Policies and procedures relating to personal information are required. If these are not in place penalties will be higher if there is a compromise (breach) of personal information or if a complaint lodged against the Estate and adequate policies are found to not be in place by the Information Regulator. Examples of these are:
- POPIA Policy;
- Privacy Policy/Notice;
- CCTV Policy;
- Information Security Policy;
- Records and Retention Management Policy;
- PAIA Manual
Other policies are provided in the POPIA and PAIA Compliance Toolkit