Protection of Personal Information Act 4 of 2013

The Protection of Personal Information Act 4 of 2013 aims:

• to promote the protection of personal information processed by public and private bodies;
• to introduce certain conditions so as to establish minimum requirements for the processing of personal information;
• to provide for the establishment of an Information Regulator to exercise certain powers and to perform certain duties and functions in terms of this Act and the Promotion of Access to Information Act, 2000;
• to provide for the issuing of codes of conduct;
• to provide for the rights of persons regarding unsolicited electronic communications and automated decision making;
• to regulate the flow of personal information across the borders of the Republic; and
• to provide for matters connected therewith.

Commencement

• 11 April 2014, Section 1, Part A of Chapter 5 (Sections 39 to 54), Sections 112 and 113 (Gazette 37544 if 11 April 2014)
• 1 July 2020, Sections 2 to 38, Sections 55 to 109, Section 111, Section 114(1), (2) and (3) (Gazette 43461 of 22 June 2020)
• 30 June 2021, Sections 110 and 114(4) (Gazette 43461 of 22 June 2020)
• 1 July 2021, Section 58(2) (Gazette 44383 of 1 April 2021)