Business, clients need protection

2020-05-20 06:03
Damian Viviers

Damian Viviers

Multimedia   ·   User Galleries   ·   News in Pictures Send us your pictures  ·  Send us your stories


My business collects and stores quite a large amount of client data.

Recently we were nearly hacked, and were lucky that no information was leaked.

I am concerned about another attack and worried about what would happen if information was leaked. What can I do?


It is well-recognised that the way we do business and interact has radically changed in the digital age. Businesses operate online, have social media accounts and trade with consumers that never set a foot inside their store.

Customers also review, rate and make decisions about a business based on their online credentials.

The more data a business processes, however, the bigger target it becomes larger also the target painted on the back of the business for potential hackers, scammers and fraudsters.

Consumers have become increasingly concerned about privacy andthe security of their digital footprint and make engagement decisions based on the perceived risk level.

Nothing scares off consumers more easily than a business that appears to have been compromised, is not safe to engage with or is vulnerable to hacking or other online malfeasance.

Recent studies have predicted that nearly two-thirds of consumers would likely end a business relationship with a company whose data security in respect of personal information has been compromised.

This makes data security and privacy a vital aspect of any business today, with a failure to do so potentially attracting massive reputational damage and loss of business.

Businesses cannot ignore the need to take steps to protect the personal information of its customers.

With the introduction of the Protection of Personal Information Act 4 of 2013 (Popia), this need has now also been legislated.

All businesses that process personal information of customers are required to secure and safeguard such information.

Popia obliges businesses to ensure data security by taking appropriate and reasonable technical (electronic) and organisational (physical) measures to prevent loss, damage, unauthorised destruction, unlawful access to, and unlawful processing of personal information.

To do so, businesses should consider generally accepted information security practi­ces and procedures, as well as any specific practices and procedures that may be required in terms of industry-specific rules and regulations that apply to the business.

In addition to physical and electronic security measures, a business must also implement an appropriate data governance framework, including policies and procedures to ensure that their employees have a clear understanding of data security and their obligations in this regard.

If your business has not yet taken the necessary steps to prepare for such compliance – particularly if you have already been targeted – it can only be recommended that you obtain advice from data-protection specialists to help you get the necessary procedures and measures in place to protect your business, reputation and client information. – Damian Viviers, associate, Phatshoane Henney Attorneys


Inside News24

Lockdown For
Traffic Alerts
There are new stories on the homepage. Click here to see them.


Create Profile

Creating your profile will enable you to submit photos and stories to get published on News24.

Please provide a username for your profile page:

This username must be unique, cannot be edited and will be used in the URL to your profile page across the entire network.