ABOUT 50 million passwords were hacked in Africa between the period of July 2022 and February 2023, Postal and Telecommunications Regulatory Authority of Zimbabwe (Potraz) told data subjects during a sensitisation workshop on the Data Protection Act in Gweru on Wednesday.
Potraz Director for Data Protection Tsitsi Mariwo who was representing director general Gift Machengete said the digital economy without consumer protection will be disastrous.
"We are living in an exciting, yet hazardous digital world," she said in a speech.
"One ought to be responsible and take ownership and control of their data if they are to successfully dodge the various ills that are rampant in the digital space. Inability to effectively control the use of one’s personal information invariably leads to regrettable consequences like identity theft, cyber bullying and fraud to name but a few. We are here to equip you with knowledge and ability to take control of your data as well as processing data in your custody in a lawful, fair and responsible manner," parts of Machengete's speech read.
In 2021, a University of Zimbabwe student Martin Magomana unlawfully gained access to the school computer network and allocated accommodation to students, netting US$3000 in the process.
In an interview, on the sidelines of the workshop, Potraz Deputy Director for CIRT and Enforcement Evidence Mazhindu said no company was safe from hacking attacks and critical infrastructure in Zimbabwe are more vulnerable to attacks.
“Every entity should have proper safeguard and measures. One of the key reasons we end up having university students hacking school systems is because our institutions are more theory than practical. We need to invest more in research and development," he added.
Meanwhile, Zimbabwe has 9.9 million internet and data subscribers but 85.3% are unable to cite any rights of the Cyber Security Act and 77% are not aware of redress mechanisms in a case of data breach, according to Potraz.
Government promulgated the Cyber and Data Protection Act In 2021 where Potraz was designated as the Data Protection Authority to play an oversight role on all Data Protection issues in the country.
Potraz is on a drive to engage all stakeholders in the data protection community through sensitization programs and the Gweru Workshop is the first of its kind in the Midlands Province.
So far the Regulator Authority has held workshops in Harare, Masvingo, Mutare and Bulawayo and you are the 5th Province to contribute to this important conversation on data protection.