Why choose an IT Governance Network course?

The IT Governance Network's trainers have extensive knowledge and experience with the protection of personal information. Some members of staff are active Information Officers for clients and have been advising on the measures necessary to satisfy the requirements of the Protection of Personal Information Act for a number of years. Other staff participated in the Parliamentary discussions that resulted in the legislation.



General and specialist courses address various aspects of the lawful processing of personal information. Courses are available in-house, open to the public and online. 

POPI: Complying with the Act

The Protection of Personal Information Act requires all public and private bodies to process personal information in accordance with the conditions for the lawful processing of personal information. In most organisations personal information is ubiquitous and the risk of not processing personal information is high.

This course provides the attendee with an understanding of the key requirements of the Act and a road map to address the requirements and manage the risk.

POPI: Impact on HR 

The processing of personal information with the human resources function presents many challenges for those responsible. Currently the misuse of personal information within HR is widespread making many organisations vulnerable to complains from unsuccessful job applicants and employees.

This course includes topics about processing personal information within the human resources function. Practical examples illustrate what is acceptable and what is unlawful.

POPI: Role of Information Officers 

Information officers have a significant role in overseeing the protection of personal information and can be personally liable in some instances where they do not fulfil their responsibilities.

This course will assist attendees understand the role and responsibilities of the information officer in encouraging a public or private body complying with the requirements for the lawful processing of personal information, handle personal information requests and respond to interferences.

POPI: Obligations of responsible Parties 

It is the responsibility of the “Responsible Parties” identified by the CEO and listed in the PAIA manual to ensure that personal information is processed lawfully and in a reasonable manner that does not infringe the constitutional rights of individuals to privacy.

This seminar informs heads of public bodies, CEO’s of private bodies and the business leaders identified as “responsible parties” about their role and responsibilities for processing personal information lawfully.

POPI: Security using ISO 27001 

The Protection of Personal Information Act requires all organisations to implement the necessary safeguards to protect personal information according to generally accepted information security practices and procedures.

This course provides attendees with an understanding of the approach required to identify and implement the necessary safeguards to protect the processing of personal information using ISO 27001, the international generally accepted standard for information security.

POPI: Requirements for ERP Systems

Enterprise Resource Planning (ERP) systems process a wide variety of business information, including many types of personal information. ERP systems have many features that can assist responsible parties protect personal information. Omitting to use the available features could be a problem when non-compliance is reported to the Information Regulator.

This course provides attendees with an understanding of the privacy-related issues that will need attention in ERP systems.

POPI: Auditing Readiness and the Programme

The Protection of Personal Information Act is technical and complex. It has numerous requirements that impact just about everyone within an organisation, it’s customers, suppliers and service providers.

This seminar includes topics about:

  • Which aspects of POPI are important to auditors
  • How auditors should plan their approach
  • Conducting an audit of the organisation’s POPI programme.



View the latest Protection of Personal Information training schedule on the top menu - SEMINAR SCHEDULE.