African Union: African Union adopted Data Policy Framework including a guidance for cross-border data transfer regulation

On 3 February, the African Union (AU) adopted a Data Policy Framework. This framework provides guidelines for cross-border data transfers, recommending that personal data should only be transferred to countries with adequate data protection standards to protect the rights of individuals. It sets legal and technical standards to support data-driven innovation and economic integration across the continent. In particular, it encourages AU member states to establish reciprocal agreements, standard contractual clauses, and regional mechanisms to facilitate secure and legitimate data flows. While it proposes frameworks to ensure compliance with national data protection standards, enforcement, and implementation remain at the discretion of individual countries.