Privacy and Data Protection Compliance

Article 31 of the Constitution of Kenya, 2010 provides for the right to privacy. The Data Protection Act, 2019 gives effect to Article 31(c) and (d) of the Constitution. The Act makes provision for regulation of the processing of personal data. It also provides for rights of data subjects and obligations for data controllers and data processors.

Mugambi Laibuta will walk with your organisation whether in the public, private, academic or civil society sector to ensure your full compliance with the Data Protection Act, 2019 through the following services:

Training, workshops, and webinars: these are tailored to your organisation’s needs and cover compliance with the Data Protection Act, 2019 and emerging issues in relation to privacy and data protection.

Data Protection Officer Services: Section 24 of the Data Protection Act provides that a data controller or data processor may appoint or designate a Data Protection Officer. I offer Data Protection Officer services which include continuous advice on compliance with the Data Protection Act, facilitating capacity building, carrying out continuous data protection impact assessments and cooperation with the Office of the Data Protection Commissioner.

Data Protection Impact Assessments, Audits and Reviews: I will review your compliance with the Data Protection and propose strategies to improving compliance.

Review of documentation: this is tailored to assist your oganisation draft or review internal data protection policies, privacy notices, agreements/contracts to ensure operational compliance with the Data Protection Act.