0% found this document useful (0 votes)

25 views14 pages

Cybersecurity Law in Zimbabwe Presentation

The Cyber and Data Protection (Licensing of Data Controllers and Appointment of Data Protection Officers) Regulations, 2024 establishes a framework for data protection in Zimbabwe, requiring individuals to be licensed to process personal data. It outlines the licensing process, obligations of data controllers, and the role of the Postal and Telecommunications Regulatory Authority (POTRAZ) in ensuring compliance. The regulations aim to enhance the protection of personal data and the rights of individuals by mandating security measures and breach notification protocols.

Uploaded by

Carlos

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PPTX, PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

25 views14 pages

Cybersecurity Law in Zimbabwe Presentation

Uploaded by

Carlos

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PPTX, PDF, TXT or read online on Scribd

You are on page 1/ 14

Cybersecurity Law

in Zimbabwe
CYBER AND DATA PROTECTION (LICENSING OF DATA
CONTROLLERS AND APPOINTMENT OF DATA
PROTECTION OFFICERS) REGUL ATIONS, 2024.
INTERPRETATION
Defines key terms such as:
Act: Refers to the Cyber and Data Protection Act.
Authority: The governing body responsible for data protection.
Biometric data: Includes physical characteristics like fingerprints and facial
recognition.
Processing of Data
States that individuals must be licensed to process personal data. Specific
activities requiring a license include deciding on data collection methods and
purposes for commercial gain.

Licensing of Data Controllers

Outlines the process for obtaining a data controller license, including:
Application submission using specified forms. A 14-day review period by the
Authority. Existing data controllers must apply within six months of regulation
promulgation(to put into force/openly declare).
Validity and Renewal of Data
Controller Licence
Describes the validity of licenses (12 months) and the renewal process,
including penalties for late renewal.

Licence Categories
Details the categories of licenses based on the number of data subjects processed:
Tier 1: 50 to 1,000 data subjects. Tier 2: 1,001 to 100,000 data subjects. Tier 3: 100,001 to
500,000 data subjects. Tier 4: Over 500,000 data subjects.
Submission of False
Information
Imposes penalties for submitting false information in license applications.

Exemption from Licensing

Lists scenarios where data controllers are exempt from licensing, such as
personal or household data processing, and mandates registration with the
Authority for certain activities.
Register of Licensed Data
Controllers
Mandates the Authority to maintain a public register of licensed controllers,
which can be inspected by anyone.

Obligations of Data Controllers

Details the responsibilities of data controllers, including:
Continuous training for Data Protection Officers (DPOs).Notification of data
processing activities and any changes.Ensuring security measures for
personal data.
Sensitisation, Educational
Awareness, and Training
Allows the Authority to conduct public awareness and training programs for
data controllers, DPOs, and data subjects.

Appointment of Data Protection Officers

Requires data controllers to appoint a DPO and notify the Authority, including
specific timelines for notification upon changes.
Guidelines on Qualifications
of Data Protection Officers
Specifies the qualifications and training requirements for DPOs, emphasizing
the need for relevant skills and knowledge.

Functions of Data Protection Officers

Outlines the responsibilities of DPOs, including compliance monitoring, staff
training, and serving as a contact point for data subjects.
Approval of Codes of
Conduct
Establishes the process for submitting codes of conduct for approval by the
Authority, ensuring compliance with the Act.

Security of Data
Mandates the implementation of security measures to protect personal data,
including risk assessments and technical safeguards.
Security Breach Notification
Requires data controllers to report personal data breaches to the Authority
within 24 hours and notify affected individuals within 72 hours if there’s a
high risk.

Schedules
First Schedule: Application/Renewal Form for Data Controller License.
Second Schedule: Fee structure for various licenses and training.
Third Schedule: Notification Form for DPO designation.
Fourth Schedule: Breach Notification Form.
POTRAZ
POTRAZ refers to the Postal and Telecommunications Regulatory Authority of
Zimbabwe. It is the regulatory body responsible for overseeing and regulating
the postal and telecommunications sectors in Zimbabwe.

