The POPI Act of 2013 regulates the Protection of Personal Information and affects all businesses in one way or another.
The purpose of the act is to effect the constitutional right to privacy by safeguarding personal information. When processed by a responsible party and subject to justifiable limitations.
The Act aims to balance the right to privacy against other rights. For example the right of access to information. And the protection of important interests, including the free flow of information within the Republic and across international borders.
The Act regulates the ways in which personal information may be processed, by establishing conditions in harmony with international standards. It prescribes the minimum threshold requirement for the lawful processing of personal information.
The Act also provides a person with rights and remedies to protect their personal information from processing which is not in accordance with the Act.
It also established voluntary and compulsory measures, including the establishment of an Information Regulator. This is to ensure respect for and promote, enforce and fulfil the rights protected by this Act.
You can find the terminology relating to this act here.
Or read my series about the POPI Act on my blog: POPI Act Part 1: An Introduction