KEETMANSHOOP – In the absence of a Namibian data privacy law that makes provision for regulating the processing of private information and the protection of an individual’s right to privacy, the Data Protection Bill should be enacted as a matter of priority. This was recently urged by //Kharas regional council chairperson, Joseph Isaacks, during a recent gathering at the southern town to request input on how citizens believe the legislation should be enacted.
“Namibia is striving towards digitalisation, which requires an amount of data to be processed online or in digital format, thus posing a high risk of a data breach and as such warrants the protection of personal data,” said Isaacks.
Isaacks continued that the envisaged Act should have the ability to provide for the rights of individuals about whom information is processed and also the right for restrictions and expectations. “In addition, it should provide for a code of conduct for controllers (IT department) and processors (HR department) and for matters connected therewith,” he proposed.
At the same occasion, Elizabeth Kamutuezu, deputy director of Institutional Policy Regulation and Monitoring (IPRM) explained the necessity for enacting the Bill as that of combatting violations of privacy infringement likely to arise from the collection, processing, transmission, storage and use of personal data activities.
“In addition, it should give effect to internationally accepted principles of data collection,” said Kamutuezu, noting that another reason for enacting the draft is to govern the processing of information by private and public bodies. “It is also to prevent the unlawful use, collection, processing, transmission and storage of personal information of an identifiable person,” she said.
Spelling out the dangers of a lack of protection of personal information, Kamutuezu said data entered at accommodation establishment’s receptions and flight booking offices is easily accessible to others who can use it for unintended or unlawful purposes. The deputy director also said the Act will provide for the establishment of a Data Protecting Authority to address the challenge of identity theft.
In terms of the functions of the proposed law, Kamutuezu said it would also prevent the unintended use of personal information by means of sharing it without consent to third parties. “It will also prevent the abuse of such information by persons sharing sensitive information of others out of revenge on social media. In conclusion, the purpose of the Data Protection Act, once approved by parliament, will be to harmonise these processes and give effect to the right to private information, ”she said.