Nigeria released its draft Data Protection Bill, 2022 outlining a legal framework for personal data protection. The bill would establish the Nigeria Data Protection Commission to regulate personal data processing and outlines principles for processing personal information — including conducting data protection impact assessments and appointing a data protection officer — breach notification and cross-border data transfer restrictions, and enforcement abilities including investigations and civil ... Read More

Kenya created a requirement for startups that process personal data to register with the Office of the Data Protection Commissioner, PYMNTS.com reports. While Kenya’s Data Protection Act is the EU General Data Protection Regulation’s closest parallel on the African continent, a potential bilateral trade deal with the U.S. could save American companies compliance headaches after the EU-U.S. Privacy Shield was overturned in 2020. However, provisions of the anticipated Kenya-U.S. trade deal could c... Read More

The Information Regulator of South Africa announced initial appointments to its Enforcement Committee. Provided for under Section 50 of the Protection of Personal Information Act No. 4 of 2013, the committee is made up of 14 members from various sectors. Helen Fourie was appointed chair of the committee while Simonè Margadie will be alternate chair. Information Regulator Chair Pansy Tlakula said the committee's establishment means the regulator "will be able to enforce its powers and provide an ... Read More

The Smart Africa Alliance and the Network of African Data Protection Authorities signed a memorandum of understanding to support authorities’ enforcement and harmonization of personal data protection laws, African Business reports. Through the MOU, the groups stated support for national data strategies and “a harmonized framework” around enforcement, support for African states preparing or updating privacy and personal data legislation and developing enhanced collaboration.Full Story... Read More

A framework that would coordinate data protection laws across Nigeria and other African nations has been created and is being tested in five countries, the Guardian reports. “The implication is that any data centre could be hosted in any African country. It also enables multinationals to choose a country in Africa they can invest in and any transfer of data would be linked to Africa,” National Information Technology Development Agency Regulations, Monitoring and Compliance Lead Olufemi Daniel sa... Read More

South Africa finally has data protection legislation! Although the right to privacy has been enshrined as a fundamental right in the Bill of Rights since 1996, United Nations Special Rapporteur on the Right to Privacy Joseph Cannataci said in March South Africa is “about 30 years behind” in implementing its privacy legislation when compared to other jurisdictions. The substantive provisions of the Protection of Personal Information Act 2013 enter into force July 1 (certain provisions relating t... Read More

In a virtual meeting, Nigeria’s federal government officials called for more collaboration on data protection and privacy, according to PR Nigeria. Data Analytics Privacy Technology Director Franklin Akinsuyi spoke of the benefits of data protection and privacy impact assessments, both now and post-COVID-19. “Government institutions need to collaborate to properly assess, co-ordinate and identify the data protection and privacy risks to the population,” he said.Full Story... Read More