Principal Secretary for the Ministry of Interior and National Administration, Dr. Raymond Omollo, has called on lawmakers to urgently review and strengthen cyber laws in Kenya to keep pace with the ever-evolving digital landscape. The PS emphasized that while technology continues to be an invaluable asset to communication, governance, and innovation, the current legal framework has become outdated and inadequate in dealing with the rising threats posed by digital misuse.
Speaking during the opening of a Coast Parliamentary Group meeting held in Kisumu, Omollo warned that Kenya’s digital infrastructure faces growing risks from cybercriminals, online hate speech, and misinformation. He urged Members of Parliament (MPs) and senators to take a more proactive stance in revisiting existing legislation, especially the Computer Misuse and Cyber-crime Act of 2018, which he described as no longer fit for purpose.
“That is more than six years ago. A lot of things have changed within the technology space,” Omollo remarked.
Kenya’s Digital Landscape and Rising Cybercrime
In recent years, Kenya has experienced significant digital transformation, with millions of citizens adopting smartphones, accessing online services, and embracing social media platforms. While this growth has spurred innovation and economic inclusion, it has also opened doors for cybercrime, online harassment, and the misuse of digital platforms for spreading fake news and hate speech.
According to cybersecurity experts, the number of cyber threats reported annually in Kenya has increased sharply, ranging from phishing attacks, data breaches, financial fraud, to politically-motivated misinformation campaigns. However, the existing legal infrastructure struggles to cope with these sophisticated attacks, many of which are executed anonymously and across borders.
Dr. Omollo underscored the importance of reviewing current cyber legislation to ensure that it reflects modern realities and has sufficient deterrents against misuse of technology.
Computer Misuse and Cyber-crime Act of 2018: A Good Start, But Not Enough
The Computer Misuse and Cyber-crime Act, which came into force in 2018, was Kenya’s first comprehensive law to address offenses committed using computers, such as unauthorized access, identity theft, cyberbullying, and child pornography. While the Act was praised for laying the foundation for Kenya’s digital protection regime, Omollo and other stakeholders now argue that it is not equipped to handle the new wave of cyber threats.
“The digital space is expanding rapidly, and so are the methods of exploitation. We need to relook at these laws and update them so they are robust enough to manage current and future risks,” Omollo said.
The PS added that global best practices in digital governance should inform Kenya’s next steps. He pointed to countries like the United Kingdom, Canada, and Singapore, which have updated their cyber laws to include real-time monitoring of threats, criminalization of online radicalization, and stronger penalties for digital crimes.
The Need for a Multisectoral Approach
Dr. Omollo emphasized that cybersecurity is not just a concern for government agencies, but a shared responsibility between lawmakers, private sector stakeholders, civil society, and the general public. He called for multi-stakeholder consultations to develop new provisions that will guide ethical digital behavior while protecting the freedom of expression.
“There are those who are not using that space positively, and we need to relook the laws to strengthen them. We need to also look at what is happening in other jurisdictions so as to control hate speech and crime,” he said.
Omollo added that online platforms, especially social media, have become a double-edged sword—powerful tools for expression and mobilization, but also vulnerable to abuse, particularly during political seasons. He stressed the importance of enhancing digital literacy and empowering law enforcement agencies with the tools and skills necessary to investigate and prosecute cyber offenses effectively.
Legislators Called to Action
During his address to the Coast Parliamentary Group, the PS praised lawmakers from the region for their efforts in holding the government accountable and championing development for their constituents. However, he challenged them to now channel their legislative power toward crafting and updating digital safety laws that will protect Kenyans from online threats.
“This is a call to action for Parliament. The digital space is growing faster than the law, and that’s a risk we cannot afford to take,” Omollo said.
He urged both the National Assembly and the Senate to prioritize cybersecurity in their legislative agendas, adding that the government is ready to work closely with both houses to draft effective amendments or introduce new bills that address cyber-related offenses.
Key Areas for Legal Review and Reform
To address the growing gaps in Kenya’s cyber laws, Dr. Omollo highlighted several areas that require urgent attention:
- Updating Definitions: Many terms in the 2018 Act are now outdated or too vague to prosecute modern offenses effectively. Definitions around digital identity theft, deepfakes, and AI-generated content need clarification.
- Stronger Penalties: The current penalties for certain cyber offenses are not deterrent enough, particularly for cross-border crimes and coordinated misinformation campaigns.
- Real-time Enforcement Tools: Empowering security agencies with legal backing to trace, monitor, and shut down harmful digital operations in real time.
- Data Protection Harmonization: Aligning cyber laws with the Data Protection Act to ensure that citizen privacy is preserved even as the government clamps down on illegal online behavior.
- Protection of Minors: Introducing tougher measures to combat cyberbullying, child grooming, and exposure to harmful content online.
- Public Awareness Campaigns: Incorporating mandatory digital ethics and cybersecurity awareness in schools and communities.
Conclusion: Building a Digitally Safe Kenya
Dr. Raymond Omollo’s remarks in Kisumu come at a time when Kenya is rapidly digitizing its services and infrastructure, from e-government platforms to mobile banking and digital ID systems. As the nation accelerates toward a digital economy, the safety of its cyberspace must remain a top priority.
Strengthening cyber laws in Kenya is not only about protecting citizens from harm but also about fostering trust in digital systems, which is crucial for national development and innovation. The appeal by the Interior Principal Secretary serves as a timely reminder that as technology advances, so too must the laws that govern its use.
Understanding the Computer Misuse and Cyber-crime Act
Digital literacy campaigns in Kenya
Latest news from the Ministry of Interior