The other day I got a call from a company trying to sell me a DSTV decoder. They refuse to tell me where they got my number from, as is required by the #POPI Act.

I'm thinking to get the Information Regulator involved. Has anyone in #SouthAfrica gone through this before?

At the summit of Mount Popi - Stuanmandl (1941 m) there is a panoramic view, until the Dolomites. The summit of Mount Monte Luco - Laugen (2434 m) in the distance

#Stuanmandl #Popi #MontePopi #Laugen #MonteLuco #hiking #naturephotography #alps #mountains #LandscapePhotography #bealpine #Italy #vsco #vscocam #K2

It's actually quite weird this whole shift towards personal information and deletion of it, visa vis #POPI, #GDPR, and others. It's a big paradigm shift when you think about it. One of things I grew up with was the idea that you had to keep all financial documents and records for a minimum period of five years. And not just your personal tax documents (although definitely those too), but client records. And in the case of client records, that's five years /after/ they've ceased being a client.

But now they say you have to delete all data no more than 60 days after you terminate the relationship.

I also remember applying for jobs, and getting, "We don't have anything suitable right now, but we'll keep your CV on file."

And once or twice, I did get a job months later, *because* the company kept my CV on file. But now you're not allowed to do that anymore, because CV's contain personal information (and personally IDENTIFIABLE information, at that), so you need to destroy them as soon as you're done with the application process for that position.

It's a total about-turn!

#PII #PI #Privacy

He knows when you’ve been sleeping.
He knows when you’re awake.
He knows if you’ve been bad or good.

Santa is going to be in trouble with #GDPR and #POPI cause he did not get explicit opt in for this level of monitoring

Photos of travellers who entered and exited the U.S. were stolen in a data breach - If it were a private company who'd be held liable?

Photos of travelers collected by U.S. Customs and Border Protection (CBP) have been compromised in a data breach, the agency revealed on Monday. "The subcontractor’s network was subsequently compromised by a malicious cyber-attack. No CBP systems were compromised."
Irrespective of who was finally at fault, citizens trust an agency (or do not trust, but are forced to trust) to collect private data and they expect that agency to take all measures to safeguard it. Here in South Africa, we have the POPI Act which can hold CEO's of companies privately liable and could result in jail terms. All these laws though are not worth the paper they are written on until someone really does go to jail. So what happens with government agencies? Does someone really get ultimately held liable and get sent to jail? If so, we can expect serious changes to the protection of data with "trust no-one" policies in place. https://squeet.me/objects/962c3e1076e74e04719410173d9b9db5422797df