In this new era of digital marketing and data-rich business environment, personal data protection plays an important role. In this respect, the Data Protection Act 2017 (The “Act”) which came into force since 15th January 2018 replaces the DPA 2004 which no longer fitted. The Act seeks to bring Mauritius data protection framework in line with same principles of GDPR.

The GDPR replaces the Data Protection Directive 95/46/EC. It was adopted on 27th April 2016 and becomes enforceable as from 25th May 2018. GDPR has been designed to have a single regulation for data privacy laws across Europe. In a nutshell, GDPR ensures that personal information on European citizens and residents are protected by companies that collect and process them and that individuals have control on how their data is used and managed including transfer to territories outside of EU.

The benefit of aligning the Mauritius data protection framework with the international standards namely the GDPR enhances the ‘ease of doing business’ requirements and would build trust in our jurisdiction for personal data protection.

We also take this opportunity to share with you the privacy notice of MITCO Group to inform you how MITCO (and/or related entities) collects, stores, uses, processes and protects the personal information of our clients.

Feel free to contact your relationship manager or the business development team on for more information that you may require on DPA and/or GDPR.