Kenya: Directive on use of digital certification services by critical information infrastructure (CII) providers

Progress

Current status

in force

01 Jan 2026 in force

Scope

Implementers

Kenya

Policy Area

Data governance

Policy Instrument

Cybersecurity regulation

Regulated Economic Activity

infrastructure provider: internet and telecom services

infrastructure provider: network hardware and equipment

Government Branch

executive

Government Body

other regulatory body

Implementation Level

national

Timeline of events

01 Jan 2026

in force

Directive on use of digital certification services by critical information infrastructure (CII) providers enters into force

On 1 January 2026, a Directive on the use of digital certification services by Critical Information Infrastructure (CII) providers enters into force. It requires designated CII systems in sectors such as telecommunications, banking, and healthcare t…

Source

Event type order

Action type implementation

Government branch executive

Government body other regulatory body

Progress

Scope

Timeline of events

Directive on use of digital certification services by critical information infrastructure (CII) providers enters into force

Related changes

implements/transposes related intervention

Kenya: National Computer and Cybercrimes Coordination Committee order on Designation of Critical Infrastructure