Kenya Set to have a Data Protection Commissioner

In 2019, Kenya signed into law its Data Protection Act making the count of countries in Africa to have in place a law that protected citizens against data violations 27 according to UNCTAD. Having being in discussion for a number of years, the data protection act was widely discussed and compared to the General data protection Regulation (GDPR) that came into effect on 25 May 2018. It is said that the GDPR set the grounds for most data protection laws across the globe.

Data Protection Laws across Africa as of 2019. Src: Privacy Matters

The Cabinet Secretary ICT in Kenya CS Joseph Mucheru announced there shall soon be a Data Protection Commissioner and as of 23rd June 2020, a list of candidates was gazetted as below;

S/NoNameGender
1John Walubengo Nyongesa, OGWMale
2Thomas Oganga OdhiamboMale
3Immaculate Kassait, MBSFemale
4Prof. David GichoyaMale
5Brian Gichana OmwengaMale
6Anthony Akelo OkuloMale
7Dr. Kennedy Okong’o (PhD)Male
8Murshid Abdalla MohamedMale
9Mercy Kiiru WanjauFemale
10Dr. Mwalili Tobias MbithiMale

Responsibilities

Duties and Responsibilities The Functions of the Office of the Data Commissioner are provided in Section 8(1) of the Data Protection Act and shall include:

  • Overseeing implementation of and being responsible for enforcement of the Data Protection Act.
  • Establishing and maintaining a register of data controllers and data processors
  • Exercising oversight on data processing operations and verify whether the processing of data is done in accordance with this Act.
  • Promoting self-regulation among data controllers and data processors.
  • conducting assessment for the purpose of ascertaining whether information is processed according to the provisions of the Act or any other relevant law.
  • receiving and investigating any complaint by any person on infringements of the rights under the Act.
  • taking such measures as may be necessary to bring the provisions of the Act to the knowledge of the general public.
  • carrying out inspections of public and private entities with a view to evaluating the processing of personal data.
  • promoting international cooperation in matters relating to data protection and ensure country’s compliance on data protection obligations under international conventions and agreements.
  • undertaking research on developments in data processing of personal data and ensuring that there is no significant risk or adverse effect of any developments on the privacy of individuals.
  • performing such other functions as may be prescribed by any other law or as necessary for the promotion of object of the Act.

Kenya setting a path to having a Data Protection Commissioner sets a good precedence for organizations to also do the same. The Data Protection Act 2019 mandated organizations to have positions of DPOs, and with the highest office having set the standards, the rest can easily follow in.

Data being the new ‘oil’ on the Internet space and growing by the second, organizations are meant to protect the data from access by cyber criminals maintaining its Confidentiality, Availability & Integrity (CIA Triad). This can be achieved by implementing different solutions, but with the onset of having a DPO (Data Protection Officer), the organizations will more assured that the data is more secure as there is an oversight department in the organization.

https://www.nation.co.ke/oped/blogs/dot9/walubengo/Data-Protection-Act-lessons-from-Kenya/2274560-5398536-u9sselz/index.html

May the best candidate win.

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Zoom Bombing & Trolls: Virtual Conference Meetings

With the Corona virus pandemic (Covid-19) having limited us to work from home and social distancing viewed as the only way of flattening the curve and reducing the virus infections. We had no alternative but to turn to the Zoom remote conferencing platform to host the Top 50 women in cybersecurity Africa conference. But later […]

Tech & Preservation of Cultural Heritage in Africa

Africa is known for its rich culture and preservation of heritage. But technology has changed the way preservation of this has been done for ages, introducing new challenges to the Museums meant to preserve heritage across the world. Africa Legal Tech Network held a conversation addressing this concerns and what the way forward would be […]

Legal and Tech Infusion

Fast evolving technologies such as Blockchain, AI and cybersecurity have resulted in law firms struggling for talent that understands technology. Law firms are now scouring for attorneys with relevant expertise in cyber and cryptography to advise corporate and government clients when implementing technology, and being able to navigate the nascent case laws. The biggest gap […]