x Want to participate? Join the group to interact
  • State Not Answered
  • Replies 2 replies
  • Subscribers 36 subscribers
  • Views 1300 views
  • Users 0 members are here
Browse Forums
Announcements
138
topics
60
replies
General Discussion
3k
topics
8k
replies
CraigG

POPI Act - Protection of Personal Information Act (South Africa)

Posted By

To: Sage Directors

I have e-mailed your company secretary requesting confirmation that Sage is compliant with the POPI Act and that Sage provide me with the necessary documentation confirming such compliance. Unfortunately (I am not really surprised.......) no one has bothered to reply to my e-mail request so I am posting on the Sage City General Site to see if that may get some feedback.

As a company operating in South Africa we are required by law to ensure that all third-party information that we have (which is stored on your software and servers) is adequately secured and safeguarded and protected. We as a business have been requested to provide assurance to our clients, customers and employees that their personal information is protected and safeguarded from unauthorised use and as Sage manages all this information on our behalf I request that you provide the necessary assurance that this is indeed the case.
In addition, access to your software currently only has single password protection which poses a significant risk to Phishing, hacking and other unauthorised access. Please advise what two-factor authentication options are available to safeguard access to the software and data.
I respectively request some feedback to my enquiry.
Thanks
  • 0

    Hello Graig, I have escalated your post to the product development team for feedback. For future reference please will you send all communications to [email protected] this will ensure that your mail is attended by our local customer care and will be escalated to the correct department. The company secretary email address is managed in the UK and while we will still receive this email in region it may take a little longer. Thank you Heidi

  • 0

    Hello Craig, 

    Please see the feedback received:

    Sage South Africa (Pty) Ltd (“Sage”)has undertaken the following in order to become POPIA Ready:

    The process we’re following - practical and effective compliance

    Sage  has identified Michalsons (www.Michalsons.com) as experts who are assisting us to  comply with POPIA by following their four-step process (Awareness -> Plan -> Implement -> Review).

    Action already taken – quick wins

    Sage has already taken some action in the development of a Privacy Hub containing updated POPIA Privacy Policy, Cookies Policy, PAIA Manual. We have also tackled and completed some of the quick wins. We have joined the Michalsons Compliance Programme for Data Protection and have been working through it.

    Further action to take

    There is further action to take. We are currently busy with a gap analysis to determine what implementation actions we need to take. We have in addition been developing a POPIA internal training program for employees and partners alike.

*Community Hub is the new name for Sage City