Angola’s Data Protection Authority Levies $617,000 in Fines for Regulatory Breaches
The Angolan Data Protection Agency (APD) has imposed significant penalties on two companies, totalling $617,000, for contraventions of personal data protection regulations. The regulatory body announced the sanctions on Tuesday, June 23, 2026, underscoring the growing enforcement landscape for data privacy in the nation.
The companies identified as being subject to these fines are Crescer Tech – Comércio e Prestação de Serviços, LDA, which has been ordered to pay $505,000, and Fast Digital Center – Comércio e Serviços, LDA, fined $112,000. These penalties highlight the APD’s commitment to upholding the integrity of personal data processing within Angola.
According to a statement reviewed by Lusa, Crescer Tech – Comércio e Prestação de Serviços, LDA was penalised for failing to adhere to its obligation to notify and secure authorisation from the Data Protection Agency concerning the international transfer of personal data. Specifically, the company was found to have sent and stored such data in a cloud-based service located outside of Angola without the requisite approval.
Fast Digital Center – Comércio e Serviços, LDA, faced sanctions for two primary violations. The company failed to implement adequately appropriate technical and organisational measures to safeguard a customer’s personal data. Furthermore, it neglected to notify the Data Protection Agency and obtain prior authorisation for the processing of its customers’ data, a critical requirement under Angolan data protection law.
Established in October 2019, the APD is mandated to oversee both public and private institutions engaged in the processing of citizens’ personal data. These recent enforcement actions serve as a stark reminder to businesses operating in or with Angola about the critical importance of robust data protection compliance, particularly concerning cross-border data transfers and the implementation of adequate security protocols. Lawyers, compliance officers, and corporate executives must ensure their organisations are fully cognisant of and compliant with these regulations to avoid substantial financial penalties and reputational damage.
