ABSTRACT The recently adopted General Data Protection Regulation (GDPR) in the European Union has certainly set the highest standards of all data privacy policies across the world. In theory such standards have provided more control to individuals over their personal data. Due to the strengthened third-party obligations in the GDPR for data export to non-European Union countries and fear of loss of foreign investment if such countries fail to provide adequate protection of personal data, the GDPR exerts profound influence on data privacy law reform and practice outside Europe. This article analyses the impact of the GDPR in Africa by using Mauritius as an intrinsic case study. Mauritius is selected in this analysis due to its leading role in the privacy policy reforms in Africa and the internationalisation of its data protection systems. Accordingly, the development of the data protection system in Mauritius from the repealed Data Protection Act 2004 to the current Data Protection Act 2017 is analysed in detail, drawing on the largest body of reported complaints, appeals and judicial decisions so far decided by courts.

中文翻译：

---

非洲 GDPR 的长臂：对毛里求斯数据隐私法改革与实践的反思

摘要 欧盟最近通过的通用数据保护条例 (GDPR) 无疑为全球所有数据隐私政策设定了最高标准。理论上，此类标准为个人提供了对其个人数据的更多控制。由于 GDPR 强化了向非欧盟国家出口数据的第三方义务，并且担心如果这些国家未能对个人数据提供足够的保护会导致外国投资损失，因此 GDPR 对数据隐私法改革产生了深远的影响，在欧洲以外的地方练习。本文以毛里求斯为例，分析 GDPR 在非洲的影响。毛里求斯之所以入选本次分析，是因为毛里求斯在非洲隐私政策改革和数据保护系统国际化方面发挥了主导作用。