The reason why both governance and management disciplines are covered is because data management and governance disciplines have been neglected by most organizations, but the POPI Act that is about to change (Davies, 2011 ). Therefore, in preparation for the POPI Bill, both governance and management will be addressed. The purpose of this research is to develop a framework that will address the effective and efficient governance and management of information privacy in a holistic manner. According to the Business Dictionary (2011), a "framework is a broad overview, scheme or skeleton of interconnected elements, which supports a particular approach to a specific goal and serves as a guide that can be modified as needed by adding or deleting elements" . It is important to provide a distinction between the terms, framework and conceptual framework. A conceptual framework according to educational researcher Smyth (2004), is a tool for discovering research to enable a researcher to give logic to subsequent findings. He also adds that a conceptual framework is a starting point for research and its context. The framework is a tool to help the researcher develop an awareness of the particular situation under study and communicate it (Smyth,