The Academy of Science of South Africa (ASSAf) has launched its POPIA Voluntary Compliance Framework for Research, endorsed by the ASSAf Council.
It is compulsory for all researchers to comply with POPIA. This voluntary Framework provides practical guidance for researchers and research institutions to understand and implement the Protection of Personal Information Act (POPIA), 4 of 2013, in their research activities.
Why a Research-Specific Framework?
Over the past four years, researchers across disciplines have faced unique challenges in interpreting and applying POPIA to their work. These challenges highlighted the need for sector-specific clarity on data processing practices in research settings.
ASSAf responded by convening a working group of experts and engaging widely with the research community to develop a user-friendly, practical resource tailored to the needs of South Africa’s research sector.
The Framework is grounded in real-world experience, informed by diverse stakeholder input, and aligned with ethical standards and legal requirements.
While the POPIA’s primary aim is to protect the privacy of individuals, the ASSAf Framework includes provisions that can facilitate responsible data sharing, and ease participation in contexts like Open Science, cross-continental collaboration, and compliance with international frameworks. Improving South Africa’s data protection credibility helps make it a trusted partner in global data ecosystems.
Key features of the Framework include
- Voluntary adoption: Institutions and researchers are encouraged to adopt and use the Framework as a guide to support compliance with POPIA.
- Practical tools: Includes checklists and simplified guidelines to support compliance.
- Community-driven: Encourages continued dialogue with the research sector to refine and adapt best practices.
The Framework aims to promote uniform and ethical data practices across both the public and private research sectors. It also seeks to uphold transparency, accountability, and the rights of research participants, in line with South Africa’s data protection legislation.
ASSAf remains committed to supporting the research community in navigating data protection compliance and will continue to engage with the Information Regulator and other key stakeholders to ensure the Framework evolves with the sector’s needs.
Access the POPIA Compliance Framework for Research here: http://dx.doi.org/10.17159/assaf.2025/113