Digital Policy Alert logo

African Union: African Union adopted Convention on Cyber Security and Personal Data Protection including provisions on cross-border data transfer regulation

Policy overview

Description

African Union adopted Convention on Cyber Security and Personal Data Protection including provisions on cross-border data transfer regulation

On 27 June 2014, the African Union (AU) adopted the AU Convention on Cyber Security and Personal Data Protection. The Convention stipulates that personal data should not be transferred to non-Member States unless those states ensure an adequate level of protection for privacy and fundamental rights. In cases where adequate protection is not guaranteed, data controllers must seek authorisation from the national protection authority before transferring the data.

Original source

Scope

Policy Area
Data governance
Policy Instrument
Cross-border data transfer regulation
Regulated Economic Activity
cross-cutting
Implementation Level
bi- or plurilateral agreement
Government Branch
executive
Government Body
central government

Complete timeline of this policy change

Hide details
2014-06-27
adopted

On 27 June 2014, the African Union (AU) adopted the AU Convention on Cyber Security and Personal Da…

2023-06-08
in force

On 8 June 2024, the African Union Convention on Cyber Security and Personal Data Protection entered…

We use cookies and other technologies to perform analytics on our website. By opting in, you consent to the use by us and our third-party partners of cookies and data gathered from your use of our platform. See our Privacy Policy to learn more about the use of data and your rights.