WHAT WE DO
- The Data Protection Act spells out the functions to be carried out by the Office of The Data Protection Commissioner. These include;
- Overseeing the implementation of and being responsible for the enforcement of the Data Protection Act.
- Establishing and maintaining a register of data controllers and data processors.
- Exercising oversight on data processing operations, either of own motion or at the request of a data subject, and verifying whether the processing of data is done in accordance with the Act.
- Promoting self-regulation among data controllers and data processors.
- Conducting an assessment, on its own initiative of a public or private body, or at the request of a private or public body for the purpose of ascertaining whether the information is processed according to the provisions of the Act or any other relevant law.
- Receiving and investigating any complaint by any person on infringements of the rights under the Act.
- Taking such measures as may be necessary to bring the provisions of this Act to the knowledge of the general public.
- Carrying out inspections of public and private entities with a view to evaluating the processing of personal data.
- Promoting international cooperation in matters relating to data protection and ensuring the country’s compliance on data protection obligations under international conventions and agreements.
- Undertaking research on developments in data processing of personal data and ensure that there is no significant risk or adverse effect of any developments on the privacy of individuals.
- Conducting investigations on own initiative, or on the basis of a complaint made by a data subject or a third party.
- Facilitating conciliation, mediation, and negotiations on disputes arising from the Act.