An ontology for the south african protection of personal information act
Loading...
Date
2020
Authors
Journal Title
Journal ISSN
Volume Title
Publisher
Curran Associates Inc.
Abstract
The protection and management of data, and especially personal information, is becoming an issue of critical importance in both the business environment and in general society. Various institutions have justifiable reasons to gather the personal information of individuals but they are required to comply with any legislation involving the processing of such data. Organisations thus face legal and other repercussions should personal information be breached or treated negligently. Most countries have adopted privacy and data protection laws or are in the process of enacting such laws. In South Africa, the Protection of Privacy Information Act (POPIA) was formally adopted in 2013 but it is yet to be implemented. When the implementation of the Act is announced, role players (responsible parties and data subjects) affected by POPIA will have a grace period of a year to become compliant and/or understand how the Act will affect them. One example of a mandate that follows from POPIA is data breach notification. This paper presents the development of a prototype ontology on POPIA to promote transparency and education of affected data subjects and organisations including government departments. The ontology provides a semantic representation of a knowledge base for the regulations in the POPIA and how it affects these role players.
Description
Keywords
Data protection, General data protection regulation, Information privacy, Legal ontology, Protection of personal information act
Citation
Jafta, Y. et al. (2020). An ontology for the south african protection of personal information act. European Conference on Information Warfare and Security, ECCWS 2020-June, pp. 158-167. Pretoria.