The Cyber Security Authority (CSA) of Ghana has announced a sweeping enforcement initiative against unlicensed cybersecurity operators. Effective January 31, 2026, any individual or organisation providing cybersecurity services without official accreditation will be subject to sanctions, including criminal prosecution and administrative penalties.
This action builds on earlier directives requiring Cybersecurity Service Providers (CSPs), Cybersecurity Establishments (CEs), and Cybersecurity Professionals (CPs) to secure licenses or accreditation in order to operate legally within Ghana. The CSA emphasised that under the Cybersecurity Act, 2020 (Act 1038), Section 49(1), unlicensed operations are strictly prohibited, with Section 49(2) outlining penalties for offenders.
Institutions and individuals are strongly advised to engage only with CSA-approved CSPs, accredited CEs, and certified CPs. To support compliance, the Authority will soon release a comprehensive list of licensed and accredited cybersecurity service providers and professionals. The public can verify the accreditation status of any entity or individual by checking the certificate number online at https://www.csa.gov.gh/licence.
For further clarification, the CSA can be contacted via email at compliance@csa.gov.gh or by phone at 0531140408. This crackdown is part of Ghana’s broader effort to strengthen its cybersecurity framework and ensure that service providers meet national standards.
Source: Myjoyonline.com
