On 4 September 2025, the Minister of Employment and Labour published the new Code of Good Practice: Dismissal under the Labour Relations Act, 1995 (“LRA”). The Code is now in force and represents the most significant reform to South African dismissal laws in nearly three decades.
The Code consolidates and
Continue Reading South Africa’s New Employment Law Framework for Dismissals: What Employers Need to KnowOn April 7, 2025, South Africa’s Information Regulator announced a new requirement for organizations to report data breaches—referred to under local law as “security compromises”—via an online eServices Portal. The announcement marks a significant procedural shift in how companies must comply with the Protection of Personal Information Act, 2013
Continue Reading South Africa Introduces Mandatory e-Portal Reporting for Data BreachesKenya has released its first National Artificial Intelligence Strategy (2025–2030), a landmark document on the continent that sets out a government-led vision for ethical, inclusive, and innovation-driven AI adoption. Framed as a foundational step in the country’s digital transformation agenda, the strategy articulates policy ambitions that will be of
Continue Reading Kenya’s AI Strategy 2025–2030: Signals for Global Companies Operating in AfricaThe Information Regulator recently published its Guidance Note on Direct Marketing (“Guidance Note”), providing clarity on how personal information can be lawfully processed under the Protection of Personal Information Act (“POPIA”). The Guidance Note offers actionable steps for organizations to align their marketing practices with these principles, fostering responsible marketing
Continue Reading Long-Awaited POPIA Guidance on Direct Marketing Published by South Africa’s Information RegulatorSouth Africa’s Protection of Personal Information Act (“POPIA”) imposes strict requirements on processing personal information, especially that of children. Under South African law, a child is a natural person under the age of 18. Recent enforcement action against the Department of Basic Education (“DBE’) highlights the importance of obtaining parental
Continue Reading Protecting Children’s Privacy Under POPIA: Insights from South Africa’s 2023 High School Results CaseThe African Continental Free Trade Area (“AfCFTA”) has emerged as a pivotal opportunity that will set the framework for future trade across Africa. Amid the prospects, one of the challenges has been the fragmented and diverse regulatory environment, coupled with regulators adopting policies that are not conducive
Continue Reading Africa Technology Regulatory Update: Adoption of the AfCFTA Protocol on Digital Trade
In Episode 12 of our Inside Privacy Audiocast, together with special guest Advocate Pansy Tlakula, Chairperson of the Information Regulator of South Africa, we discussed the Information Regulator’s mandate, and the implementation of data protection legislation in South Africa. Now, with less than a month to go before South Africa’s Protection of Personal Information Act, 2013 (“POPIA”) is set to go into full effect on July 1, 2021, it is critical for organizations operating in South Africa to ensure that they are ready if and when the Information Regulator comes knocking.
It is only when organizations start their POPIA journey that they realize just how wide the POPIA net is cast, and that very few businesses fall outside of its reach. The road to POPIA compliance should be viewed as a marathon, and not a sprint. While implementing and maintaining an effective POPIA compliance program will take continued effort and resources well beyond the July 1, 2021 go-live date, here we outline five steps to which companies subject to POPIA should give their attention in the short term.
Continue Reading Final Countdown to POPIA Compliance – Five Critical Steps to Take Before July 1st, 2021
On June 22, 2020, the South African President announced that certain provisions of POPIA would take effect on July 1, provisions which most regard as essential to the statute, such as those imposing conditions on the lawful processing of personal information, procedures for handling complaints, and general enforcement provisions. Only
Continue Reading Inside Privacy Audiocast: Episode 5 – View From Johannesburg Part I: GDPR vs. POPIA – What Should Businesses Be Considering?
Commencement of the AfCFTA. The landmark African Continental Free Trade Area (AfCFTA) is slated to go into force on July 1, 2020. When fully implemented, the trade agreement will eliminate tariff and non-tariff barriers, and substantially increase intra-regional trade to volumes worth over $3.3 trillion. Twenty-nine countries have deposited their
Continue Reading Top Issues to Watch in Africa in 2020
Companies today face increasingly complex regulatory frameworks globally and intense levels of corporate scrutiny from government enforcement agencies around the world. As government agencies embrace sophisticated crime-busting technology and the world shrinks through greater inter-agency cooperation, there are more ways than ever for governments to identify misconduct and hold companies
Continue Reading Five Key Considerations For Handling Internal Corporate Investigations