HomeData Privacy Law DigestCyber Security and Data Protection: AU’s Malabo Convention Set to Enter Into...

Cyber Security and Data Protection: AU’s Malabo Convention Set to Enter Into Force After Nine Years

Date:

The African Union Convention on Cyber Security and Personal Data Protection (the “Malabo Convention”) is set to come into force after Mauritania became the 15th state to submit its ratification.

The latest status list on the Convention shows that the AU received Mauritania’s ratification on 9 May 2023, meaning the Convention is likely to enter into force by 8 June 2023.

Background to the Malabo Convention

This marks a significant milestone in the African continent’s efforts to address issues of cybersecurity and data protection. The Convention, which the AU Assembly adopted in 2014, aims to create a comprehensive legal framework for electronic commerce, data protection, and cybercrime and cybersecurity on the continent. Once the Malabo Convention is operational, all 55 AU member states are mandated to have domestic laws in each of these policy areas which conform to various standards and principles outlined in the Convention.

However, it has taken nine years for the Convention to attract the 15 domestic ratifications required to come into force, delaying its implementation. While the Convention has generally been regarded as an significant policy step for the African continent, it has also drawn criticism as a legal instrument. Points of concern include that the Convention lacks important detail, and does not provide for mechanisms to support its enforcement.

The way forward

With the Malabo Convention set to come into force, attention must shift to implementing it effectively and addressing its identified gaps. Recommendations include:

  • The AU Commission should consider developing implementation guidelines for member states and a drafting a plan of action to address gaps in the Convention, including protections for human rights in the use of artificial intelligence, measures to ensure proper resourcing for domestic data protection frameworks, and the establishment of regional bodies to monitor implementation.
  • The development of a model African data protection law could provide a roadmap for states to enact legislation in line with the Convention.
  • Providing ongoing support for data protection authorities in Africa, including the Network of African Data Protection Authorities, is also essential to advance the implementation of the Convention and align efforts across the continent.

Countries that have ratified the Malabo Convention

The AU’s latest status list on the Malabo Convention, dated 12 May 2023, lists the following 15 states as having submitted ratification:

Angola (11 May 2020), Cape Verde (5 February 2022), Côte d’Ivoire (3 April 2023), Congo (23 October 2020), Ghana (3 June 2019), Guinea (16 October 2018), Mozambique (21 January 2020), Mauritania (9 May 2023), Mauritius (14 March 2018), Namibia (1 February 2019), Niger (16 March 2022), Rwanda (21 November 2019), Senegal (16 August 2016), Togo (19 October 2021), and Zambia (24 March 2021).

In addition, the following states are listed as having signed the Malabo Convention without yet ratifying it:

Benin, Cameroon, Chad, Comoros, Djibouti, Gambia, Guinea-Bissau, South Africa, Sierra Leone, Sao Tome and Principe, Sudan, and Tunisia.

Source: Data Protection Africa

 

Share on

Place your
Advert Here

Are you looking to boost your brand visibility and connect with your target audience? Look no further! Secure prime advertising space in our dedicated section and showcase your products or services to our engaged community.

Related articles:

Data Protection Commission Probes 400 Cases of Privacy Breach in Online Loan Apps

The Nigeria Data Protection Commission has said it is...

PrivCon Privacy Awards: Final Nominees Unveiled

The Organizing Committee is thrilled to announce the final...

Data Control or Data Creep? The Lagos State Government-Uber Clash over User Privacy

By Bibitayo Emmanuel Ojo A storm is brewing in Lagos'...

NDPC Investigates Alleged Privacy Breach at NIMC

The National Commissioner, Nigeria Data Protection Commission (NDPC), Dr...

Recent Posts: