In South Africa
The Information Regulator (‘the Regulator’) published, on 13 October 2021, rules of procedure (‘the Rules’) relating to the manner in which a complaint must be submitted and handled by the Regulator. To read the rules, click here.
The regulator addressed the roles and responsibilities of political parties participating in the now past municipal elections. It reiterated the role of POPIA and that all processing complies with right conditions for lawful processing under section 4 of POPIA. Read the full statement here.
The regulator announced the launch of its new emailing infrastructure, with critical addresses mentioned. To read the full press release, click here.
On 12 October, the regulator released a guide on how to use PAIA, explaining the purpose and how the guide can assist data subjects in understanding PAIA. To view the full guide, click here.
Rwanda’s Ministry of ICT and innovation confirmed the National Cyber Security Authority (NCSA) as the data protection authority, charged with enforcement. They will work along with all other stakeholders to ensure the implementation of the law within the next 24 months. Please read the full press release here. The data protection law was also officially published in the government gazette.
Botswana’s Data Protection Act (Act No. 32 of 2018) is now in effect.
“The material scope of the Act is undoubtedly personal data. Its territorial scope on the other hand extends to personal data entered into a file for a data controller established in Botswana or not established in Botswana but makes use of processing means situated within Botswana. The household exemption is applicable to personal data processed for purely personal and household activity.” Senwelo Monise, Minister of Presidential Affairs, Governance and Public Administration.
The Act ‘s transition period will be 12 months and will end on 15 October 2022.
Zimbabwe passed its Cyber Security and Data Protection Bill in Parliament in September 2021.
EXTRA: A snippet of recent compliance news from the US
The White House issued, on 14 October 2021, a joint statement with world Ministers and Representatives following the ransomware initiative meeting held on 13 and 14 October 2021.
In particular, the statement highlighted that ransomware is an escalating global security threat with serious economic and security consequences. Ransomware poses a significant risk to critical infrastructure, essential services, public safety, consumer protection and privacy, and economic prosperity. As such, the statement expressed the need for urgent action, common priorities, and complementary efforts to reduce the risk of ransomware.
To read the full statement, click here.