SACAA Annual Report 2022_23

S

R

A

Y

E

As part of the mitigation of non-compliance risk, the SACAA identified and focused on the development of Compliance Risk Management Plans (CRMPs) for the following laws: the Prevention and Combating of Corrupt Activities Act, 2004 (Act No. 12 of 2004) (PRECCA), the Employment Equity Act, 1998, (Act No. 55 of 1998) (EEA) and the Promotion of Access to Information Act, 2000 (Act No. 2 of 2000) (PAIA) and reported on these to the relevant governance committees. It is reported that 100% of the Legal Compliance Implementation Plan was achieved for the 2022/23 financial year. Since the coming into effect of the Protection of Personal Information Act, 2013, (Act No. 4 of 2013) (POPIA) in June 2021, the SACAA approved Project Plans for each financial year and put in 11. COMPANY SECRETARY The Board confirmed that it is supported by a competent and qualified Company Secretary. The Company Secretary plays an instrumental role in advising the Board on its roles and responsibilities, among other duties. The roles and responsibilities of the Company Secretary are defined in the Board Charter, read together with the King IV report™ and the Company Secretary is evaluated annually and every second year as part of the Board Evaluation. The Directors have full access to the services and advice of the Company Secretary and all information and records necessary for the discharge of their duties. In addition, the Board of Directors had access to the services of independent professionals and advisors where necessary; and such advice is obtained in accordance with the Board-approved process. The Company Secretary maintains an arm’s length relationship with the Board and its Directors.

place a project committee to drive compliance at an operational level. Divisional POPIA CRMPs were created and circulated to all SACAA divisions where gaps were identified for each provision of the Act. This was done in conjunction with the POPIA Audit Questionnaires, where controls were identified and documented accordingly. The SACAA developed the POPIA Compliance Framework, the Privacy Policy (approved by the Board in October 2022), the External Privacy Statement, the POPIA Compliance Tracker and the Website Privacy Policy. The SACAA achieved 100% compliance with the POPIA Project Plan implementation for the 2022/23 financial year. Compliance in terms of the POPIA will be ongoing, and a further implementation plan will be developed in 2023/24. The Company Secretary is also empowered with the necessary authority and support to carry out her duties as follows: • Maintaining all statutory records. • Annually reviewing all Board and Committee Charters. • Assisting the Chairperson with the annual Board evaluation. • Advising the Board on business ethics and good governance. • Ensuring that the Board’s policies and instructions are communicated to the appropriate persons in the Authority. • Ensuring that the Board receives adequate information to make informed decisions. • Ensuring Board induction, training, and development. • Monitoring of legislative compliance. • Being responsible for implementation of the ethics programme.

Governance I Annual Report 2022/23 I 119