As a Registered Credit Bureau under licence NCRCB25 and a service provider, and employer, Cred-it-data has a range of legislative, regulatory and contractual requirements with which we must comply.  These requirements also change over time, so it is important that we have processes to keep abreast of these changes and regularly review, check and update policies and practice to maintain compliance. 

We ensure that all stakeholders including you our clients are kept informed of any changes and requirements to comply with various legislation. At Cred-it-data we actively monitor and adapt to the following main areas; In no particular order

  • Protection of Personal Information Act (POPI) Act 4 of 2013 as amended
  • National Credit Act (NCA) Act 34 of 2005 and amended in 2015
  • Electronic Communications and Transactions Act (ECT) Act 25 of 2002
  • Promotion of Access to Information Act (PAIA) Act 2 of 2000
  • ISO 27001 guidelines for information security
  • CBA (Credit Bureau Association) code of conduct
  • ISO 31000:2009 Risk Management
  • Agreements with credit bureaus
  • King M.E., 2009 ‘The King Report on Corporate Governance’ by King Committee on Corporate Governance. The Institute of Directors in South Africa: Johannesburg 

Cred-it-data is a member of the Credit Bureau Association (CBA) and adheres to a strict code of conduct that exceeds the requirements of the National Credit Act. As a member of the CBA we adhere to policy directives implemented to improve quality and reliability of data and promote fair treatment of consumers. To find out more about the CBA please visit their website at 

© 2017 Cred-it-Data Online Holdings (Pty) Ltd - All Rights Reserved
Registered Credit Bureau | NCRCB25