The Office of the Data Protection Commissioner (hereinafter referred to as “the Office”) maintains an in-house legal team that provides legal support to the ODPC. The Legal Division’s targets are in line with the overall objectives and KPIs of the ODPC.

The core areas for legal operations or legal administration in the Legal Division, as anchored in the Standard Operating Procedures, are: Contract management; Intellectual Property management; Litigation and Dispute resolution; Legal and regulatory advisory and compliance; Legal audit to ensure compliance; Legislative reform; and General legal matters arising.

In undertaking their roles in the above areas, the Legal Division will be responsible for proactively conceiving and implementing initiatives that improve the delivery of services and outcomes of the ODPC through, among others:

1. a) Devising simplified processes that allow the other divisions to drive generation and negotiation of routine contracts with minimal lawyer involvement;
2. b) Creating operating rhythms that promote regular engagement between key personnel and the legal team on high-strategic matters;
3. c) Leveraging state-of-the-art technology to eliminate or reduce low-value work;
4. d) Architecting and implementing new programs to monetize ODPC services; and
5. e) Developing training programs and processes to promote stronger compliance culture among the ODPC personnel.

The Division is currently composed of 5 staff, headed by the Head of Legal, CS Susan W. Waweru, who reports directly to the Data Commissioner.