The Data Protection Notice is a crucial compliance document required under South Africa's Protection of Personal Information Act (POPIA). It should be implemented by any organization that processes personal information in South Africa or of South African residents. The notice serves multiple purposes: it ensures compliance with POPIA's transparency requirements, informs data subjects about their rights and how their information is handled, and demonstrates the organization's commitment to data protection. The document needs to be regularly reviewed and updated to reflect changes in processing activities or regulatory requirements. It forms part of an organization's broader data protection framework and should be readily available to all data subjects, typically through the organization's website or upon request.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Your data doesn't train Genie's AI
You keep IP ownership of your docs
1. Introduction: Overview of the organization and purpose of the notice
2. Scope of the Notice: Who the notice applies to and what activities it covers
3. Types of Personal Information Collected: Detailed categories of personal information that is collected and processed
4. Purposes of Processing: Explanation of why personal information is collected and how it will be used
5. Legal Basis for Processing: The legal grounds under POPIA for processing personal information
6. Information Sharing and Disclosure: Details about third parties with whom information may be shared
7. Data Subject Rights: Explanation of rights under POPIA and how to exercise them
8. Data Security Measures: Overview of security measures to protect personal information
9. Retention Period: How long personal information will be kept
10. Contact Details: Information Officer and company contact information
11. Updates to this Notice: How changes to the notice will be communicated
1. Cross-border Data Transfers: Required if personal information is transferred outside South Africa
2. Automated Decision Making: Required if automated processing or profiling is used
3. Special Personal Information: Required if processing special categories of personal information as defined in POPIA
4. Children's Privacy: Required if collecting information from children under 18
5. Direct Marketing: Required if personal information is used for direct marketing purposes
6. Cookie Policy: Required if the organization uses cookies or similar tracking technologies
7. CCTV Monitoring: Required if premises are monitored by video surveillance
1. Schedule 1: Categories of Personal Information: Detailed list of all categories of personal information collected and processed
2. Schedule 2: Processing Activities Register: Detailed description of specific processing activities and their purposes
3. Schedule 3: Third Party Processors: List of approved third-party service providers and processors
4. Schedule 4: Technical and Organizational Security Measures: Detailed description of security measures implemented
5. Schedule 5: Data Retention Schedule: Specific retention periods for different categories of personal information
Find the exact document you need
Privacy Policy And Privacy Notice
A legal document outlining an organization's personal information handling practices in compliance with South African POPIA requirements.
Download
Data Privacy Notice
A South African POPIA-compliant document that explains how an organization handles personal information and protects data subject rights.
Download
Customer Privacy Notice
A South African POPIA-compliant privacy notice detailing how an organization handles customer personal information and protects privacy rights.
Download
Cookie Notice
A legally mandated document under South African law (POPIA) that informs website visitors about cookie usage, data collection, and their privacy choices.
Download
Employee Data Privacy Notice
A South African POPIA-compliant employee privacy notice detailing how organizations handle employee personal information.
Download
Data Protection Policy And Privacy Notice
A combined data protection policy and privacy notice ensuring compliance with South Africa's POPIA, outlining personal information handling practices and data subject rights.
Download
Privacy Notice Statement
A POPIA-compliant privacy notice statement for South African operations that outlines personal information handling practices and data subject rights.
Download
External Privacy Notice
A POPIA-compliant external privacy notice for South African organizations, detailing how personal information is handled and protected.
Download
Applicant Privacy Notice
A POPIA-compliant privacy notice for job applicants in South Africa, detailing how personal information is handled during recruitment.
Download
Data Privacy Notice And Consent Form
A South African POPIA-compliant document that explains how personal information is processed and obtains consent for such processing.
Download
Company Privacy Notice
A South African POPIA-compliant privacy notice detailing an organization's personal information processing practices and data subject rights.
Download
Website Privacy Notice
A South African law-compliant privacy notice that details how a website collects, uses, and protects personal information under POPIA requirements.
Download
Data Protection Notice
A South African POPIA-compliant notice outlining how an organization handles personal information, including collection, use, protection, and management of data.
Download
ұԾ’s Security Promise
Genie is the safest place to draft. Here’s how we prioritise your privacy and security.
Your documents are private:
We do not train on your data; ұԾ’s AI improves independently
All data stored on Genie is private to your organisation
Your documents are protected:
Your documents are protected by ultra-secure 256-bit encryption
We are ISO27001 certified, so your data is secure
Organizational security:
You retain IP ownership of your documents and their information
You have full control over your data and who gets to see it
.png)