Detailed overview
Kenya does not currently have a comprehensive AI Act. Its AI framework is based on national AI strategy, data-protection law, sectoral rules and digital-government policy.
Kenya National AI Strategy 2025–2030
Kenya has published the Kenya National Artificial Intelligence Strategy 2025–2030. The strategy is built around core pillars including AI digital infrastructure, data and AI governance, research, innovation and commercialisation. It is intended to support responsible AI adoption and position Kenya for AI-driven economic and public-sector development.
The strategy is a policy instrument, not a general AI licensing law. It sets direction for AI capability, governance, skills, infrastructure, data use and innovation, but it does not create a full EU-style high-risk AI compliance code.
Data Protection Act
Where AI processes personal data, Kenya's Data Protection Act applies. The Office of the Data Protection Commissioner has addressed AI-related privacy issues, including data-subject rights, technical and organisational safeguards and data-protection impact assessments where necessary.
Sectoral overlays
AI systems used in financial services, healthcare, education, employment, public services, telecommunications, advertising or consumer services may also trigger sector-specific obligations.
Penalties
Kenya does not currently have one AI-specific penalty table. Penalties depend on the breached law, such as data protection, consumer protection, financial regulation, healthcare regulation, employment law, public-sector rules or criminal law.