By Mandate


One of the most disruptive compliance events for businesses in South African history, the Protection of Personal Information (POPI) Act seeks to regulate the processing of personal information and data breach notification.


"South Africa's GDPR"

The Protection of Personal Information (POPI) Act brings South Africa in line with existing data protection laws around the world, aiming to protect PII, enforce an individual's right to privacy and provide guidelines for lawfully processing such information and notifying regulators and data holders in the event of a breach. Trustwave can help elevate your security posture and streamline your compliance process.

POPI: Fast Facts and Consequences

  • POPI applies to any company in South Africa that processes personal information.
  • Once an information protection regulator has been appointed to administer the law, companies will have 12 months to comply.
  • Offenders face harsh punishments: imprisonment of between one to 10 years and fines of R10 million.
  • Violations may also lead to enforcement notices requiring non-compliant companies to stop processing personal information.

Expertise. Intelligence. Customized.

  • Dashboard Portal Icon

    Tailored for Your Organization

    Our compliance assessment involves various policies, procedures and practices which we evaluate through documentation review, interviews, facilities inspection, controls assessment and examination of your current security architecture.

  • Call Center Person Icon

    Extensive and Experienced Support

    Our team of seasoned compliance support analysts are available 24x7x365 to aid businesses of all sizes, from the largest enterprise to the sole proprietor.

  • Compliance Management Icon

    Security Portfolio Enables Compliance

    If your security stance is mature, compliance to POPI will be a natural byproduct. Our suite of security products and managed services help protect critical assets and combats advanced threats.

  • SpiderLabs Icon

    Supported by Industry-Leading Threat Intelligence

    Our elite SpiderLabs team and federated global network of security operations centers produce unique threat intelligence that helps us prevent, monitor and respond to security events.


POPI compliance should be a front-burner issue for your organization. As you embark on your compliance journey, we can offer custom assessments to get you ready and technologies and services to help get and keep you in line with the rules.

Managed Security Services

Augment your existing staff with managed security services that evolve processes, elevate data protection strategies and advance the way you manage threats. With deep expertise and unmatched threat intelligence, we will design a program that supports your security and POPI demands, while giving you complete visibility and control.

Managed Security Testing

Receive on-demand, precision-based penetration testing with just a few clicks of a mouse. With a subscription, you can log in to the portal and schedule testing of databases, networks and applications.

Enterprise-Grade Data Security

Identify security lapses and ensure your information repositories stay protected from internal gaffes and nefarious attackers, while maintaining compliance with POPI.

Incident Readiness and Response

Prepare for and react to security incidents and breaches with the help of our SpiderLabs team, who identifies root causes of incidents and communicates responses in a way your team and management can understand.