You have to:

  • practice good IT governance,
  • manage IT legal risks, and
  • comply with the IT laws, rules, codes and standards that apply to your organisation.

We can help you to do it practically and effectively. Many people are not aware of the IT laws that apply to their business or the legal aspects of IT Governance, Risk and Compliance (IT GRC). What must an organisation comply with? What should you consider? What IT legal risks should be addressed? What impact does the law have on information, communication and technology (ICT)?

Why does it matter? What could happen to you if you don’t comply?

  • Suffer reputational damage
  • Lose customers and fail to attract new ones
  • Pay out millions in damages to a civil class action
  • Be fined or face  years in jail

We offer a presentation, seminar, workshop, or executive briefing on this topic by an expert with practical experience. We also offer an eCourse on request.


  • Get an overview of IT or cyber law (including the ECT Act, RICA, PAIA, and POPI) and know what practical action to take.
  • Get expert practical legal advise and guidance, but use your resources.
  • Save time and fast track your compliance efforts whilst still applying good management principles.
  • Identify your main areas of concern.
  • Get a working understanding of the effect of IT law issues on your organisation.
  • Get a bird’s eye view and a detailed analysis of the specific practical issues that concern you.
  • Find out how to comply and implement IT laws in your organisation.
  • Find solutions to fill gaps.
  • Plan what you need to do, and when.
  • Make your compliance project a success.
  • Get up-to-speed quickly.
  • Know how you can monitor, evaluate, and assess compliance with external legal and regulatory requirements related to IT.
  • Do a high level assessment of your organisation.
  • Understand the context of IT laws and how they interact (and overlap) with each other.
  • Be aware of the latest developments. See the article Are you aware of applicable IT laws for more information.

What do we cover?

  • Laying the foundation – IT Governance, Risk and Compliance (IT GRC). Parliament has gone mad
  • Why IT GRC matters – Addressing IT legal risks. Exploring the link between the governance principles in King III and IT law. What does COBIT say about the law and compliance?
  • Compliance with IT laws and consideration of IT rules, codes and standards. What must your organisation comply with?
  • Who is responsible?
  • An overview of IT laws – an analogy with a plumbing system
  • The practical application of the law to real issues (things like electronic signatures, email disclaimers, social media, and cloud computing)
  • The latest developments, including recent South African case law on facebook and gmail.
  • Tips for successful projects. Questions you should be asking. The process you should follow. Looking at solutions – keep the end in mind. Some quick wins and factors for success. Using frameworks – like an IT Legal Framework.
  • Take home points and Action items

“Legal experts were brilliant” delegates at an IT Governance, Risk and Compliance conference

Course Material

We will give you:

  • a copy of our comprehensive presentation covering IT law and GRC,
  • a copy of our List of IT Laws,
  • a copy of the signed version of POPI, including a POPI word cloud,
  • our POPI Mapper – a tool to map activities,
  • access to the restricted premium content on,
  • a list of Action Items so that the session translates into practical action.
  • the IT Legal Framework Top 10 Issues and a 10% discount off the full IT Legal Framework.

Annual Public seminars

The next workshop taking place is scheduled in the following cities:

One delegate is R3,500 (excluding VAT). Two or more qualifies for a 10% discount. We will serve lunch and refreshments. We limit delegate numbers, so bookings are done on a first come, first served basis. We aim to give practical insights that you can use to be effective. We do not give law lectures! We will refund you, if you do not think you received value.

What sets us apart?

  • We have significant practical experience dealing with these specific areas.
  • Our sessions are interactive – you are able to ask questions, have your specific issues dealt with, and influence what gets discussed.
  • Our sessions are tailored to the attendees – we ask you questions in advance so that we know what your issues are and your existing level of knowledge.
  • We do not give sales pitches, which is unfortunately so often what speakers do at conferences.
  • We provide insight and simplify the issues, which can only be done after practically applying IT laws to real business issues.
  • We empower you and do not try to entrench ourselves in your organisation.
  • The topic gets covered more comprehensively when one person leads the discussion for a day, than many different people covering the same ground. It is not different people covering the same issues superficially in different ways.
  • We cover the same ground in one day, rather than two. This saves you time and money. We tell you what you need to know, not everything.

Who should attend? Why should they be aware of IT laws?

  • IT Governance officers and specialists – to govern IT
  • Compliance officers – to effectively comply with IT laws
  • Information (protection) officers – to balance access to information and protection of personal information
  • Legal advisors (corporate lawyers or in-house lawyers) – to provide good legal advice on IT issues
  • Information Security Officers – to secure IT
  • CIOs and IT Managers – to manage IT
  • CAEs, auditors and assurance providers (internal and external) – to audit and provide assurance regards IT
  • CROs and Risk Managers – to address IT legal risks
  • IT Operators – to ensure that IT operates
  • Directors (executive and non-executive, CEOs and FDs) – to discharge their legal duties and direct the course of the organisation
  • Consultants – to advise and provide solutions on IT related issues

Who is the presenter?

practical attorney from Michalsons. We will ensure the attorney is the best person to present the course depending on the type of course, the date, the specific issues and the attendees. For example, John Giles often presents on this topic. John is a trusted independent legal adviser, who is a practising attorney. He is currently helping many organisations comply with IT laws, rules, codes and standards, and address IT legal risks.  He has also presented over 20 times on the topic. He has 13 years of practical experience applying his knowledge to organisations to help them grow and avoid legal problems, difficulties, and disputes. He is a member of the King III IT Governance Sub-Committee.

How long is it?

We provide this course in different formats. Public and private sessions can last for anything from 45 minutes, half a day or a full day. We also provide eCourses that can be done via the Internet at your convenience. We welcome enquires for more information and details.


If you are interested, please complete the form on the right or

Enquire Now

We will contact you to discuss your requirements or send you an invoice.


Our public workshops are at various venues around the country. We choose venues that are central so you can get to it easy, that have adequate parking, good food, and that ensure you are comfortable. We are happy to give the seminar, workshop or executive briefing at your venue. If you want a personal in-house seminar at your offices, please contact us and we will send you a quote.