Maseru, April 21 — The Chief Legal Officer in the Ministry of Information, Communication, Science, Technology and Innovation, Advocate ’Makamohelo Mofilikoane has highlighted critical gaps hindering effective cybersecurity, data protection and institutional accountability in Lesotho’s growing digital ecosystem.
Speaking in an interview on the sidelines of the ongoing Commonwealth Telecommunications Organisation (CTO) Council Meeting and Digital Roadshow in Maseru, Advocate Mofilikoane said that although Lesotho has a Data Protection Act in place, its partial implementation continues to undermine its intended impact.
“The biggest challenge we face is that while the law exists, the key institution responsible for its enforcement, the Data Protection Commission, has not yet been established,” she said.
Advocate Mofilikoane added that this creates a serious gap in ensuring compliance and accountability among those who collect and process personal data.
She explained that in the absence of a fully functional regulatory authority, there is limited oversight of how data is handled, exposing citizens to potential misuse and breaches without adequate protection.
Advocate Mofilikoane further noted that mechanisms for reporting data breaches remain weak and largely ineffective. Although the law requires institutions to report such incidents, enforcement remains minimal due to the lack of a dedicated body to monitor and act on compliance.
“As a result, many breaches go unreported, and citizens are often left unaware that their personal information has been compromised,” she added
She also raised concern over the lack of clear accountability for data collectors, indicating that institutions handling sensitive information are not consistently held responsible for safeguarding it adding that without enforcement, there are no real consequences for negligence or misuse of data and this weakens trust in digital systems.
Advocate Mofilikoane pointed out that the current legal and institutional gaps may also place citizens at a disadvantage when seeking justice, as they may face challenges in proving liability or obtaining redress in cases involving data misuse.
“There is a need to strengthen both the legal framework and its implementation to ensure that citizens are protected, rather than exposed to further risk,” she noted.
Moreover, Advocate Mofilikoane emphasized the importance of urgently operationalising the Data Protection Commission, enhancing compliance mechanisms, and establishing effective reporting and response systems for data breaches saying that building a secure and accountable digital environment is essential as Lesotho continues to embrace digital transformation.
“If we are to fully benefit from digital technologies, we must ensure that our systems are secure, our institutions are accountable, and our citizens are protected,” she echoed.
The CTO meeting and Digital Roadshow have brought together policymakers, industry experts and stakeholders to explore strategies for advancing digital development and strengthening governance frameworks across member states.
Ends/NT/tl