Functions of POTRAZ:
Regulation of Telecommunications: POTRAZ ensures that telecommunications services are
provided in accordance with the law, promoting fair competition and protecting consumers’
rights.
Licensing: It is responsible for issuing licenses to telecommunications operators and service
providers, including data controllers under the Cyber and Data Protection regulations.
Functions of POTRAZ contd..
Policy Implementation: POTRAZ implements government policies related to
postal and telecommunications services, ensuring they align with national
interests.
Consumer Protection: The authority works to protect consumers by
addressing complaints and ensuring that service providers meet quality and
service standards.
Promoting Universal Access: It strives to ensure that all citizens have access
to telecommunications services, especially in rural and underserved areas.
Data Protection Oversight: Under the Cyber and Data Protection regulations,
POTRAZ plays a role in regulating data controllers and ensuring compliance
with data protection laws.
Importance in Data
Protection
POTRAZ is involved in overseeing compliance with the Cyber and Data
Protection Act and the associated regulations. This includes:

 Licensing data controllers.

 Maintaining the register of licensed data controllers.
 Providing guidance and support on data protection issues.
Conclusion
These regulations aim to establish a robust framework for data protection,
ensuring that data controllers are licensed, accountable, and comply with
security and notification requirements. They enhance the protection of
personal data and the rights of individuals in Zimbabwe.

