Asking for a checklist to become POPI compliant is about the same is asking for the recipe to become rich. There will always be someone willing to sell you a "get rich quick checklist", however rarely do they actually make you rich!
The same is true for the POPI Act!
According to the DPSA, a Governance and Management of ICT system should be able to establish, assign and manage individual accountability and responsibilities with regards to the ICT function and its operations in accordance with the Corporate Governance of ICT Policy Framework implementation Guide.
The following is to form part of the Governance and Management of ICT system:
Better governance and management is to be achieved through implementing structures and functions, assigning roles and responsibilities, and building capability within a governance system that can implement:
A Governance and Management system should also be capable of being expanded to address future requirements, including the following:
Implement the ICT Governance Policy Framework quickly and effectively using this specifically designed implementation tool that will customise your ICT Governance implementation to your organisation's specific needs.
Don't miss the DPSA's deadlines, get your ICT organisation up-to-date quickly using this tool. Developed by persons who have been working with the DPSA's ICT Governance Policy Framework this tool will reduce the effort required to fulfil the requirements.
How mature is your IT organisation? Are your service providers any better? An ISACA certified COBIT 5 assessor can provide you with an accurate assessment of your organisation's capability and guide your organisation in building the desired capability following a formal, highly regarded, internationally recognised approach.
Many assessments of capability have no formal basis and therefore provide varying results. An ISACA certified COBIT 5 assessor will ensure that the results are credible.
Before you outsource you services check the service provider's capability, and if not acceptable make it a condition of the ongoing relationship that the service providers achieves a suitable capability level for your organisation.
Organisations are finding it necessary to contend with increasingly dynamic and demanding external and internal environments by making good corporate governance accessible and fit for application through the adoption of governance practices suitable to the organisation and able to sustain value creation.