According to Section 70.3 of the Data Protection Act, sensitive personal data must be processed and stored in a server or data centre located in the Republic. Sensitive personal data is defined in Section 2 of the Act as personal data which by its nature may be used to suppress the data subject’s fundamental rights and freedoms and includes the race, marital status, ethnic origin, or sex of a data subject; genetic data and biometric data; child abuse data; a data subject’s political opinions; a data subject’s religious beliefs or other beliefs of a similar nature; whether a data subject is a member of a trade union; or a data subject’s physical or mental health, or physical or mental condition.
Section 14 of the Act prohibits the processing of sensitive personal data unless it is necessitated by a legal claim or judicial function in court, in the context of health service provision, or for reasons of public interest. In health service provision, the law requires that data be processed by or under the responsibility of a professional, subject to secrecy and other obligations imposed by any law or professional bodies regulating them. Data processed to serve the public interest can only be processed where adequate measures to safeguard the rights and freedoms of the data subject have been put in place.

According to Art. 303 of the Companies Act 2017 (No. 10 of 2017), a foreign company is required to appoint at least one local director. This requirement has been in effect since the Companies Act of 1994 (Art. 248).

It is reported that the Zambia Development Agency (ZDA) Board conducts mandatory screening of all foreign investments. Investment applications undergo thorough due diligence to assess factors such as job creation, human resource development, the project's export orientation, its potential environmental impact, the extent of technology transfer, and any other considerations deemed relevant by the Board.

Zambia is a party to the Patent Cooperation Treaty (PCT).

Zambia has a clear regime of copyright exceptions that follows the fair dealing model, which enables the lawful use of copyrighted work by others without obtaining permission. Section 21 of the Copyright Act enumerates a wide range of exceptions, including (i) use for private study or personal research by an individual, provided it is not for profit; (ii) criticism or review of the work, or any other work, with proper acknowledgement; and (iii) reporting of current events, among others.

It is reported that copyright is not adequately enforced online in Zambia. It is reported that copyright protection is considered limited, particularly as it does not extend to computer applications. Additionally, among the many pirated goods in Zambia, the most prevalent are DVDs, CDs, and audio-visual software.

Zambia has not signed the World Intellectual Property Organization (WIPO) Copyright Treaty.

Zambia has not signed the World Intellectual Property Organization (WIPO) Performances and Phonograms Treaty.

Zambia has no rules applicable to the protection of trade secrets.

It is reported that there is an obligation for passive infrastructure sharing in Zambia to deliver telecom services to end users. It is practised in both the mobile and fixed sectors based on commercial agreements.

All internet and mobile service providers in Zambia are privately owned, with the exception of Zambia Telecommunications Company Limited (ZAMTEL), which was nationalised in 2012 under former president Michael Sata. Sata’s predecessor, Rupiah Banda, had previously privatised the company, but the state reversed this sale, restoring ZAMTEL to 100% government ownership. Despite ZAMTEL's smaller share in the mobile market, it has historically held a larger share of fixed-line subscriptions and is the only mobile operator offering landline telephone services. As of May 2018, MTN is the dominant mobile service provider with a 44% market share, followed by Airtel with 39.7% and ZAMTEL with 15.9%.

It is reported that Zambia does not mandate accounting separation for operators with significant market power (SMP) in the telecom market. However, functional separation is an obligation.

Pursuant to Art. 10.1 of the Information and Communication Technology Law No. 15 of 2009, the Authority issues the following licenses: (i) Network License: allows for the construction, ownership or provision of an electronic communications network, or the provision of network services; and (ii) Service License: allows for the provision of one or more electronic communications services. Licensees must ensure that all applications submitted comply with the provisions of the 2017 Licensing Guidelines. Statutory Instrument No. 11 establishes a minimum share capital requirement for private telecommunications companies of ZMW 15,000 (approximately USD 860). The licensing requirements include the technical and financial capability of the applicant, a comprehensive business plan, company information on shareholders, relevant company registration documentation, a list of directors, place of domicile and tax clearance, technical plan, roll-out plan, network diagrams and explanations, target customers, pricing for products and services, financial projects, anticipated capital expenditure, value proposition, among others. There are complaints about the licensing process. On the one hand, it is reported that foreign investors in the telecom sector are required to disclose certain proprietary information to the Zambia Development Agency (ZDA) as part of the regulatory approval process. On the other, it is reported that prospective mobile service provider Uzi Mobile stated that licensing issues contributed to its decision to withdraw from Zambia in 2020.

Section 91 of the Public Procurement Act establishes a preference and reservation scheme for citizens or local suppliers, as well as bidders offering goods, works, or services with local content. Certain procurement opportunities are also reserved for target groups, including SMEs, women, youths, and persons with disabilities. Additionally, greater preference is granted to joint ventures or associations involving citizens or local suppliers than to foreign suppliers subcontracting them. The margin of preference to be applied is not predetermined; instead, it is set by the Public Procurement Authority in collaboration with the Citizens' Economic Empowerment Commission and other relevant government departments and statutory bodies in each tender procedure.

According to the National Local Content Strategy 2018-2022, government policy mandates a minimum of 35% utilisation of local inputs and/or products in the production and provision of goods and services across the economy.