Kenya Data Protection Act.
Kenya's Data Protection Act establishes data protection requirements enforced by the Office of the Data Protection Commissioner (ODPC), requiring registration, consent, and breach notification for processing of Kenyan residents' data.
Maximum penalty
KES 5M or 1% revenue
Source: DPA 2019
Key requirements
ODPC registration
Consent for data processing
Data breach notification
Data Protection Impact Assessment
+2 more requirements in the complete guide.
Get the full KE DPA compliance guide →Enforcement examples
ODPC issuing guidance
ODPC conducting compliance audits and issuing enforcement notices
-
2024
How Tessera automates KE DPA compliance
ODPC registration tracking
Consent management
Breach notification workflow
Cross-border transfer assessment
KE DPA compliance checklist
Essential steps to achieve and maintain KE DPA compliance.
Register with ODPC
Implement consent management
Conduct DPIAs
+2 more steps in the full checklist.
Get your complete KE DPA compliance checklist - free →Industries affected
Calculate your KE DPA exposure.
See exactly how KE DPA penalties apply to your revenue and industry profile.