Ghana: Cyber Security Authority closes consultation on Draft Cybersecurity (Amendment) Bill including licensing requirements

On 14 November 2025, the Cyber Security Authority closes the consultation on the Draft Cybersecurity (Amendment) Bill. The Bill includes measures regarding the regulation and accreditation of cybersecurity services and professionals. Individuals or organisations providing cybersecurity services for reward must hold a licence from the Authority, while non-profit providers require accreditation, with violations carrying significant administrative penalties. The Authority is mandated to establish mechanisms for accrediting cybersecurity professionals and practitioners, who cannot practise or be engaged without accreditation, and to implement a cyber hygiene certification scheme for service providers, including standardized fees and periodic audits. The Authority is also responsible for certifying the security of innovative and emerging technologies and accrediting non-profit cybersecurity institutions. Enforcement powers are expanded, allowing the Authority to impose fines, suspend or terminate licences or accreditations, issue cease-and-desist orders, seek court injunctions, and take other appropriate actions against individuals or entities that contravene the Act, its regulations, or prescribed cybersecurity standards, with penalties including imprisonment, fines, or both.