According to Art. 52 of Law No. 8-2001, when a press publishing company is incorporated, the majority of shares (that is 51%) are reserved for Congolese citizens. This applies also to online newspapers.

The Republic of Congo is not a signatory of the 1996 World Trade Organization (WTO) Information Technology Agreement (ITA) nor the 2015 expansion (ITA II).

Comoros lacks a comprehensive framework for consumer protection that applies to online transactions.

Comoros has not signed the United Nations (UN) Convention on the Use of Electronic Communications in International Contracts.

Comoros has not adopted national legislation based on or influenced by the United Nations Commission on International Trade Law (UNCITRAL) Model Law on Electronic Commerce.

Comoros has not adopted national legislation based on or influenced by the United Nations Commission on International Trade Law (UNCITRAL) Model Law on Electronic Signatures.

The indicator "7.2.4 - Government Internet shut down in practice" of the V-Dem Dataset, which measures whether the government has the technical capacity to actively make internet service cease, thus interrupting domestic access to the internet or whether the government has decided to do so, has a score of 3 in Comoros for the year 2024. This corresponds to "Rarely but there have been a few occasions throughout the year when the government shut down domestic access to Internet."

According to Arts. 13-19 of the Decree No. 15-093/PR, terminal equipment and radioelectric installations may only be imported if they have been approved in advance by the National Regulation Authority of Information and Communications Technology (ANRTIC). The applicant needs to send an application detailing information on the equipment and installations submitted for approval to ANRTIC.
According to Art. 1 of the Decree, terminal equipment is defined as any device, equipment or set of equipment intended to be connected to a network termination point for the purpose of transmitting, processing or receiving information. Only equipment providing access to electronic communications services is covered, excluding audiovisual communications services. Radioelectric installations are defined as any transmission system, switching or routing equipment and other resources used to transmit signals by cable, regardless of the type of information transmitted.

According to Arts. 13-19 of the Decree No. 15-093/PR, terminal equipment and radioelectric installations may only be manufactured, imported, sold or distributed in the domestic market if they have been approved in advance by the National Regulation Authority of Information and Communications Technology (Autorité Nationale de Régulation des TIC - ANRTIC). The applicant must send an application detailing information on the equipment and installations submitted for approval to ANRTIC. The approval regime aims to confirm the compliance of the products with essential standards: user security, security of personnel operating electronic communication networks, protection of networks (in particular exchanges of control and management information), suitability of equipment to operate with the network, proper use of the electrical radio frequency spectrum.

Comoros does not implement any de minimis threshold, which is the minimum value of goods below which customs do not charge duties. However, there is reportedly an informal arrangement for a de minimis threshold of USD 116.

The National Regulation Authority of Information and Communications Technology (Autorité Nationale de Régulation des TIC - ANRTIC) is the executive authority for the supervision and administration of services in the telecommunications sector, and it is independent of the government in the decision-making process. According to Art. 6 of the Law No. 14-031/AU, the ANRTIC is legally distinct and functionally independent from the ministry in charge of electronic communication and the service suppliers.

Comoros has not joined any agreement with binding commitments to open transfers of data across borders.

Comoros does not have a comprehensive regime of data protection in place.