🇿🇦 South Africa

POPIA compliance with ConsentX

Protection of Personal Information Act

In short

South Africa's data protection law sets conditions for lawful processing of personal information, including consent and purpose limitation.

Region

South Africa

Status

In force since 2021

Group

Asia & Africa

Any party (responsible party) processing personal information in South Africa.

Fines up to R10 million and, in serious cases, imprisonment.

Key obligations

Lawful-basis consent capture

Purpose-limited categories

Data subject request intake

Evidence and reporting

Start free, or book a walkthrough with our team.

This page is a plain-English summary for general information and is not legal advice. Confirm your obligations with qualified counsel.

What is POPIA?+

South Africa's data protection law sets conditions for lawful processing of personal information, including consent and purpose limitation.

Who enforces POPIA?+

The Information Regulator of South Africa enforces POPIA, with fines up to R10 million for serious violations.