The Protection of Personal Information Act (POPIA) is South Africa’s data protection law. The main purpose of POPIA is to protect people from harm by protecting their personal information. For example, the Act aims to protect people from having their money being stolen, to stop their identity being stolen, and generally to protect their privacy, which is a fundamental human right entrenched in our Constitution.