This study presents a systematic literature review of scholarly research on the implementation and compliance challenges associated with South Africa’s Protection of Personal Information Act (POPIA) between 2014 and 2024. In total, 41 of the 2069 initially retrieved studies that were found using the PRISMA (Preferred Reporting Items for Systematic Reviews and Meta-Analyses) framework in Scopus and Google Scholar satisfied the requirements for inclusion in the in-depth analysis. This review explores thematic trends, methodological approaches, and sectoral applications of POPIA-focused research. This study provides a thorough evidence foundation to guide policy, practice, and future research regarding POPIA compliance in South Africa. Results indicate a gradual transition from theoretical discourse to empirical and sector-specific research, with qualitative approaches (e.g., interviews and case studies) being the most dominant. Proposed implementation tactics in the literature include staff training, risk assessment tools, and compliance with international data protection requirements, including the GDPR. This study provides a thorough evidence foundation to guide policy, practice, and future research regarding POPIA compliance in South Africa.
Sema et al. (Tue,) studied this question.