Zimbabwe

Summary

Regulator: Postal and Telecommunications Regulatory Authority of Zimbabwe (POTRAZ)

Summary: The Cyber and Data Protection Act (the Act) was enacted on December 3, 2021, although an official transition period or date for entry into force has not been announced. Initially established under the Postal and Telecommunications Act, the Postal and Telecommunications Regulatory Authority of Zimbabwe (POTRAZ) has now been designated as the data protection authority responsible for enforcing the processing of personal data in accordance with the Act. In general terms, the Act focuses on breach and data processing notifications to POTRAZ, data security, online conduct, whistleblowers, data transfers, and limited data subject rights.

POTRAZ published a draft for the Cyber and Data Protection Regulations, 2022 (the Draft Regulations) pursuant to Section 32 of the Act in November 2022. The Draft Regulations clarify obligations under the Act including the registration of data controllers and processors, conducting a legitimate interest assessment, and data breach notification procedures. Further, the Draft Regulations outline obligations specific to organizations in healthcare, insurance, and banking.

Browse more content in Zimbabwe

All Guidance Notes

All News

All Insights

News

22 November 2022

Zimbabwe: POTRAZ announces the release of draft Cyber and Data Protection Regulations

07 December 2021

Zimbabwe: New Data Protection Act enacted, MISA Zimbabwe calls for repeal of some provisions

22 September 2021

Zimbabwe: Cybersecurity and Data Protection Bill passes Parliament, MISA Zimbabwe appeals to President to decline assent

16 March 2021

Zimbabwe: MISA Zimbabwe highlights need for robust data protection framework in deployment of ICT

16 March 2021

Zimbabwe: MISA Zimbabwe expresses concern over surveillance in Zimbabwe

03 July 2020

Zimbabwe: Freedom of Information Bill signed into law

24 June 2020

Zimbabwe: MISA Zimbabwe publishes recommendations on data protection bill

19 June 2020

Zimbabwe: Parliament launches public consultation on data protection bill

08 June 2020

Zimbabwe: MISA Zimbabwe publishes report on information and exercise of internet rights

21 May 2020

Zimbabwe: MISA Zimbabwe comments on data protection and cybersecurity bill

18 May 2020

Zimbabwe: Cybersecurity and data protection bill published with Government Gazette

25 February 2020

Zimbabwe: MISA Zimbabwe issues statement on adopting rights-based approach in internet regulation

Insights

January 2023

Zimbabwe: An overview of the Draft for the Cyber and Data Protection Regulations

The Minister of Information and Communications Technologies published a new Draft for the Cyber and Data Protection Regulations, 2022 ('the Draft') in November 2022. Melody Musoni, an independent privacy professional, provides an overview of the Draft, with a specific look at licensing and registration of data controllers and how organisations can prepare.

Zimbabwe

Summary

Browse more content in Zimbabwe

News

Insights

Get the Latest News

Thanks for signing up!

Company

Our Policies

Your Rights

Follow us