BizNis Africa
Latest News
What is the value of investing in Nigeria?
Active managers in Africa and frontier markets have to...
Facebook Africa gears up for Creative Week at #Loeries2017
Facebook is once again throwing its full support behind...
Angonix ranked top 3 Internet Exchange Point in Africa
Angonix, an Internet Exchange Point (IXP) based in Luanda,...
Foreign investment in Africa’s hospitality sector rises
The hospitality sector in Africa’s emerging markets looks set...
Emira Property Fund reports total dividend of 143.18 cents per share
Emira Property Fund today, 16 August 2017, reported a...
Lagos to experience 16% fewer airline seats on domestic routes
An analysis of seat capacity for travel to the...
New Angolan beverage plant approved for development
A company formed by Sun Ocean Holdings Ltd., a...
MTN Foundation donates ZAR250 000 to Tshwaranang Legal Advocacy Centre
MTN SA Foundation has donated ZAR250 000 to Tshwaranang Legal...
Infrastructure Africa encourages unity through regional projects
Intra-African trade sits at around 11% and if Africa...
Black asset managers control ZAR416 billion of SA investments
Black asset managers have grown to 45 in number,...

June 19th, 2014
SMEs face POPI challenges

SMEs face POPI challenges

John McLoughlin, J2 Software MD

The biggest challenge around POPI for the SME is a lack understanding around the difficulties associated with becoming POPI compliant, says John Mc Loughlin, MD of J2 Software. For SMEs, as with so many things in business, keeping things simple is critical.

“Becoming POPI compliant does not need to be a long and costly exercise. There are cost effective solutions available to the SME which will allow then to demonstrate their compliance to POPI and other general ICT compliance clauses almost immediately.”

McLoughlin believes SMEs should start with a policy that controls where and how sensitive information is stored and processed within the business and then enforce and report on compliance to these policies. “The key is to have visibility – do you know what has changed? Who moved the data and where it was moved to?”

For example, he says if none of your employees need to work on sensitive data outside of the office, ensure that this data never leaves your servers, regardless of whether they are in-house or hosted. On the flip side of the coin, if your employees do need to work with sensitive data away from the office, make sure you know exactly what data is being used, when it is accessed and how it is protected. “These are simple steps to not only ensure compliance but also give an SME business a more professional image. As with anything, it is impossible to manage something which you cannot see. Having this visibility means you will immediately know where your information is and who is accessing it. DLP and compliance need not be the bane of your existence.”

Choosing a provider is the next step, Mc Loughlin says. “Look for a provider that gives you what you need, instead of technology for technology’s sake. Sit down with a proven and reputable SME provider – with a deep understanding of SME businesses – to see where the gaps are and quickly and cost effectively come up with a solution.”

However, he says technology is only one part of the equation. “Technology is essential to the management of the data, and must cover specific business and legal requirements. Any solutions the business adopts, must not only improve their operations, but also ensure compliance with relevant laws and codes. It all comes back down to policy. Do you have a policy around information security and device and data usage? What is the policy? Can you show it to us (or to your staff)? And then how do you measure compliance and enforce it. Having a great laminated and beautiful policy is worthless if it is not enforced and measured.”

At the end of the day, Mc Loughlin believes that many SMEs are aware of the possible repercussions of not being POPI compliant, but are currently ignoring it and only acknowledging this in private and when it keeps them awake at night. “Nobody wants to be the first test case and pay the first fine – so if presented with the right solution at a reasonable price, the uptake should jump rapidly.”

He says many forward thinking SME business owners will take the steps required to be compliant, and others will only consider it in more detail when they are sitting in front of the regulator while they are pondering their fine, watching their business fall apart in front of them.

“J2 has both the solutions and the expertise necessary to guide SMEs towards POPI compliance. I hope that we continue to provide SME businesses with the right tools to ensure that it is not them sitting on the wrong side of the regulator.”

Comments are closed.

Ver peliculas online
%d bloggers like this: