- The president finally assented to the Data protection Act that has been rotating in and out of Parliament over the last ten years.
- That marks a new beginning in the type and nature of the relationships that citizens will have with their data collectors (data controllers) going forward.
- The biggest impact will be that data controllers such as the IEBC, mobile money vendors, security guards, etc., will no longer be allowed to share your personal details with third parties without your explicit consent.
- The key to appreciating data privacy is not by looking at how careless you are with your private information at an individual level, but how we perform as a nation.
Two related and contradictory things happened last week.
Earlier in the week, the Independent Electoral and Boundaries Commission (IEBC) lost a court case against the Orange Democratic Movement (ODM) that related to data privacy.
Towards the end of the same week, the president finally assented to the Data protection Act that has been rotating in and out of Parliament over the last ten years.
Firstly, lets deal with the ODM case against IEBC.
The gist of the case is that the IEBC had declined to pass to ODM the complete data set of Kibra voters, and had instead shared a redacted version that protected the voter’s national ID and telephone numbers.
IEBC argued that these two identifiers were personal to the voter and therefore required the voters personal consent so as to be shared to third parties.
On the other hand, ODM had argued that the IEBC was hiding crucial information needed for voter verification, which was against the voter’s rights and the political parties’ right to verify the voter register.
Please by the IEBC lawyers that individual voters could confirm these personal details rather than going through third party political entities did not carry the day and the court ruled in favour of ODM.
The electoral body subsequently complied with the ruling and handed over the un-redacted data set that contained the voter’s personal details to ODM.
While the case was being heard and determined, there was a lot of buzz on the social media, with the majority wondering why try to protect personal data that we so willingly dish out at various touch points during our day.
We do share our national IDs with those security guards stationed virtually in all public and private buildings. We dish out the same to those mobile money kiosks when we want to cash our money.
We do the same in banks, hospitals, schools, churches, supermarkets, etc.
The key to appreciating data privacy is not by looking at how careless you are with your private information at an individual level.