Dr Danie Strachan, partner, Adams & Adams
John Giles, managing attorney, Michalsons Attorneys
Experiencing the Xperien Mobile Hard drive shredder Truck live
The truck provides on-site degaussing and destruction that's not only safe and secure, but also fully PoPI compliant. It offers mobile data destruction services that include the physical shredding of 300 hard drives, 500 data tapes, USB sticks and up to 400 mobile phones every hour. The mobile facility also offers the digital shredding of hard drives, solid state drives and data tapes and also the degaussing of HDD and tapes. The main advantage this truck brings to data security is that it eliminates the need to provide a "chain of custody" for the client data because the truck comes to the clients premises. Hard drive made of aluminium, steel and other metal alloys require huge amount to shred into tiny pieces and would normally happen in industrial factory.
Nerushka Bowan, emerging tech law, legal tech and innovation
The GDPR is the most important change in data privacy regulation in 20 years. It becomes enforceable on 25 May 2018 after a two-year transition period and replaces the EU Data Protection Directive. The GDPR was designed to harmonise privacy laws across Europe. The biggest change comes with the extended jurisdiction of the GDPR as it applies to all companies processing the personal data of data subjects residing in the EU, regardless of the company's location. Those organisations in non-compliance will face heavy fines of up to 4% on global turnover or EUR20 million – whichever is greater.
Bridgette Vermaak, Head of IT asset disposal, Xperien
Vermaak will show how she helped and re-engineered the processes at a South African retail bank (case study).
Maeson Maherry , solutions director, LAWTrust
Christelle Bure,director - implementation and people development, Metatrans Business Services
Becoming POPIA compliant is a culture change, a mindset change, an opportunity to be leveraged. It is more than a tick-box exercise.
It is a slow and steady journey that an organisation has to commit to. And interestingly, once it is done right, companies realise the massive, positive impact this has on relationships with its clients, staff and suppliers. In fact, the decision to become respectful of the privacy of the personal information of others is very liberating and creates a giant leap towards building trusting and lasting relationships. Approaching POPIA in this way not only helps companies become compliant, it may well give them a strong competitive edge and opportunity.
So, how do you sift through all the information available online and decide what your first or next steps are? Hopefully, this will shine a guiding light on your journey. The first thing you have to acknowledge is that if you are in business, you need to be POPIA compliant. The size of your company, the complexity of your data, your staff, your suppliers, etc, will all impact the effort you will need to put into compliance.
Samantha Buchler, senior manager, Deloitte
With the advancement of technological innovation and cross-border trade, compliance with international personal data protection legislation and standards has become imperative.
Business in Africa is expanding at a rapid pace due to a proliferation of investment opportunities on the continent. To effectively conduct business in Africa, organisations need to understand the African personal data protection regulatory landscape. Non-compliance with personal data protection legislation in Africa may potentially preclude multinational organisations from capitalising on their African exploits, by restricting their ability to transfer personal data to third parties beyond African borders, thus hindering business operations.
Alison Tilley, attorney and head of advocacy, Open Democracy Advice Centre
The Information Regulator is a key part of POPI compliance and will also be central to PAIA implementation. The five members of the Regulator have been appointed, and the Regulator given the go ahead to establish the office. The strategic plan of the Regulator shows however a number of flaws, which may well result in the office being delayed in beginning work. In addition, there are problems with the DPSA and Treasury.
Thales e-Security is the leader in advanced data security solutions and services that deliver trust wherever information is created, shared or stored. Security professionals around the globe rely on Thales to confidently accelerate their organization’s digital transformation. Thales e-Security is part of Thales Group.
LAWtrust LAWtrust is a specialist, information security solutions provider that focusses on strong authentication, digital certificates, encryption and digital signature solutions. LAWtrust was the first Certificate Authority to be accredited under the ECT Act to provide Advanced Electronic Signatures solutions.
Deloitte Legal, amongst the largest legal and regulatory service providers in Africa, assists clients operating in increasingly complex legal, regulatory and digital environments through a multidisciplinary approach, combining integrated legal and commercial expertise.
Please visit www.deloitte.co.za
The secure process of IT Asset Disposal (ITAD) is our core business and what we specialise in, We provide secure data erasure for corporate IT equipment as well as providing reverse IT logistics, and IT asset buybacks… more details please visit www.xperien.com