What We Do
Our Functions
The Data Protection Act spells out the functions to be carried out by the Office of The Data Protection Commissioner.
These include;
- Oversee the implementation of and be responsible for the enforcement of this Act;
- Establish and maintain a register of data controllers and data processors;
- Exercise oversight on data processing operations, either of own motion or at the request of a data subject, and verify whether the processing of data is done in accordance with this Act;
- Promote self-regulation among data controllers and data processors;
- Conduct an assessment, on its own initiative of a public or private body, or at the request of a private or public body for the purpose of ascertaining whether information is processed according to the provisions of this Act or any other relevant law;
- Receive and investigate any complaint by any person on infringements of the rights under this Act;
- Take such measures as may be necessary to bring the provisions of this Act to the knowledge of the general public;
- Carry out inspections of public and private entities with a view to evaluating the processing of personal data;
- Promote international cooperation in matters relating to data protection and ensure country’s compliance on data protection obligations under international conventions and agreements;
- Undertake research on developments in data processing of personal data and ensure that there is no significant risk or adverse effect of any developments on the privacy of individuals; and
- Perform such other functions as may be prescribed by any other law or as necessary for the promotion of object of this Act.
