African Union: African Union adopted Data Policy Framework including a guidance for cybersecurity regulations

On 3 February 2022, the African Union (AU) adopted the Data Policy Framework. The AU framework provides non-binding guidance for cybersecurity regulations, emphasising the need for national cybersecurity strategies to protect data, digital infrastructure, and users from cyber threats. The establishment of Cybersecurity Incident Response Teams (CSIRTs) and the adoption of harmonised regional cybersecurity standards are recommended, with the aim of ensuring resilience and cooperation across AU Member States. While the framework encourages regulatory measures to enhance data security, cybercrime prevention, and cross-border cooperation, the implementation of these measures remains at the discretion of individual countries.