National Cyber Security Authority | Key data protection terms and their meanings

Report Incident

× Home Cybertech Africa 2023 2 DPO Rw-CSIRT Website About Rw-CSIRT Alerts Advisories About NCSA Documentation News & Events Topics Contact us Opportunities Privacy Policy

Key data protection terms and their meanings

Kinyarwanda version

Below are key terms related to personal data protection and privacy. Becoming familiar with these terms, will help to assist you in better understanding Rwanda’s law on personal data protection and privacy, and achieving compliance.

Personal data:

Any information relating to an identified or identifiable natural person who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, psychological, genetic, mental, economic, cultural or social identity of that natural person.

Sensitive personal data:

It is any information revealing a person’s race, health status, criminal records, medical records, social origin, religious or philosophical beliefs, political opinion, genetic or biometric information, sexual life or family details.

Privacy:

It is a fundamental right of a person to decide who can access his or her personal data, when, where, why and how his or her personal data can be accessed.

Data Controller:

It is a natural person, public or private corporate body or legal entity which, alone or jointly with others, processes personal data and determines the means of their processing.

Data Processor:

It is a natural person, public or private corporate body or legal entity which, alone or jointly with others, processes personal data and determines the means of their processing.

Data processing:

It is an operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as access to, obtaining, collection, recording, structuring, storage, adaptation or alteration, retrieval, reconstruction, concealment, consultation, use, disclosure by transmission, sharing, transfer, or otherwise making available, sale, restriction, erasure or destruction.

Data subject:

A natural person from whom or in respect of whom, personal data has been requested and processed.

Third party:

Natural person, corporate body or legal entity other than the data subject, the data controller, the data processor and persons who, under the authority of the data controller, are authorized to process personal data.

08 April 2022

More updates

03 October 2022

Menya uburenganzira ufite ku makuru yawe bwite igihe – igihe usabwe amakuru yawe bwite

Nyirubwite afite uburenganzira bwo guhitamo uko amakuru ye atunganywa cyangwa akusanywa.

03 October 2022

Know your rights to privacy – when you are requested for your personal data

Data subjects have the right to choose how and why their personal data is processed and collected.

31 August 2022

What should Data Subjects know about Privacy Policies?

How do privacy policies help protect my privacy?

10 August 2022

Personal Data Protection and Privacy: Your Right to Object

When can a data subject object to processing of personal data?

Address

8 KG 7 St, Kacyiru, Kigali-Rwanda

Telecom House, 5th Floor

Contact Us

	info@ncsa.gov.rw
	9009 / 0781813310
	‎+250 791 445 224

Privacy Policy

Rw-CSIRT website

Newsletter

Subscribe to our newsletter to be the first to know about our latest updates.

© 2024 National Cyber Security Authority