creation or in on-premise and cloud-based file shares to ensure compliant policy enforcement. 


Proactively delete old data after a reasonable time

Under POPIA, personal information collected and retained by organizations is subject to deletion. It can be difficult to guarantee all personal data is deleted if it has been exported to files outside the central database. The metadata that Fortra Data Classification Suite (DCS) applies to files helps enable your organization to locate files that should be deleted for compliance purposes, no matter where they are stored. 

Proactively delete old data after a reasonable time

How protected is your data?

Meet with one of our experts to assess your needs, and we'll walk you through our solution.