Guidance Note On Registration of Data Controllers and Data Processors
No ratings yet
Guidance Note On Registration of Data Controllers and Data Processors
20 pages
General Data Protection Regulation Audit Checklist
No ratings yet
General Data Protection Regulation Audit Checklist
10 pages
Data Protection and Privacy Regulations, 2020
No ratings yet
Data Protection and Privacy Regulations, 2020
36 pages
Mutants & Masterminds 3e - Power Profile - Luck Powers
100% (1)
Mutants & Masterminds 3e - Power Profile - Luck Powers
6 pages
GDPR in Charts
50% (4)
GDPR in Charts
13 pages
Government Copy: Receipt Paid
No ratings yet
Government Copy: Receipt Paid
2 pages
Indian Banking Structure
No ratings yet
Indian Banking Structure
20 pages
Relief For One Who Asks Concerning Important Matters PDF
No ratings yet
Relief For One Who Asks Concerning Important Matters PDF
55 pages
Phil Life Employees Handbook
100% (1)
Phil Life Employees Handbook
29 pages
Act-CXII-of-2011 - EN - 16-Sept-2015 - Info TV
No ratings yet
Act-CXII-of-2011 - EN - 16-Sept-2015 - Info TV
54 pages
Act 5 of 2021 Data Protection Act - Watermarked
No ratings yet
Act 5 of 2021 Data Protection Act - Watermarked
38 pages
Zimbabwe Judicial System
No ratings yet
Zimbabwe Judicial System
13 pages
Olivia Ludmila - Essay On UK Data Protection Act 2018
100% (1)
Olivia Ludmila - Essay On UK Data Protection Act 2018
10 pages
Physics MCQS For CSS PMS: Admin
No ratings yet
Physics MCQS For CSS PMS: Admin
3 pages
087 19940701 Jud 01 00 en
No ratings yet
087 19940701 Jud 01 00 en
20 pages
Application of A Foreign Corporation To Establish A Branch Office in The Philippines
No ratings yet
Application of A Foreign Corporation To Establish A Branch Office in The Philippines
3 pages
Mercantile Law II (Insovency Law) Lecture Guide Notes
No ratings yet
Mercantile Law II (Insovency Law) Lecture Guide Notes
46 pages
Standard GDP TS1001 2018
No ratings yet
Standard GDP TS1001 2018
13 pages
Memorandum of Agreement - Apolonio Samson
No ratings yet
Memorandum of Agreement - Apolonio Samson
4 pages
Data Controllers and Data Processors DP Guidance
No ratings yet
Data Controllers and Data Processors DP Guidance
20 pages
Zimbabwe - Overview of Data Protection Bill - Zimbabwe July 2013 Version 1
No ratings yet
Zimbabwe - Overview of Data Protection Bill - Zimbabwe July 2013 Version 1
29 pages
Preparing For The GDPR: Niall Rooney
No ratings yet
Preparing For The GDPR: Niall Rooney
21 pages
Strategic Asset Management (Real Property)
No ratings yet
Strategic Asset Management (Real Property)
5 pages
RDA Construction Contract Training - 1st Lecture Final
No ratings yet
RDA Construction Contract Training - 1st Lecture Final
74 pages
Cyber & Data Protection Act Cap1207 No 5 of 2021 Gaz 2022-03-11
No ratings yet
Cyber & Data Protection Act Cap1207 No 5 of 2021 Gaz 2022-03-11
38 pages
GDPR Beginners Handbook
No ratings yet
GDPR Beginners Handbook
6 pages
PD in EU
No ratings yet
PD in EU
2 pages
The ADGM Data Protection Regulations 2021 - What Should You Be Doing Now?
No ratings yet
The ADGM Data Protection Regulations 2021 - What Should You Be Doing Now?
4 pages
GDPR Compliance - Documents and Records
No ratings yet
GDPR Compliance - Documents and Records
5 pages
Data Protection Act
No ratings yet
Data Protection Act
8 pages
Personal Data Protection (Personal Data Collection and Processing) Regs
No ratings yet
Personal Data Protection (Personal Data Collection and Processing) Regs
38 pages
Digital Personal Data Protection Act, 2023
No ratings yet
Digital Personal Data Protection Act, 2023
5 pages
Kalkulator Trading Saham
No ratings yet
Kalkulator Trading Saham
39 pages
GDPR Compliance
No ratings yet
GDPR Compliance
3 pages
ASPI - PDP Discussion Deck
No ratings yet
ASPI - PDP Discussion Deck
19 pages
Indian Standard: Methods of Tests For Building Limes
No ratings yet
Indian Standard: Methods of Tests For Building Limes
5 pages
Isc2 Cissp 1 6 1 Spotlight On The GDPR
No ratings yet
Isc2 Cissp 1 6 1 Spotlight On The GDPR
6 pages
SSRN Id910267
No ratings yet
SSRN Id910267
61 pages
Cryptomeria c2 Spec
No ratings yet
Cryptomeria c2 Spec
9 pages
Candidate Information Format
No ratings yet
Candidate Information Format
5 pages
Taanit 5
No ratings yet
Taanit 5
45 pages
BiH - DP - LAW - ENG 5
No ratings yet
BiH - DP - LAW - ENG 5
1 page
Cyber & Data Protection Act Cap1207 No 5 of 2021 Gaz 2022-03-11
No ratings yet
Cyber & Data Protection Act Cap1207 No 5 of 2021 Gaz 2022-03-11
38 pages
GIC CV Format Spouse
No ratings yet
GIC CV Format Spouse
4 pages
Two Americans Families
No ratings yet
Two Americans Families
4 pages
DPA - Supplementary
No ratings yet
DPA - Supplementary
5 pages
Resource 530-15248423411211228526
No ratings yet
Resource 530-15248423411211228526
1 page
12 Hill Street - Notice of Decision
No ratings yet
12 Hill Street - Notice of Decision
4 pages
GDPR in One Page ?
No ratings yet
GDPR in One Page ?
1 page
DPP Law Presentation Training IGF 04 09 2024 Final
No ratings yet
DPP Law Presentation Training IGF 04 09 2024 Final
37 pages
Lecture 2 Data Protection Authority
No ratings yet
Lecture 2 Data Protection Authority
17 pages
GDPR v. Uganda
No ratings yet
GDPR v. Uganda
36 pages
FAC1503 - 2023 - Learning Unit 7
No ratings yet
FAC1503 - 2023 - Learning Unit 7
38 pages
Zimbabwe - An Overview of The Draft For The Cyber and Data Protection Regulations - Insights - DataGuidance
