POPI Compliance Manual - Matthee Attorneys Inc

Back to Home

The POPI Compliance Manual demonstrates Matthee Attorneys' commitment to protecting personal information in accordance with South Africa's Protection of Personal Information Act (POPI Act). This manual outlines our internal processes, policies, and safeguards to ensure that all personal data we handle is processed legally, securely, and transparently.

As a law firm, we handle sensitive client and third-party information daily. Our POPI Compliance Manual documents our internal controls, staff responsibilities, and operational procedures, highlighting our dedication to privacy, data security, and regulatory compliance.

Understanding POPI Compliance

The POPI Act governs how personal information is collected, stored, processed, and shared. Non-compliance can result in fines, reputational risk, or legal penalties. At Matthee Attorneys, we take compliance seriously and have implemented a structured manual to ensure our operations adhere fully to the law.

Our manual focuses on:

Secure and lawful handling of client and third-party information
Staff accountability for personal data processing
Documentation of our compliance policies and procedures

For regulatory context, see the Information Regulator South Africa.

Core Elements of Our POPI Compliance Manual

1. Governance and Accountability

Clear roles and responsibilities are assigned within the firm to ensure accountability for POPI compliance. Senior management oversees adherence to the Act and maintains governance over all personal information handling.

2. Data Mapping and Inventory

All personal information processed by Matthee Attorneys is identified and recorded. This includes client files, third-party information, and internal staff data, ensuring that all data flows are known and managed securely.

3. Lawful Processing

Our manual specifies lawful grounds for processing personal information, including contractual necessity, legal obligation, and explicit consent from clients.

4. Security Safeguards

Technical and organisational measures protect all personal information against loss, unauthorised access, or breaches. Policies include secure storage, encryption, controlled access, and incident response procedures.

5. Staff Awareness and Training

All team members receive regular training on POPI compliance, ensuring they understand their responsibilities and the importance of protecting personal data.

6. Privacy Policies and Notices

Matthee Attorneys maintains clear internal privacy policies and informs clients of how their data is used and protected in line with POPI requirements.

7. Monitoring and Auditing

Regular reviews and internal audits are conducted to verify compliance with the POPI Act. This includes incident tracking and corrective measures where necessary.

Why This Matters

The POPI Compliance Manual highlights Matthee Attorneys' dedication to professional, secure, and compliant legal services.

By implementing these internal policies and processes, our firm:

Ensures personal data is handled responsibly
Demonstrates accountability and transparency to clients
Complies fully with South African data protection laws
Strengthens trust in our legal practice

Related services where POPI compliance is critical include Personal Law Attorneys and Notary Services.

Commitment to Privacy and Compliance

Our POPI Compliance Manual is an internal framework demonstrating how Matthee Attorneys safeguards client and third-party information. It reflects our ongoing commitment to legal compliance, ethical practice, and responsible handling of sensitive data.

By maintaining strict adherence to the POPI Act, Matthee Attorneys assures clients that their personal information is managed professionally, securely, and lawfully at all times.

Contact Information

Matthee Attorneys Inc

49 Kerk Street, Fochville 2515

Tel: +27 18 771 2041

Email: dawid@matlaw.africa

Last updated: 20 March 2026