Skip to content
TOSMS
Primary Navigation Menu
Menu
  • Home
  • About
    • About TOSMS
    • About Our Partner
    • Hiring Us
  • Services
    • Governance, Risk and Compliance Services Overview
    • Digitise GRC Operations
    • Integrate and Automate GRC Functionality
    • Resolving Future GRC Change Impacts
    • Embarking on a GRC Digitisation Journey
    • Regulation-specific Services
  • GRC Software
    • Governance, Risk & Compliance Software Overview
    • T-GRCS: TOSMS Governance, Risk & Compliance Solution
    • T-RMS: TOSMS Records Management Solution
    • T-RTS: TOSMS Regulatory Training Solution (Data Privacy – POPI)
  • E-Learning
    • POPI Training
  • News
  • Contact

Strategic Imperative of the Information Officer

On: June 22, 2017
In: News, POPI
Tagged: Information Officer, POPI
Strategic Imperative Information Officer

Consider there is a strategic imperative which should be at the heart of every appointment of an Information Officer. That is, if a company is serious about implementing the principles of the Protection of Personal Information (POPI) legislation in their organisation.

The Strategic Imperative

During the years when the POPI legislation was being developed, Tim O’Hanlon of TOSMS had numerous discussions with the Information Commissioner in the UK, as well as many discussions with the South African Law Reform Commission, the drafters of POPI. Over the years, the following was what became clear:

  • The POPI legislation is merely codifying good business practice. Where companies fall foul of the legislation and breaches occur, those companies which are able to demonstrate that good business practices are in place, are not likely to be named and shamed. Staff make mistakes and as long as rectification action is reasonable, the authorities indicated there should be no problem if a company can demonstrate that they have good business practices in place.

The point here is that the Information Officer must ensure that good business practices are in place when it comes to processing personal information. Key to this is the establishment of appropriate Policies, Standards, Practices and Guidelines – what we at TOSMS refer to as PSPGs – along with sound enforcement and oversight using a suitable regulatory compliance model.

This is the strategic imperative that should be at the heart of every Information Officer appointment.

Share this:

  • Click to share on Twitter (Opens in new window)
  • Click to share on Facebook (Opens in new window)

Related

2017-06-22
Previous Post: Duties of the Information Officer according to POPI
Next Post: Addressing Governance is key for a sustainable POPI outcome

SEARCH OUR NEWS

RECENT POSTS

  • POPIA Disclosure Requirements – Mandatory and Voluntary information
  • POPIA Disclosure Requirements – Details of Responsible Party
  • POPIA Disclosure Requirements – Aware of Collection

CATEGORIES

  • News (41)
  • POPI (38)

SUBSCRIBE TO OUR NEWSLETTER

Email:
Name:

Navigation

  • Home
  • About TOSMS
  • About Our Partner
  • Governance, Risk and Compliance Services Overview
  • T-GRCS: GRC Solution
  • T-RMS: Records Management Solution
  • T-RTS: Regulatory Training Solution
  • E-Learning
  • Hiring Us
  • News
  • Contact
  • Privacy Policy

Latest News

  • POPIA Disclosure Requirements – Mandatory and Voluntary information

    POPIA Disclosure Requirements – Mandatory and Voluntary information

    November 29, 2017
  • POPIA Disclosure Requirements – Details of Responsible Party

    POPIA Disclosure Requirements – Details of Responsible Party

    November 28, 2017
  • POPIA Disclosure Requirements – Aware of Collection

    POPIA Disclosure Requirements – Aware of Collection

    November 27, 2017

SUBSCRIBE TO OUR NEWSLETTER

Email:
Name:

Contact Details

United Kingdom
+44 (0)13 7243 8397
tim@tosmsgroup.co.uk

South Africa
+27 (0)21 761 8020
abrie@tosms.co.za

TOSMS Founder

Copyright © 2019 Tim O'Hanlon Strategic Management Services | web design by: creative engineering studio