The Information Regulator has released its updated Guidelines on the Protection of Personal Information Act (POPIA) for 2026, introducing several important changes that will affect businesses across South Africa.
Key changes include stricter requirements for consent management, enhanced obligations around data breach notification, and new guidance on cross-border data transfers.
Businesses should review their current POPIA compliance frameworks against the updated guidelines and take immediate steps to address any gaps. This includes updating privacy policies, consent mechanisms, and internal data handling procedures.
Our commercial advisory team is available to assist with POPIA compliance reviews and implementation.
POPIAComplianceData ProtectionPrivacy