Seychelles DPA

Data Protection Act 2023

Seychelles' modern data protection law requiring DPO for large-scale processing and recognizing Cross-Border Privacy Rules certification.

Jurisdiction

Seychelles

Enacted

Mar 1, 2023

Effective

Dec 1, 2023

Enforcement

Data Protection Commissioner

Recognizes CBPR scheme for cross-border transfers

TechHive Advisory Review

Why It Matters

Seychelles' CBPR recognition creates compliance bridge between African operations and Asia-Pacific markets for AI chatbot platforms.

Recent Developments

Effective December 2023; recognizes CBPR for streamlined Asia-Pacific data transfers

At a Glance

Applies to

AI CompanionMental Health AppGeneral Chatbot

Requires

Transparency User Rights Data Minimization

Who Must Comply

Data controllers and processors in Seychelles
Large-scale data processing operations
Cross-border data transfers

Obligations fall on:

Safety Provisions

Data Protection Officer required for large-scale processing
Data Protection Impact Assessment for high-risk processing
Breach notification required
CBPR (Cross-Border Privacy Rules) scheme recognized
Right to object to automated decisions

Compliance & Enforcement

Penalties

Fines and enforcement actions

Primary Source

TechHive Advisory Review

https://www.techhiveadvisory.africa/insights/review-of-seychelles-dpa

View on map

Seychelles

Focus Areas

Mental health & crisis

Algorithmic accountability

Cite This

APA

Seychelles. (2023). Data Protection Act 2023.

Related Regulations

In Effect ZM

Zambia DPA

Zambia's comprehensive data protection law with special protections for vulnerable persons and DPIA requirements for high-risk processing.

In Effect BW

Botswana DPA

Botswana's modernized data protection law requiring Data Protection Impact Assessment and establishing age 16 for consent.

In Effect DZ

Algeria Law 18-07

Algeria's data protection law with mandatory DPO requirement added by 2025 amendment and 5-day breach notification.

In Effect RW

First African country to adopt comprehensive national AI policy. Establishes Responsible AI Office (RAIO) under MINICT. Implements RURA ethical guidelines covering beneficence, non-maleficence, autonomy, justice, explicability, transparency. Non-binding framework.

Proposed KE

Kenya AI Bill

First comprehensive AI bill in Sub-Saharan Africa. Proposes creation of AI Commissioner, AI Authority, and Advisory Committee. Establishes risk-based regulatory model aligned with EU AI Act framework, criminalizes harmful deepfakes, and mandates AI content labeling.

In Effect US

White House AI Legislative Framework

Non-binding White House framework outlining seven legislative pillars for Congress, including child safety protections, federal preemption of state AI laws, liability limitations for AI developers, intellectual property protections, free speech safeguards, AI infrastructure investment, and workforce development. Calls for a unified national standard superseding state AI regulations while preserving state child safety, consumer protection, and anti-fraud laws.

All regulations Check if this applies to you

Last updated January 22, 2026. Verify against primary sources before relying on this information.