Skip to content
TOSMS
Primary Navigation Menu
Menu
  • Home
  • About
    • About TOSMS
    • About Our Partner
    • Hiring Us
  • Services
    • Governance, Risk and Compliance Services Overview
    • Digitise GRC Operations
    • Integrate and Automate GRC Functionality
    • Resolving Future GRC Change Impacts
    • Embarking on a GRC Digitisation Journey
    • Regulation-specific Services
  • GRC Software
    • Governance, Risk & Compliance Software Overview
    • T-GRCS: TOSMS Governance, Risk & Compliance Solution
    • T-RMS: TOSMS Records Management Solution
    • T-RTS: TOSMS Regulatory Training Solution (Data Privacy – POPI)
  • E-Learning
    • POPI Training
  • News
  • Contact

POPIA Disclosure Requirements – Other Purposes

On: October 30, 2017
In: News, POPI
Tagged: Disclosures, Other purposes, POPIA, TOSMS
POPIA Disclosures - other purposes

POPIA Disclosure Requirements – Other Purposes

Take a scenario where a company is processing personal information of a data subject beyond the original purpose for which the information was collected. To comply with POPIA, the correct thing would be to disclose that the company will be processing the information for other purposes and to list these. An option must also be provided to the customer to say no thank you or to “opt out” as the legislation calls it.

Where a company is processing personal information, a good practice for staff is to always check that the purpose for the processing they are doing is in line with the original purpose for which it was collected. If they believe it is not in line with that, then they should contact the appropriate management in the company to make sure that the correct disclosures have been made to customers.

Self-regulation within organisations

In the case where a staff member receives a customer’s personal details with the intention to market other products to them, for example Health Care or Investment products, and the person had originally approached the company to take out Life Insurance, the staff member would need to satisfy themselves that they are not breaching POPIA rules. This would be done by first checking whether the customer has been notified and secondly that they did not choose to opt out.  This will be covered in more detail in a later article that deals with data subject preferences and consent.

Opportunities to comply with the POPIA Regulations

All the details regarding Disclosures and the six other workstreams that make up the full requirements of the POPI Act, can be found in the TOSMS online training programme The Complete Guide to the Protection of Personal Information Act.

With the POPI Regulations having recently been published by the Information Regulator, should one need to carry out an assessment of Disclosure requirements (or assessment for other workstreams) in an organisation, one can obtain access to the TOSMS online ASSESS application and carry out a self-assessment to understand where one does not comply with the Regulations.  Contact TOSMS here to find out more.

Share this:

  • Click to share on Twitter (Opens in new window)
  • Click to share on Facebook (Opens in new window)

Related

2017-10-30
Previous Post: POPIA Disclosure Requirements – In Service of Contract?
Next Post: POPIA Disclosure Requirements – Aware of Collection

SEARCH OUR NEWS

RECENT POSTS

  • POPIA Disclosure Requirements – Mandatory and Voluntary information
  • POPIA Disclosure Requirements – Details of Responsible Party
  • POPIA Disclosure Requirements – Aware of Collection

CATEGORIES

  • News (41)
  • POPI (38)

SUBSCRIBE TO OUR NEWSLETTER

Email:
Name:

Navigation

  • Home
  • About TOSMS
  • About Our Partner
  • Governance, Risk and Compliance Services Overview
  • T-GRCS: GRC Solution
  • T-RMS: Records Management Solution
  • T-RTS: Regulatory Training Solution
  • E-Learning
  • Hiring Us
  • News
  • Contact
  • Privacy Policy

Latest News

  • POPIA Disclosure Requirements – Mandatory and Voluntary information

    POPIA Disclosure Requirements – Mandatory and Voluntary information

    November 29, 2017
  • POPIA Disclosure Requirements – Details of Responsible Party

    POPIA Disclosure Requirements – Details of Responsible Party

    November 28, 2017
  • POPIA Disclosure Requirements – Aware of Collection

    POPIA Disclosure Requirements – Aware of Collection

    November 27, 2017

SUBSCRIBE TO OUR NEWSLETTER

Email:
Name:

Contact Details

United Kingdom
+44 (0)13 7243 8397
tim@tosmsgroup.co.uk

South Africa
+27 (0)21 761 8020
abrie@tosms.co.za

TOSMS Founder

Copyright © 2019 Tim O'Hanlon Strategic Management Services | web design by: creative engineering studio