Information Privacy

A local tertiary education provider appointed Mobius Consulting to perform detailed privacy impact assessments (PIAs) of a select number of divisions within the university using a pre-defined customised approach, which was developed with the assistance of Mobius Consulting on a previous engagement. The project’s objective was to facilitate workshops and collect relevant background and personal information [...]

A client in the advertising industry requested Mobius to assist with their Privacy remediation journey as part of their readiness efforts for the Protection of Personal Information Act (POPIA) compliance.  The project’s objective was to align the organisation’s Data Privacy practices with the new Protection of Personal Information Act and other leading Privacy regulations. Some of the critical activities that Mobius […]

A private educational institution migrated its student management system from its on-premises location to Amazon AWS. Mobius assisted this educational institution by drafting their Privacy and Data Transfer Notice. This notice informs parents of and collects their consent for the transfer of their children’s data outside of Mauritius, in compliance with legislation such as the Mauritius Data […]

A global Oil and Gas client was in the process of establishing Information Privacy operations across various regions worldwide to mature its compliance efforts with applicable Privacy legislation. While the client embarked on identifying appropriate roles and skillsets for regional Privacy Officers and aimed to initiate implementation efforts; Mobius Consulting was required to drive Privacy […]

A global client in the machinery and equipment business recently asked Mobius Consulting to facilitate Information Privacy awareness training across its various sites in 8 Provinces across the country. Mobius has previously assisted this client in completing a Privacy Gap assessment and subsequently, is currently assisting with the implementation of remediation activities that were recommended […]

A global brand management and distribution organisation appointed Mobius to perform a detailed Information Privacy gap analysis based on the current state of the local (South African) divisions. The objective of the project was to understand what is required to ensure compliance to the Protection of Personal Information Act (POPIA) across the business divisions as […]

    WHAT ARE THE COMPLIANCE DRIVERS FOR THIRD PARTY RISK MANAGEMENT IN SOUTH AFRICA The world has officially arrived in the age of information, with an ever-increasing amount of company, client and customer data at our fingertips. The increasing amounts of available information raises the need for organisations to take more responsibility for protecting […]

Critical Portions of the POPI Act are Scheduled to Commence   The Protection of Personal Information Act (POPIA) promotes the protection of personal information processed by public and private entities and seeks to ensure that the human right to privacy is upheld. We have noted in recent media releases that the Information Regulator has made […]

With Patrick Ryan, Managing Director and Roelien Howell, Principal Consultant from Mobius Consulting.     POPIA: The Protection of Personal Information Act   The Protection of Personal Information Act (POPIA) aims to enforce protection of personal information by creating the lawful conditions for how this information must be managed. POPIA is closely related to the […]

4 CRITICAL RISKS FOR A COMPANY TO MANAGE   Coronavirus poses a risk to humanity, possibly the greatest risk to our physical health that many of us have faced in our lifetime, and at the same time, unethical cybercriminals are using the pandemic as an opportunity to increase hacking attempts and phishing attacks. In order […]

THE LONG WAIT TO ENFORCEMENT  The Protection of Personal Information Act (POPIA) was first tabled in 2005. In 2013, the President signed off the act.  Subsequently, a few developments were established, we saw the appointment of the Information Regulator in 2016 and most recently in 2019 the final regulations of the act were published. These […]

Acting ethically means organisations need to understand their personal information processing activities together with the positive and negative impacts on all parties. This means organisations need to be effective data stewards and align processing activities with applicable privacy compliance requirements. Being compliant with privacy law / regulations may be daunting, however we have a recommended […]

It’s been almost a year since we received large amounts of emails informing us of updates to companies’ privacy policies. On May 25, 2018 the General Data Protection Regulation (GDPR) came into effect. The cost of non-compliance, with this extraterritorial regulation, for those entities which process EU citizen personal information, is still as high as [...]

We are proud to announce that we are now part of the International Association for Privacy Professionals (IAPP) vendor list, one of the largest global privacy communities. Learn more about the IAPP: IAPP Mission and Background