INFO REGULATOR SA STRAT PLAN

Part B

3.1. External Environmental Analysis 3.1.1. Political, Economic, Social, Technological, Economic and Legal (PESTEL) analysis was considered in order to identify external factors or environments which have a potential to impact the implementation of the APP. Table 2: External environmental analysis PESTEL Threats (External) Implication forthe Regulator Opportunities (External) Implication for the Regulator Political • Contradiction between POPIA and PFMA in terms of accountability. • Ambiguity in terms of accountability. • Review POPIA and PAIA. • Strong government support to data privacy law and global alignment on data protection policies. • Increase scope of work for the Regulator. • Starting the process to review POPIA. • Delays in the independence of the Regulator from DoJ&CD. • Delays in procurement of services. • Independence could be compromised. • Delegation of authority. • New policies and legislation can influence functional, efficient, and integrated State. • Policies and bills that are aligned to the mandate of the Regulator. • Collaboration with other entities to enhance implementation of the Regulator’s mandate. • Changing government regulations related to Information, Communication and Technology (ICT). • Update systems, policies, and processes to remain compliant. • Collaboration with other public entities. • Active technological participation in the regulatory environment. • Politically motivated cyber threats. • Being targeted based on being a public entity. • Computer Security Incident Response Team (CSIRT) membership. • Informed of public sector targeted cyber-attack. • Geopolitical tensions. • Inability to access services hosted in affected countries.

3. Situational Analysis

Information Regulator SA

16