Digital Policy Alert logo

South Africa: Issued Information Regulator Guidance Note on compliance with POPIA when processing personal data for direct marketing

Policy overview

Description

Issued Information Regulator Guidance Note on compliance with POPIA when processing personal data for direct marketing

On 3 December 2024, the Information Regulator issued a Guidance Note on compliance with the Protection of Personal Information Act (POPIA) for processing personal data in direct marketing. Key requirements include obtaining explicit consent from data subjects, respecting their right to object to data processing, ensuring transparency about data collection, purpose, and rights, and conducting a Legitimate Interest Assessment (LIA). The Guidance prioritises personal data protection, transparency, and lawful consent in direct marketing practices.

Original source

Scope

Policy Area
Data governance
Policy Instrument
Data protection regulation
Regulated Economic Activity
cross-cutting
Implementation Level
national
Government Branch
executive
Government Body
data protection authority

Complete timeline of this policy change

Hide details
2024-12-03
adopted

On 3 December 2024, the Information Regulator issued a Guidance Note on compliance with the Protect…

We use cookies and other technologies to perform analytics on our website. By opting in, you consent to the use by us and our third-party partners of cookies and data gathered from your use of our platform. See our Privacy Policy to learn more about the use of data and your rights.