Zimbabwe ICT Policy, cyber-crime bill are nowhere in sight

Posted by

It’s been 9 years since the Zimbabwean government made a pledge to come up with legislation to curb cyber crime. Of course, there’s no point in holding on to political pledges really. It’s just that it helps give a clear indication of how long we’ve been kicking an issue around.

Now that we are in 2015, what has been done to make this a reality? Today we attended a round table discussion on the crafting of the cybercrime bill. The event (hosted by Media Centre) was meant as a discussion point for the potential impacts of the cybersecurity bill on freedom of expression, access to information and the right to privacy to general citizens and the Civil society.

It was opened up to different stakeholders in ICT and cyber legislation like POTRAZ, media practitioners, Internet Service Providers and bloggers. Unfortunately, the ISPs and POTRAZ didn’t show up, however, there was representation from legislature.

The main delivery was made by Nelson Chamisa, the former Minister of ICT and current chairman of the Parliamentary Portfolio Committee on Communication Technology, Postal and Courier Services.

Besides running through the basic aspects of the proposed bill and emphasizing how the bill had to come after a new Zimbabwe ICT Policy, he spelled out something that most of us expected for a while now. The Zimbabwe ICT Policy isn’t going to be ready anytime soon.


It’s rather disappointing when you consider all the work that was put into this policy since 2012 when Chamisa was still at the helm of the Ministry of ICT.

Apparently there were some aspects of the draft policy, some in line with cyber security that needed to be revised. After years of recommendations and consultations with stakeholders, our ICT Policy is being redrafted, again.

Besides the holdup on the drafting of a bill on cyber crime, this hinders any legislative advances we might hope for Zimbabwe. We are currently using a National ICT Policy from 2005 yet there are countless changes that have occurred in ICT that have national implications between then and now.

Issues such as e-governance, an ICT policy for education, e-commerce, communication, and national security (which dovetails into the proposed cybercrime bill) have gained a lot of prominence in the past decade. Yet it seems that our legislation doesn’t see the need to act quickly to address these issues.

Have the citizens lead and the state shall follow

Forget about support from legislative constructs or from the State. if you want to do something in ICT, its best to roll it out, gather enough traction on a national scale and have the government address your area of influence when they realise its impact.

This looks like the only approach really. It’s what has been the modus operandi of every service provider when you look at it.  This will work as long as what you are doing doesn’t infringe on any national security violations.


  1. Tapiwa✓ says:

    Do we really need new laws? If you are committing a crime, it doesn’t matter if you use a computer, the internet or a rock: there are laws for that already (fraud, theft, vandalism). If I try to run you over with a car: I won’t need a new auto-crime law to be passed to be tried for attempted murder. Same thing with computers

    1. If only that were true.

      What exactly is piracy ? If we dont have any clarification through legislation it easily becomes stealing and how does a judge sentence for a crime which shows no direct harm ? Pirating one song via bluetooth is a crime. Can I get 10 years for that ?

      What about SIGINT, how does our government collect data from a person of interest. Do they wiretap an internet connection ? What then if the connection is encrypted do they use malware ( .lol can they even write malware seeing the state of their websites ) ? Does the ISP or web hosting company have to help the government break any encryption used for stored passwords …etc. Who pays for that. What are the legal limitations to their activity and at what point does it require a court order ?

      What about hacking ? If you are aware in penetration testing there are proper disclosure methods to be followed, if I scan ( passive or not ) a government website and find/notice a flaw and report the flaw using a proper disclosure method. What are my legal options in case Im being legally threatened ?

      Bloggers. In Zimbabwe, we have tight laws on the media. If Limbikani writes some bad things about me, correct or otherwise speculative. What are my legal rights ? What rights does he have as a citizen journalist ? Should he be registered with some government entity ? Criminal defamation ? – Does that apply to bloggers.

      Computer crimes can be categorized into many different parts, for example hacking into a website and getting caught without really causing any damage is a misdemeanor and a fine might be paid only.

      What about the possession of SIM CARD and Bank card cloning equipment ? Is that a crime.

      What about spamming is that a crime ?

      Look at the US and Australian legislation on these issues – these are just a few questions you have to ask.

      We are millennia behind.

  2. mafira kureva says:

    Tapiwa you’re still behind with technology! thanks Trevor for shading some light on that

Leave a Reply

Your email address will not be published.