Protection of Personal Information Act, 2013 (Act No. 4 of 2013)Codes of ConductGuidelines to Develop Codes of ConductPart 5 - Reviewing, Varying and Revocation of an approved code of conduct30. Review of the operation of an approved code of conduct |
| 30.1 | The Regulator may on its own initiative review the operation of an approved code within a five (5) year period or as and when deemed necessary. |
| 30.2 | The review may occur when the Regulator becomes aware of, amongst others, the following: |
| 30.2.1 | a change in industry practices, technology or expectations of affected persons that may impact the effective operation of a code; or |
| 30.2.2 | the lack of compliance with an approved code. |
| 30.3 | The Regulator will notify the relevant body in writing of the decision to review the code. The Regulator will undertake a consultation during the review process. |
| 30.4 | If the Regulator decides to review an approved code, the Regulator must publish a notice of the review on its website requesting comments from affected persons. |
| 30.5 | The outcome of the review of a code may inform a decision by the Regulator to revoke an approved code. |