Preparing for PCI DSS compliance
Any organisation that processes credit card transactions is required to comply with the Payment Card Industry Data Security Standard (PCI DSS), says Simeon Tassev, director and QSA at Galix. This global standard was developed to ensure the payment card processes and all payment card data are secure throughout a transaction. Compliance requirements differ depending on the size of the organisation as well as their role in the process, however, one mistake many enterprises make is in believing that the compliance process is a simple task that takes at most a few weeks.
POPI: the race to data safety
The passing of the Protection of Personal Information Act (POPI) into South African law in 2013 and the imminent appointment of an Information Regulator has forced local businesses to sit up and listen as they are given a deadline of a year to comply, says Gregory...
Electronic signatures and POPI
The Protection of Personal Information Act (POPI), which may be enforceable in the next few months, is currently a hot topic for many businesses. Whereas previous regulations around information security and privacy have focused strongly on the financial services and...
Technology key for TCF compliance
Many companies today are in a state of denial about the quality of the customer experience they provide. A study by Bain and Company found that while 80% of companies are confident that they deliver a superior customer experience, only about 8% of their customers...
No more data loss coverups for SA business
South Africa has an historical culture of non-disclosure and cover-ups when it comes to data loss and data breaches -- but, the Protection of Personal Information (POPI) Act will force much greater transparency, says Jos Floor of Floor Swart attorneys.The Act...
Data governance should not intimidate
Market forces are driving data awareness as businesses realise that they can derive significant value from effectively analysing data and applying the findings to decisions and actions, and as regulators tighten rules around how data should be managed, says Antionette...
Yellowfin helps bank be Basel III compliant
Following the worldwide financial crisis that started in 2008, the Basel Committee of Banking Supervision responded to the deficiencies in financial regulation by creating a regulatory framework that strengthens bank capital requirements. Basel III, also known as the...
Cubic Blue tackles GRC for big data
Knowledge Integration Dynamics (KID) group has launched a new company called Cubic Blue that specialises in enterprise information management (EIM) directed at big data, governance, risk and compliance (GRC). Cubic Blue is a reseller and implementation partner for...
CA ERwin release boosts data governance
CA Southern Africa has announced a new release of CA Technologies acclaimed CA ERwin data modelling solution that helps organisations promote strong data governance and derive maximum value from their big data and business intelligence initiatives. Today’s...
Dealing with compliance challenges
The full force of new legislation relating to consumer rights, electronic communications and data protection which takes hold this year poses a major challenge for SMEs who will have to comply with its onerous requirements, says Matthew Balcomb, CEO of Call Cabinet...
Altech Netstar wins ISO9001 certification
Altech Netstar, part of the Altron TMT group, became one of only two telematics companies in South Africa to receive ISO9001:2008 certification after implementing a comprehensive Quality Management System (QMS) throughout the organisation during 2014. This...
POPI regulator could mitigate cybercrime
Fast tracking the appointment of the POPI Information Regulator could help increase disclosure and dialogue around cyber security, says Jonas Thulin, security specialist at Fortinet. Cybercrime is escalating globally, and South African organisations are targeted as...