No ratings yet
Zimbabwe - An Overview of The Draft For The Cyber and Data Protection Regulations - Insights - DataGuidance
7 pages
Quotepdf20231130 144914
No ratings yet
Quotepdf20231130 144914
1 page
Group 1 ICT LAW POLICY
No ratings yet
Group 1 ICT LAW POLICY
15 pages
Data Protection Basics
No ratings yet
Data Protection Basics
8 pages
Regulations and Compliance of Cyber Crime
No ratings yet
Regulations and Compliance of Cyber Crime
10 pages
DRAFT DPDPA RULES Decodified
No ratings yet
DRAFT DPDPA RULES Decodified
8 pages
Second Semester M.B.A. Degree Examination, March - 2020 Legal Aspects of Business (Course - 08)
No ratings yet
Second Semester M.B.A. Degree Examination, March - 2020 Legal Aspects of Business (Course - 08)
2 pages
PDPL Saudi Arabia
No ratings yet
PDPL Saudi Arabia
10 pages
Privacy Policy en
No ratings yet
Privacy Policy en
11 pages
Cyber and Data Protection Act
No ratings yet
Cyber and Data Protection Act
12 pages
Data Privacy Guide
No ratings yet
Data Privacy Guide
4 pages
District Court Patna Recruitment 2022
No ratings yet
District Court Patna Recruitment 2022
2 pages
The Postal and Telecommunications Regulatory Autho
No ratings yet
The Postal and Telecommunications Regulatory Autho
3 pages
Retainer Keyasha Sands For Landen Hall - Pulaski Robin NEC MFFD-keyashassands Icloud - Com-1
No ratings yet
Retainer Keyasha Sands For Landen Hall - Pulaski Robin NEC MFFD-keyashassands Icloud - Com-1
2 pages
Student Undertaking - Parent Consent - Physical Fitness Certificate To Trip
No ratings yet
Student Undertaking - Parent Consent - Physical Fitness Certificate To Trip
2 pages
Section B
No ratings yet
Section B
5 pages
Draft 1 Guidance Note For Public Sector
No ratings yet
Draft 1 Guidance Note For Public Sector
45 pages
Draft 1 Guidance Note On Processing of Personal Data For Publication of Recorded Media Photographs
No ratings yet
Draft 1 Guidance Note On Processing of Personal Data For Publication of Recorded Media Photographs
42 pages
Hcsci432 Slides
No ratings yet
Hcsci432 Slides
54 pages
Data Privacy Day
No ratings yet
Data Privacy Day
1 page
Security and Privacy in IoT and Cloud Computing Group 2 Presentation
No ratings yet
Security and Privacy in IoT and Cloud Computing Group 2 Presentation
14 pages
Lecture 1 - Introduction
No ratings yet
Lecture 1 - Introduction
28 pages
Data Privacy
No ratings yet
Data Privacy
5 pages
Lecture 4 - Programs and Problems
No ratings yet
Lecture 4 - Programs and Problems
30 pages
Data Protection and Privacy Act of Uganda
No ratings yet
Data Protection and Privacy Act of Uganda
7 pages
Arabia Felix Hansen Thorkild Instant Download
No ratings yet
Arabia Felix Hansen Thorkild Instant Download
34 pages
Draft Cyber and Data Protection Regulations
No ratings yet
Draft Cyber and Data Protection Regulations
18 pages
Certified Information Privacy Professional
No ratings yet
Certified Information Privacy Professional
8 pages
IT Regulatory Compliance in the UK
From Everand
IT Regulatory Compliance in the UK
Alan Calder
No ratings yet
yt’s Data Protection Governance Framework Volume 1 of 2
From Everand
yt’s Data Protection Governance Framework Volume 1 of 2
Yang Yen Thaw
5/5 (1)
Navigating Compliance: A Comprehensive Guide for AI Tool Builders on GDPR and CCPA Data Regulations
From Everand
Navigating Compliance: A Comprehensive Guide for AI Tool Builders on GDPR and CCPA Data Regulations
Callum Knox
No ratings yet
yt’s Data Protection Governance Framework – Volume 2
From Everand
yt’s Data Protection Governance Framework – Volume 2
Yang Yen Thaw
No ratings yet
A Compliance Framework for Private Security Firms in 2025
From Everand
A Compliance Framework for Private Security Firms in 2025
Callum Knox
No ratings yet
Data Protection Officer
From Everand
Data Protection Officer
Sarah Taylor
No ratings yet
Ict Ethics And Logistics: Ethical hacking, #2
From Everand
Ict Ethics And Logistics: Ethical hacking, #2
Elias Mutegi
No ratings yet
Assuring IT Legal Compliance: Assurance Services, #1
From Everand
Assuring IT Legal Compliance: Assurance Services, #1
Robert E. Davis
5/5 (1)
EU General Data Protection Regulation (GDPR) - An Implementation and Compliance Guide
From Everand
EU General Data Protection Regulation (GDPR) - An Implementation and Compliance Guide
ITGP Privacy Team
No ratings yet
Challenges and Ethical Issues in Artificial Intelligence
From Everand
Challenges and Ethical Issues in Artificial Intelligence
akosnemeth
No ratings yet
Europrivacy™/®: The first European Data Protection Seal
From Everand
Europrivacy™/®: The first European Data Protection Seal
Alice Turley
No ratings yet
ChatGPT and Data security
From Everand
ChatGPT and Data security
Stefan Mielich
No ratings yet
EU General Data Protection Regulation (GDPR) – An implementation and compliance guide
From Everand
EU General Data Protection Regulation (GDPR) – An implementation and compliance guide
IT Governance Privacy Team
No ratings yet

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.

Cybersecurity Law in Zimbabwe Presentation

Uploaded by

Cybersecurity Law in Zimbabwe Presentation

Uploaded by

Cybersecurity Law

Licensing of Data Controllers

Exemption from Licensing

Obligations of Data Controllers

Appointment of Data Protection Officers

Functions of Data Protection Officers

 Licensing data controllers.

You might also like

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.