Cyberlaw and data protection have emerged as critical areas of legal reform in Southern Africa, influenced by global trends and specific socio-economic contexts. The research employs a qualitative approach, utilising semi-structured interviews with key stakeholders including legal practitioners, policymakers, and industry representatives. Data analysis is guided by thematic content analysis. Interviews revealed significant disparities in the enforcement of data protection regulations across different sectors, with healthcare being one area where compliance was notably lower than expected. The qualitative insights underscore gaps in current regulatory frameworks and highlight the need for more targeted interventions to improve data protection standards in Kenya. Policy recommendations include strengthening enforcement mechanisms, enhancing public awareness campaigns, and integrating international best practices into local legal frameworks.