A Snapshot of the Tanzania Personal Data Protection Act

Part 1: Reference guides

1. Registration Guide for Data Controllers and Processors:

Section 5.1: Step-by-step instructions on how to register with the Commission.

Section 5.2: Checklist of required documents and fees for registration.

Section 5.3: Sample filled out registration forms for reference.

Section 5.4: Tips for ensuring completeness and accuracy of the registration application

2. Renewal Process Guide:

?? ?Section 6.1: Detailed timeline for renewal submission.

?? ?Section 6.2: Instructions for completing renewal forms and associated fees.

?? ?Section 6.3: Reminders for timely renewal to avoid lapses in registration.

?? ?Section 6.4: Sample renewal application forms.

3. Data Subject Rights Handbook:

?? ?Section 7.1: Explanation of data subject rights as per the law.

?? ?Section 7.2: Procedures for handling data subject requests for data suspension, rectification, erasure, or destruction.

?? ?Section 7.3: Templates for acknowledgment of requests and communication with data subjects

?? ?Section 7.4: Guidelines for documenting and tracking data subject requests.

4. Transfer of Personal Data Compliance Manual:

?? ?Section 8.1: Overview of the legal requirements and procedures for transferring personal data outside the country.

?? ?Section 8.2: Checklist of information required for permit applications.

?? ?Section 8.3: Sample application forms and templates for consent documentation.

?? ?Section 8.4: Guidelines for ensuring data security during transfer.

5. Data Protection Officer (DPO) Handbook:

?? ?Section 9.1: Role and responsibilities of the DPO as per the law.

?? ?Section 9.2: Guidelines for appointing a DPO within the organization.

?? ?Section 9.3: DPO's duties regarding compliance monitoring, handling data subject requests, and reporting.

?? ?Section 9.4: Sample job descriptions and templates for DPO appointment.

6. Data Protection Impact Assessment (DPIA) Guide:

?? ?Section 10.1: Explanation of when DPIAs are required and their purpose.

?? ?Section 10.2: Steps for conducting a DPIA, including risk assessment and mitigation strategies.

?? ?Section 10.3: Templates for DPIA reports and documentation.

?? ?Section 10.4: Best practices for integrating DPIAs into project management processes.

7. Compliance Monitoring and Reporting Protocol:

?? ?Section 11.1: Procedures for ongoing compliance monitoring within the organization.

?? ?Section 11.2: Reporting channels for incidents, breaches, and noncompliance.

?? ?Section 11.3: Template for quarterly compliance reports to be submitted to the Commission.

?? ?Section 11.4: Guidelines for addressing audit findings and implementing corrective actions.