Digital Policy Alert logo

Rwanda: Implemented Law No. 058/2021 relating to the protection of personal data and privacy, including cybersecurity regulation

Policy overview

Description

Implemented Law No. 058/2021 relating to the protection of personal data and privacy, including cybersecurity regulation

On 15 October 2021, Law No. 058/2021 relating to the protection of personal data and privacy, entered into force. The law applies to data controllers, processors, and third parties involved in automated and manual data processing. Data controllers and processors must adopt appropriate technical measures to protect personal data from loss, damage, or destruction. They must identify risks, establish safeguards, regularly verify their effectiveness, and update them as needed. The supervisory authority may inspect and assess these measures if there is a risk of rights or privacy infringements.

Original source

Scope

Policy Area
Data governance
Policy Instrument
Cybersecurity regulation
Regulated Economic Activity
cross-cutting
Implementation Level
national
Government Branch
executive
Government Body
central government

Complete timeline of this policy change

Hide details
2021-10-13
adopted

On 13 October 2021, Law No. 058/2021, relating to the protection of personal data and privacy, was …

2021-10-15
in force

On 15 October 2021, Law No. 058/2021 relating to the protection of personal data and privacy, enter…

We use cookies and other technologies to perform analytics on our website. By opting in, you consent to the use by us and our third-party partners of cookies and data gathered from your use of our platform. See our Privacy Policy to learn more about the use of data and your rights.