POTRAZ Clarifies Zimbabwe’s Cybercrime Legal Framework – The Postal and Telecommunications Regulatory Authority of Zimbabwe (POTRAZ) has issued a formal clarification dismissing claims circulating on social media and online platforms that Zimbabwe has enacted a standalone “Cyber Crimes Act.”

The regulator has described these claims as false and misleading.

In a public notice dated 24 January 2026, POTRAZ stated that Zimbabwe does not have a separate Cyber Crimes Act.

Instead, cybercrime offences are provided for under existing legislation.

Correct Legal Position

POTRAZ explained that cybercrimes in Zimbabwe are governed by the Criminal Law (Codification and Reform) Act [Chapter 9:23], commonly referred to as the Criminal Code.

In 2021, the Criminal Code was amended to strengthen the country’s cybercrime framework in line with technological developments.

These amendments were introduced through the Cyber and Data Protection Act [Chapter 12:07], which made consequential changes to Sections 163 to 168 of the Criminal Code.

The amendments established a comprehensive range of offences relating to computer systems, computer data, electronic communications, and related cyber activities.

Overview of Cybercrime Offences

According to POTRAZ, Part VIII of the Criminal Code now provides for at least 18 cyber-related offences. These include, among others:

Hacking and unlawful access to computer systems

Unlawful acquisition, interference with, or disclosure of data

Interference with computer systems and electronic communications

Unlawful use or possession of data, devices, passwords, or access codes

Transmission of data messages intended to incite violence or damage to property

Cyberbullying, harassment, and the transmission of threatening or false data messages

Spam and the unauthorised transmission of data messages

Distribution of intimate images without consent

Production and dissemination of racist or xenophobic material

Recording of private body areas beneath clothing without consent

ALSO READ: South African Woman Identified as Alleged Victim in Fake Online P0rn Casting Scheme

Offences relating to child s£xual abuse material and exposing children to pornography

Unauthorised use or possession of credit or debit cards

Unauthorised use of passwords or personal identification numbers (PINs)

Penalties for these offences vary depending on their severity and include fines of up to Level 14, imprisonment of up to 10 years, or both.

Call for Responsible Information Sharing

POTRAZ urged members of the public, organisations, and media houses to verify legal information through official sources before publishing or sharing it.

The authority warned that the circulation of misinformation causes confusion and undermines public understanding and compliance with the law.

The regulator also noted that Zimbabwe is a signatory to the United Nations Convention Against Cybercrime (2024) and that the country’s cybercrime provisions under the Criminal Code are aligned with international legal standards.

The statement was issued by the Director General of POTRAZ.