Digital Policy Alert logo

Somalia: Implemented Data Protection Act 2023 including cybersecurity regulation

Go to policy change overview
Share

Compare with different regulatory event:

Description

Implemented Data Protection Act 2023 including cybersecurity regulation

On 23 March 2023, the Data Protection Act 2023 was implemented following its publication in the Official Bulletin. The Act sets out cybersecurity requirements for data controllers, requiring them to take appropriate technical and organisational measures to ensure the security, integrity, and confidentiality of personal data in its possession. In case of a data breach, controllers are required to notify the data protection authority within 72 hours. Finally, each controller must keep a record of data breaches.

Original source

Scope

Policy Area
Data governance
Policy Instrument
Cybersecurity regulation
Regulated Economic Activity
cross-cutting
Implementation Level
national
Government Branch
legislature
Government Body
parliament

Complete timeline of this policy change

Hide details
2023-02-09
under deliberation

On 9 February 2023, the President of Somalia introduced the Data Protection Act 2023 to the Lower H…

2023-03-09
under deliberation

On 9 March 2023, the Lower House of Somalia passed the Data Protection Act 2023. The Act sets out c…

2023-03-16
adopted

On 16 March 2023, the Upper House of Somalia adopted the Data Protection Act 2023. The Act sets out…

2023-03-22
adopted

On 22 March 2023, the President of Somalia signed the Data Protection Act 2023. The Act sets out cy…

2023-03-23
in force

On 23 March 2023, the Data Protection Act 2023 was implemented following its publication in the Off…