Research & Innovation

Education & Training

In Partnership with the Law Society of Kenya (LSK), Cyber Security Institute (CSI) seeks to promote continues professional development for lawyers in Kenya by deepening their knowledge on the fundamentals and the application of Digital Forensic Evidence & Law (DFEL) in the legal sphere. In addition, the General Data Protection Regulation (GDPR) of the European Union (EU) is a key area of interest and knowledge that CSI will offer.

DFEL & GDPR Objectives

  • To create awareness of new and emerging technologies and the law.

  • To enable lawyers to appreciate the fundamentals and application of DFEL & GDPR.

  • To achieve appropriate and relevant professional development area for lawyers

General Data Protection Regulation (GDPR) is legislation that will update and unify data privacy laws across the European Union. GDPR was approved by the EU Parliament on April 14, 2016 and goes into effect on May 25, 2018. GDPR replaces the EU Data Protection Directive of 1995. The new directive focuses on keeping businesses more transparent and expanding the privacy rights of data subjects. When a serious data breach has been detected, the company is required by the General Data Protection Regulation to notify all affected people and the supervising authority within 72 hours.

Mandates in the General Data Protection Regulation apply to all data produced by EU citizens, whether or not the company collecting the data in question is located within the EU, as well as all people whose data is stored within the EU, whether or not they are actually EU citizens.

The main objective for offering this course is for Lawyers to have an appreciation of the legal import of GDPR and for lawyers to develop a new area of the data laws.  None compliance or violation of GDPR carries a fine of €20 Million or 4% annual revenue of a company, whichever is higher.

General Data Protection Regulation (GDPR) is legislation that will update and unify data privacy laws across the European Union. GDPR was approved by the EU Parliament on April 14, 2016 and goes into effect on May 25, 2018. GDPR replaces the EU Data Protection Directive of 1995. The new directive focuses on keeping businesses more transparent and expanding the privacy rights of data subjects. When a serious data breach has been detected, the company is required by the General Data Protection Regulation to notify all affected people and the supervising authority within 72 hours.

Mandates in the General Data Protection Regulation apply to all data produced by EU citizens, whether or not the company collecting the data in question is located within the EU, as well as all people whose data is stored within the EU, whether or not they are actually EU citizens.

The main objective for offering this course is for Lawyers to have an appreciation of the legal import of GDPR and for lawyers to develop a new area of the data laws.  None compliance or violation of GDPR carries a fine of €20 Million or 4% annual revenue of a company, whichever is higher.