Locate (Contains) :
Duties of the Compliance Officer

Information officers are required to perform their duties in terms of both PAIA and POPIA. However, POPIA provides that information officers may only take up their duties under POPIA after they have been registered with the Information Regulator.
Once registered, section 55 of POPIA prescribes certain duties that an information officer is required to comply with. These duties include, among other things, encouraging and ensuring that the responsible party complies with the provisions of POPIA, dealing with requests made under POPIA, and assisting the Information Regulator with any investigations conducted in respect of the organisation.

In addition to the duties set out in POPIA above, Regulation 4 of the POPIA Regulations prescribes additional duties to be performed by information officers, which include ensuring that:
  • A compliance framework is developed, implemented, monitored and maintained
  • A personal information impact assessment is done to ensure that adequate measures and standards exist in order to comply with the conditions for the lawful processing of personal information
  • A manual is developed, maintained and made available as prescribed in terms of PAIA
  • Internal measures are developed together with adequate systems to process requests for information
  • Internal awareness sessions are conducted regarding the provisions of POPIA, the Regulations, codes of conduct or any other information obtained from the Information Regulator

In respect of private bodies, the Information Regulator may annually request a private body to furnish it with information about requests received for access to records.

Updated by Robert de Jager on 12 JUL 2021
Locate (Contains) :