In Effect Law Data Protection Context Relevance

Botswana DPA

Data Protection Act 2024

Botswana's modernized data protection law requiring Data Protection Impact Assessment and establishing age 16 for consent.

Jurisdiction

Botswana

Enacted

Aug 1, 2024

Effective

Oct 1, 2024

Enforcement

Data Protection Commissioner

Replaced 2018 Act with enhanced protections

What It Requires

Transparency

Must disclose AI nature, data practices, or algorithmic decisions

User Rights

Must honor access, correction, and deletion requests

Data Minimization

Must limit data collection to what is necessary

Who Must Comply

This law applies to:

• Data controllers and processors in Botswana
• Entities processing data of Botswana residents
• High-risk AI systems processing personal data

Capability triggers:

● servesMinors (required)

◐ highRiskProcessing (increases)

● Required ◐ Increases applicability

Who bears obligations:

Data Controller Data Processor

Safety Provisions

• Children 16+ may consent; under 16 requires guardian consent
• Mandatory Data Protection Impact Assessment for high-risk processing
• Breach notification required
• Data Protection Officer for certain controllers
• Cross-border transfer restrictions

Enforcement

Enforced by

Data Protection Commissioner

Penalties

criminal liability

Criminal liability

Administrative fines and criminal penalties

Primary Source

Strathmore CIPIT Analysis (opens in new tab)

https://cipit.strathmore.edu/understanding-botswanas-2018-and-2024-data-protection-acts/

Quick Facts

Binding: Yes
Mental Health Focus: Yes
Child Safety Focus: Yes
Algorithmic Scope: Yes

Why It Matters

Botswana's 2024 Act is Africa's most recent data protection modernization, establishing clear age 16 consent threshold and mandatory DPIA for AI systems.

Recent Developments

Enacted August 2024, replaced 2018 Act with stronger AI-era protections

Cite This

APA

Botswana. (2024). Data Protection Act 2024. Retrieved from https://nope.net/regs/bw-dpa-2024

BibTeX

@misc{bw_dpa_2024,
  title = {Data Protection Act 2024},
  author = {Botswana},
  year = {2024},
  url = {https://nope.net/regs/bw-dpa-2024}
}

Related Regulations

In Effect ZM • Data Protection

Zambia DPA

Zambia's comprehensive data protection law with special protections for vulnerable persons and DPIA requirements for high-risk processing.

In Effect SC • Data Protection

Seychelles DPA

Seychelles' modern data protection law requiring DPO for large-scale processing and recognizing Cross-Border Privacy Rules certification.

In Effect DZ • Data Protection

Algeria Law 18-07

Algeria's data protection law with mandatory DPO requirement added by 2025 amendment and 5-day breach notification.

In Effect RW • AI Safety

First African country to adopt comprehensive national AI policy. Establishes Responsible AI Office (RAIO) under MINICT. Implements RURA ethical guidelines covering beneficence, non-maleficence, autonomy, justice, explicability, transparency. Non-binding framework.

In Effect INTL • Child Protection

UNICEF AI for Children

Most specific international guidance on children and AI. Ten requirements for child-centered AI including development/wellbeing support, data/privacy protection, and safety.

In Effect NP • AI Safety

Nepal AI Policy

Nepal national AI policy establishing governance framework and development priorities. Creates AI Governance Council (chaired by Minister for Communications and IT), AI Regulation Council, National AI Centre, and AI Regulatory Authority. Six pillars including ethics, human resource development, and sectoral application.

Back to all regulations Check if this applies to you

Botswana DPA

What It Requires

Who Must Comply

Safety Provisions

Enforcement

Primary Source

Quick Facts

Why It Matters

Recent Developments

Cite This

Related Regulations

Zambia DPA

Seychelles DPA

Algeria Law 18-07

Rwanda AI Policy

UNICEF AI for Children

Nepal AI Policy