Is Your Customer Engagement Programme POPI Compliant?

Updated: Nov 6, 2020

The Protection of Personal Information (POPI) Act came into effect in July 2020 and all

organisations that collect and process personal information must be fully compliant by

July 2021, or face significant penalties for non-compliance.

Becoming POPI compliant can be a daunting task. Applying the PCI DSS disciplines (as a guide) to your loyalty programme can, however, help navigate the move towards POPI compliance.

While separate regulations, both POPI and PCI DSS are information security standards. PCI DSS is a mature global payments standard that is designed to prevent fraud by protecting sensitive payment card data, whereas POPI relates more broadly to protecting the privacy of all personal information. The ultimate goal of both standards is to ensure the customer is protected.

Innervation is a level 1 certified PCI DSS service provider and applies this security framework to loyalty to facilitate POPI compliance. When combining Innervation payments with loyalty, merchants can benefit from using tokenised bank cards as member identifiers.

Speak to the experts in payment security and customer engagement –

Download PDF version