Data security protects enterprise information from malicious insiders and hackers
We implement centrally defined access policies using dynamic masking and tokenisation.
Data activity monitoring and user behaviour analytics detect and prevent malicious activity, without compromising your data
THE 4 PILLARS OF DATA SECURITY FOR PRIVACY
Govern, Protect and Monitor your Personal Data
How does data security apply to PoPIA?
We often hear the terms data privacy and data security being used interchangeably. Yet, they are not the same thing.
South Africa's Protection of Personal Information Act (PoPIA) list eight conditions for the protection of personal information, of which only one (Condition 7) is focused on data security.
Similarly, data security is a substantial discipline that extends beyond ensuring data privacy.
Let's take a look at PoPIA Condition 7
PoPIA Condition 7 - Security safeguards
- A responsible party must secure the integrity and confidentiality of personal information in its possession or under its control by taking appropriate, reasonable technical and organisational measures to prevent—
- loss of, damage to or unauthorised destruction of personal information; and
- unlawful access to or processing of personal information.
- In order to give effect to subsection (1), the responsible party must take reasonable measures to—
- identify all reasonably foreseeable internal and external risks to personal information in its possession or under its control;
- establish and maintain appropriate safeguards against the risks identified;
- regularly verify that the safeguards are effectively implemented; and
- ensure that the safeguards are continually updated in response to new risks or deficiencies in previously implemented safeguards.
- The responsible party must have due regard to generally accepted information security practices and procedures which may apply to it generally or be required in terms of specific industry or professional rules and regulations.
Universal Data Authorization

Dynamically compliance with data security and privacy regulations