The Eskom Pension and Provident Fund (also known as the Fund or EPPF), as a responsible party, processes enormous volumes of personal information, such as the employment or financial history of a member/pensioner, and/or personal information concerning a member’s health. The Fund also processes enormous quantities of personal information pertaining to beneficiaries (who are sometimes minors).
As a registered pension fund, we also have third-party service providers (operators) who process personal information of data subjects on behalf of the Fund. The EPPF prioritises protecting this personal information to ensure that it does not end up in the wrong hands. It is our responsibility to ensure that we process personal information lawfully in accordance with the conditions for lawful processing in the Protection of Personal Information Act (POPIA).
The Protection of Personal Information Act (POPIA) was officially implemented in the first half of 2018. The Eskom Pension and Provident Fund (EPPF) is aligned with POPIA and is getting their information governance practices in line with the Act’s requirements. But what difference will this make to the lives of EPPF active members and pensioners?
According to the preamble of POPIA, it intends to:
Your personal information is valuable and needs to be managed carefully. Know your rights and protect your privacy. Learn more about your privacy rights from the POPIA Manual.
Copyright © 2024 EPPF