Fiji Data Protection Bill (2020)
The Fiji Data Protection Bill 2020 (subsequently revised as the Personal Information and Data Protection Bill 2021) was introduced into the Fijian Parliament to establish a comprehensive data-protection regime for Fiji. The Bill is loosely aligned with GDPR + the Australia Privacy Act 1988 + the Singapore Personal Data Protection Act 2012 + provides for a Personal Information and Data Protection Commissioner (PIDPC) + 6 data-protection principles (lawful and fair processing + purpose limitation + data minimisation + accuracy + storage limitation + integrity and confidentiality) + 6 data-subject rights (access + rectification + erasure + data portability + objection + automated decision-making protection) + cross-border transfer controls + breach notification + administrative penalties up to FJD 1 million + appeals to the Fiji High Court. STATUS: The Bill HAS NOT BEEN ENACTED INTO LAW as of 2026. Public-source tracking (DLA Piper data protection laws of the world + IAPP + cms.law + Lexology) indicates the Bill has been in committee stage with revisions + has not progressed to assent. Data protection in Fiji remains governed by sector-specific provisions in the Banking Act + Public Service Act + Information Act 2018 + the common-law action for breach of confidence + the constitutional right to privacy under Section 24 of the 2013 Constitution. The Fiji Online Safety Act 2018 (FOSA) covers harmful electronic communications + cyberbullying but is not a general data-protection regime. ADMINISTRATIVE BODY: pending enactment, the Pacific Privacy Authority Network (PPAN) + the regional Asia-Pacific Privacy Authorities (APPA) provide informal coordination + Fiji participates as observer. RELATED: the Fijian Information Commissioner (under the Information Act) may receive jurisdiction over the eventual data protection regime; the 2024-2025 Pacific Islands Forum data-protection working group has supported regional harmonisation along GDPR-like + Singapore PDPA-like lines.
Framework summaries on this platform are AI-assisted interpretations for educational and compliance planning purposes. They do not reproduce or replace the official standards. Refer to the authoritative source for the definitive text. Framework names and trademarks belong to their respective organisations.
Framework Domains (7)
Fiji DP Bill: Bill Status, Pacific Regional Coordination and Related Sectoral Provisions
| Code | Title |
|---|---|
| FjDPB-Status-Pacific | Bill Status, Pacific Regional Coordination, Constitutional Privacy and Sectoral Provisions |
Fiji DP Bill: Controller and Processor Obligations, Security and Breach Notification
| Code | Title |
|---|---|
| FjDPB-Controller-Processor-Security-Breach | Controller + Processor Obligations + Security + Breach Notification |
Fiji DP Bill: Cross-Border Transfers, PIDPC Commissioner and Enforcement
| Code | Title |
|---|---|
| FjDPB-CrossBorder-Authority-Enforcement | Cross-Border Transfers + PIDPC + Enforcement + Penalties |
Fiji DP Bill: Data Protection Principles (Lawful Basis, Consent, Purpose Limitation, Minimisation)
| Code | Title |
|---|---|
| FjDPB-Principles | Data Protection Principles + Lawful Basis |
Fiji DP Bill: Data Subject Rights (Access, Rectification, Erasure, Portability, Objection)
| Code | Title |
|---|---|
| FjDPB-Rights | Data Subject Rights (Access, Rectification, Erasure, Portability, Objection) |
Fiji DP Bill: Scope, Application, Definitions and Constitutional Privacy
| Code | Title |
|---|---|
| FjDPB-Scope-Defs | Scope, Application and Definitions |
Fiji DP Bill: Sensitive Personal Data, Children and Special Categories
| Code | Title |
|---|---|
| FjDPB-Sensitive-Children | Sensitive Personal Data + Children + Special Categories |
Frequently Asked Questions
What is Fiji Data Protection Bill (2020)?
Fiji Data Protection Bill (2020) is a compliance framework from Fiji with 7 domains and 7 controls. The Fiji Data Protection Bill 2020 (subsequently revised as the Personal Information and Data Protection Bill 2021) was introduced into the Fijian Parliament to establish a comprehensive data-protection regime for Fiji. The Bill is loosely aligned with GDPR + the Australia Privacy Act 1988 + the Singapore Personal Data Protection Act 2012 + provides for a Personal Information and Data Protection Commissioner (PIDPC) + 6 data-protection principles (lawful and fair processing + purpose limitation + data minimisation + accuracy + storage limitation + integrity and confidentiality) + 6 data-subject rights (access + rectification + erasure + data portability + objection + automated decision-making protection) + cross-border transfer controls + breach notification + administrative penalties up to FJD 1 million + appeals to the Fiji High Court. STATUS: The Bill HAS NOT BEEN ENACTED INTO LAW as of 2026. Public-source tracking (DLA Piper data protection laws of the world + IAPP + cms.law + Lexology) indicates the Bill has been in committee stage with revisions + has not progressed to assent. Data protection in Fiji remains governed by sector-specific provisions in the Banking Act + Public Service Act + Information Act 2018 + the common-law action for breach of confidence + the constitutional right to privacy under Section 24 of the 2013 Constitution. The Fiji Online Safety Act 2018 (FOSA) covers harmful electronic communications + cyberbullying but is not a general data-protection regime. ADMINISTRATIVE BODY: pending enactment, the Pacific Privacy Authority Network (PPAN) + the regional Asia-Pacific Privacy Authorities (APPA) provide informal coordination + Fiji participates as observer. RELATED: the Fijian Information Commissioner (under the Information Act) may receive jurisdiction over the eventual data protection regime; the 2024-2025 Pacific Islands Forum data-protection working group has supported regional harmonisation along GDPR-like + Singapore PDPA-like lines. It is used by organisations to establish and maintain compliance with industry standards and regulatory requirements.
How many controls does Fiji Data Protection Bill (2020) have?
Fiji Data Protection Bill (2020) has 7 controls organised across 7 domains. The largest domains are Fiji DP Bill: Bill Status, Pacific Regional Coordination and Related Sectoral Provisions (1 controls), Fiji DP Bill: Controller and Processor Obligations, Security and Breach Notification (1 controls), Fiji DP Bill: Cross-Border Transfers, PIDPC Commissioner and Enforcement (1 controls). Each control defines specific requirements that organisations must implement to achieve compliance.
What frameworks does Fiji Data Protection Bill (2020) map to?
Fiji Data Protection Bill (2020) does not currently have cross-framework mappings in our system. Check back as we continuously expand our mapping database.
How do I get started with Fiji Data Protection Bill (2020) compliance?
Start your Fiji Data Protection Bill (2020) compliance journey by running a self-assessment on our platform to identify your current compliance posture. Our AI advisory can answer specific questions about Fiji Data Protection Bill (2020) requirements, and cross-framework mapping helps you leverage existing controls from other frameworks you may already comply with. Create a free account to access all 7 controls and track your progress.
Start Your Compliance Journey
Create a free account to run self-assessments, get AI advisory, and track your compliance progress across 700 frameworks.
Get Started Free →Free forever — no credit card required