United States United Kingdom Australia Canada (English) Canada (French) France Singapore South Africa Global Ireland
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements
NEW Connect to DBS IDEAL direct bank feeds Click here
Charles Ritchie
Level 1
posted
‎November 22, 2022 02:23 AM
last updated ‎November 22, 2022 2:23 AM

POPI ACT

Hi

I had a security breach on Sage. Unknown user changed customer info without any legal access. They cannot tell me who and what. Audit report from Sage available to users and accountants does not show any changes to the debtor's master file

 

This was there reply

 

Thank you for your email.
As a software vendor, we only have certain requirements when it comes to POPI ACT.
Ability to delete personal data after the retention period, etc.
We cannot be expected to keep data secure from changes that can happen.
These are the changes we made for the POPIA update last year

 

Don't I have an obligation towards my customers to keep their info secure and inform them about any security breaches especially if it was changed without my consent.

 

What does Quickbooks say about this ?

 

Reply
1 Comment 1
JamaicaA
QuickBooks Team
QuickBooks Team
‎November 22, 2022 05:50 AM

POPI ACT

Hi there, 

 

I appreciate your effort in reviewing and comparing your data. It’s also great to know that you’ve reach out to them regarding this concern.

 

All public and private companies in South Africa that process personal information are required to comply with the POPI Act, which is a comprehensive privacy law. In line with the broader constitutional right to privacy, it aims to safeguard and control the handling of personal information.

 

Businesses are required by the POPI Act to control how information is organized, stored, protected, and disposed of. By preventing loss, damage, and unauthorized access to the personal data, this ensures that the company can retain the integrity and confidentiality of the information pertaining to its customers and workers. Therefore, it ensures that businesses will handle personal information responsibly and ethically from the point of collection until it is destroyed.

 

I am aware of how crucial maintaining the privacy of our clients' information is. We adhere to regulatory standards regarding the security and confidentiality of your data, as stated in the Intuit Terms of Service. Furthermore, confidential treatment of sensitive data is guaranteed.

 

Since you’re having issues with your customer’s info on Sage, I recommend contacting their Support Team again. They’ll be able to pull up your account and conduct further investigation if necessary.

 

You’ll also want to consider asking help from other for 3rd party to examine this data breach. They can audit and provide the best response in reducing the risk posed by vendors to an acceptable level.

 

For your future reference, you can visit this website to look for resources or articles you can bookmark or save: QuickBooks Help articles page. You can manually search via entering a keyword on the search field or open any of the categories displayed to start browsing.

 

If there is anything else I can do to help you with this, leave a comment below. I am always here to assist you. Stay safe.

Reply