Africa: What African States Must Do to Protect and Secure Citizens’ Data


With the growth of technology, data has become one of the most valuable assets in the world. The analysis of data by governments, corporates, and other institutions continues to increase in the pursuit of efficiency in the delivery and allocation of services. However, there is concern over data privacy and security, including whether the data is being sold or used for anything other than the intended purposes.

In line with best practices, the data must undergo an anonymisation process. This entails removing any private or confidential information from all the aggregated data. This results in anonymous data that can’t be associated with any individual or company and can’t be used to target them or shared with other parties, especially when they have not consented to it.

There are two aspects that must also be considered when seeking to protect the privacy of data. First, data collected in larger clusters makes the data less identifiable once anonymised. Secondly, working with secure people and data makes the data anonymisation process more comprehensive.

African countries have for some time lagged behind their global counterparts in enacting data privacy and protection regulations. This began to change in the past decade with roughly half — about 24 — African states having enacted some form of data protection regulation. The data privacy conversation is made more relevant in Africa when you consider the instances of digital manipulations witnessed in the past 10 years. The most notable being the Cambridge Analytica scandals in Nigeria and Kenya, where the data firm was used to influence elections.