Section 18 Notification to data subject when collecting personal information

If personal information is collected, the responsible party must take reasonably practicable steps to ensure that the data subject is aware of—
1. the information being collected and where the information is not collected from the data subject, the source from which it is collected;
2. the name and address of the responsible party;
3. the purpose for which the information is being collected;
4. whether or not the supply of the information by that data subject is voluntary or mandatory;
5. the consequences of failure to provide the information;
6. any particular law authorising or requiring the collection of the information;
7. the fact that, where applicable, the responsible party intends to transfer the information to a third country or international organisation and the level of protection afforded to the information by that third country or international organisation;
8. any further information such as the—
  1. recipient or category of recipients of the information;
  2. nature or category of the information;
  3. existence of the right of access to and the right to rectify the information collected;
  4. existence of the right to object to the processing of personal information as referred to in section 11(3); and
  5. right to lodge a complaint to the Information Regulator and the contact details of the Information Regulator, which is necessary, having regard to the specific circumstances in which the information is or is not to be processed, to enable processing in respect of the data subject to be reasonable.
The steps referred to in subsection (1) must be taken—
1. if the personal information is collected directly from the data subject, before the information is collected, unless the data subject is already aware of the information referred to in that subsection; or
2. in any other case, before the information is collected or as soon as reasonably practicable after it has been collected.
A responsible party that has previously taken the steps referred to in subsection (1) complies with subsection (1) in relation to the subsequent collection from the data subject of the same information or information of the same kind if the purpose of collection of the information remains the same.
It is not necessary for a responsible party to comply with subsection (1) if—
1. the data subject or a competent person where the data subject is a child has provided consent for the non-compliance;
2. non-compliance would not prejudice the legitimate interests of the data subject as set out in terms of this Act;
3. non-compliance is necessary—
  1. to avoid prejudice to the maintenance of the law by any public body, including the prevention, detection, investigation, prosecution and punishment of offences;
  2. to comply with an obligation imposed by law or to enforce legislation concerning the collection of revenue as defined in section 1 of the South African Revenue Service Act, 1997 (Act No. 34 of 1997);
  3. for the conduct of proceedings in any court or tribunal that have been commenced or are reasonably contemplated; or
  4. in the interests of national security;
4. compliance would prejudice a lawful purpose of the collection;
5. compliance is not reasonably practicable in the circumstances of the particular case; or
6. the information will—
  1. not be used in a form in which the data subject may be identified; or
  2. be used for historical, statistical or research purposes.

Please follow and like us:

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Section 18 Notification to data subject when collecting personal information

Quick Access

POPIA

ACT Summary and Preamble

Chapter 1 Definitions and Purpose

Chapter 2 Application Provisions

Chapter 3 Conditions for Lawful Processing

Part A Processing of personal information in general

Condition 1 Accountability

Condition 2 Processing limitation

Condition 3 Purpose specification

Condition 4 Further processing limitation

Condition 5 Information quality

Condition 6 Openness

Condition 7 Security safeguards

Condition 8 Data subject participation

Part B Processing of special personal information

Part C Processing of personal information of children

Chapter 4 Exemption from Conditions for Processing of Personal Information

Chapter 5 Supervision

Part A Information Regulator

Part B Information Officer

Chapter 6 Prior Authorisation

Chapter 7 Codes of Conduct

Chapter 8 Rights of Data Subjects Regarding Direct Marketing by Means of Unsolicited Electronic Communications, Directories and Automated Decision Making

Chapter 9 Transborder Information Flows

Chapter 10 Enforcement

Chapter 11 Offences, Penalties and Administrative Fines

Chapter 12 General Provisions

PAIA

Part 1 | Introductory provisions

Chapter 1 | Definitions and interpretation

Section 1 Definitions

Section 2 Interpretation of Act

Chapter 2 | General application provisions

Section 3 Act applies to record whenever it came into existence

Section 4 Records held by official or independent contractor of public or private body

Section 5 Application of other legislation prohibiting or restricting disclosure

Section 6 Application of other legislation providing for access

Section 7 Act not applying to records requested for criminal or civil proceedings after commencement of proceedings

Section 8 Part applicable when performing functions as public or private body

Chapter 3 | General introductory provisions

Part 2 | Access to records of public bodies

Chapter 1 | Right of access, and specific application provisions

Section 11 Right of access to records of public bodies

Section 12 Act not applying to certain public bodies or officials thereof

Section 13 Body determined to be part of another public body

Chapter 2 | Publication and availability of certain [public] records

Section 14 Manual on functions of, and index of records held by, public body

Section 15 Voluntary disclosure and automatic availability of certain records

Section 16 Information in telephone directory

Chapter 3 | Manner of access [to public body records]

Part 3 | Access to records of private bodies

Chapter 1 | Right of access

Section 50 Right of access to records of private bodies

Chapter 2 | Publication and availability of certain [private] records

Section 51 Manual

Section 52 Voluntary disclosure and automatic availability of certain records

Section 52A Recording, preservation and disclosure of records on private funding of political parties

Chapter 3 | Manner of access [to private body records]

Part 4 | Appeals against decisions

Chapter 1 | Internal appeals against decisions of information officers of certain public bodies

Section 74 Right of internal appeal to relevant authority

Section 75 Manner of internal appeal, and appeal fees

Section 76 Notice to and representations by other interested parties

Section 77 Decision on internal appeal and notice thereof

Chapter 1A | Complaints to regulator

Section 77A Complaints

Section 77B Modes of complaints to Regulator

Section 77C Action on receipt of complaint

Section 77D Regulator may decide to take no action on complaint

Section 77E Pre-investigation proceedings of Regulator

Section 77F Settlement of complaints

Section 77G Investigation proceedings of Regulator

Section 77H Assessment

Section 77I Information Notice

Section 77J Enforcement Notice

Section 77K Non-compliance with Enforcement Notice

Chapter 2 | Applications to court

Part 5 | Information regulator