Ethiopia’s data protection landscape has undergone a significant overhaul with the enactment of Personal Data Protection Proclamation 1321/2024. Previously, privacy laws were set out piecemeal through different pieces of legislation, resulting in fragmented regulation.

The new proclamation harmonises these laws, aligning Ethiopia’s data protection standards with those of the international community. It establishes clear guidelines for processing personal data, defines the scope of regulation and sets out the responsibilities of government authorities. Key provisions include stringent conditions for data processing consent, safeguards for sensitive personal data and conditions on cross-border data transfers.

Moreover, the proclamation introduces robust enforcement mechanisms, including administrative and criminal penalties for non-compliance.

Our Ethiopia Team breaks down the main new provisions in the newsletter available here.