6.1 Introduction

The influence of digitalisation for future economic development continues to fascinate scholars and practitioners. Digitalisation often initially involves sizeable costs, and its benefits become apparent after the accompanying data is transferred to an environment that minimises operational expenses. To provide distinction—digitisation refers to the act of converting information from an analogue to a digital format, and digitalisation refers to the subsequent process of leveraging on the digital content to attain an enhanced user experience (Rijswijk et al., 2020). Digitalisation is considered as the process of integrating digital technologies into everyday life. Among other advantages, digitalisation allows users to spend less on computer hardware and software, thereby allowing team members to focus on other tasks. Additionally, digitalisation aids data collection in that materials are optimised for analysis and investigation, thus allowing firms to prosper. Similarly, with digitalisation, data and resources can be consolidated into a set of tools that would offer a single perspective on their customer journey, operations and other business opportunities. As a result, data-driven consumer insights can facilitate a customer-centric corporate strategy, affording a better overall consumer experience in an era that rewards limitless choices, low prices and quick delivery. Businesses can, therefore, become more agile with digitalisation, increasing their speed to market while embracing innovative approaches (Backbase, 2021; International Finance Corporation, 2017).

Digitalisation increases efficiency and raises productivity through greater automation of manual activities, integration of data across the company and empowering of team members with a collaborative digital culture that offers tools that are adapted to their context. Digitalisation in the finance sphere provides convenience, efficiency and security to clients looking to access their funds; additionally, digitalisation discourages corruption, financing of illicit activities and tax evasion (Jafri, 2021), while promoting greater inclusion which enables access to formal financial services for those lacking other avenues of access (Jafri, 2021; Shipalana, 2019). Put simply, a financial technology company (FinTech) innovations encourage financial inclusion and bolster economic development.

6.1.1 The Spread of Digitalisation

New technologies and their attendant effects on digitalisation are fuelling the emerging Fourth Industrial Revolution (4IR). Technologies like big data analytics, artificial intelligence (AI), blockchain, Internet of Things (IoT) and robotics are being used, independently and jointly, to create new data-driven business models and to generate better opportunities for enterprises to expand rapidly. Technology companies have taken to digitalisation both to understand the customer (through data) and to use this data to design new products, to improve productivity and convenience. As part of its 2030 Agenda, the United Nations General Assembly approved the 17 Sustainable Development Goals (SDGs) as a blueprint for sustainable development in the world. Numerous experts have opined that realising the SDGs requires the effective exploitation of data across numerous sectors (Macmillan, 2020).

Technology firms that were not previously in the financial-services sector are carving out a niche for themselves (Frost et al., 2019); the number of FinTechs has, therefore, multiplied rapidly, rendering financial resources increasingly available and affordable. Increasingly active FinTechs have, however, spawned additional challenges varying across different sectors and jurisdictions, such as e-commerce platforms registering far-reaching cross-border impacts like tax liability for local firms across entire economies, as well as the emergence of regional payment platforms necessitating transnational and interdisciplinary regulatory discourses. There are also governance issues regarding cyber-resilience and data-management concerns; what’s more, digital currencies—especially amid economic globalisation—continue to reconstitute financial and monetary policies, with potentially significant economic impact.

Mobile money platforms were built on the back of GSM connectivity and have grown phenomenally; they are now used by over one billion people around the world (Enberg, 2019). Over the past decade, mobile money services have rapidly expanded access to financial services in Africa (Kirui, 2020). The rate of growth of the FinTech industry in Africa has been influenced, too, by existing mobile network operators and their relationships with central banks (International Finance Corporation, 2017). Similarly, in Africa, the payments industry leads the FinTech sector, where historically, more than 90% of the economy has been cash-based (Yermack, 2018). Indeed, across the region, some countries have become global leaders in mobile-money transactions. For instance, while the rest of the world hovers at 5%, as a proportion of GDP, the average for such transactions in sub-Saharan Africa is closer to 25% (International Finance Corporation, 2017). Indeed, by 2017, mobile transactions in Kenya—a country that pioneered the use of mobile for financial transactions—executed through the Mpesa platform, accounted for 44% of national GDP (Rolfe, 2019). Similarly, Zimbabwe’s EcoCash platform transacted more than $23 billion in 2017, or 54% of national GDP (Sengere, 2017). These profound rates of use occurred despite remittances in sub-Saharan Africa, registering just under 10% of the global value and yet had the highest transaction costs in the world, thereby creating opportunities for exploitation (Yermack, 2018).

The growth of mobile money in Kenya and Zimbabwe was spurred by an enabling regulatory environment, whereby this innovation was led by the dynamic private sector technological communication players rather than the financial system players (Chitimira & Torerai, 2021; Muthiora, 2015). This situation was due to an appreciation that mobile money combined both a telecommunication service and a financial service. Some of the factors that contributed to financial exclusion included “a trust deficit in banking institutions, their distance from financial institutions and their failure to satisfy documentary requirements such as a proof of identity and a proof of residence” (Chitimira & Torerai, 2021, p. 10). As a result of mobile banking, relaxed requirements to open a mobile money account enabled the poor and unbanked persons to participate in the mainstream financial system, thereby flourishing this sector. Similarly, the mobile money agents’ network and the prepaid model played a critical to the aggressive growth and assurance of security for mobile money in Kenya and Zimbabwe (Chitimira & Torerai, 2021; Muthiora, 2015). Yermack (2018) opined that mobile money flourished in markets with weak institutional structures as a result of the following characteristics: low profit margins, asset being light in nature, scalable designs, innovativeness and compliance friendly.

Digitalisation has strong implications for financial access and inclusion in the Global South (Jafri, 2021), and FinTechs are poised to hasten these processes (Lewis et al., 2017). Discourses that favour the dematerialisation of money as “a technological fix to broader problems of poverty and financial exclusion” have seen enhanced digitalisation of the financial sector even as it is unclear whether those at the periphery of the digital money ecosystem genuinely benefit from the influence of digitalised operations (Muralidhar et al., 2019). Lack of identification documents had, previously, been viewed as an impediment to financial access, but this challenge has been addressed recently by providing individuals with a digital identity. Digital identities have become increasingly prominent, and a digital welfare state is developing, depicted by a gradual uptake of digital data and technologies in welfare schemes, partnerships, administrative processes and the provision of services (Jafri, 2021). Kenya, for example, now transacts social service programmes through electronic means like mobile wallets (Republic of Kenya, 2017), notwithstanding hindrances to fulfilment and success stemming from challenges such as literacy (including IT literacy), the socio-emotional perspective of marginalised individuals and the complexity of information and service requirements that users confront (Malladi et al., 2021; Mervyn et al., 2014; Shipalana, 2019).

Innovation, prevalent poverty levels, financial sector stability, financial literacy and existing regulatory frameworks that vary between countries each affect the financial inclusion ecosystem (Ozili, 2021). Malladi et al. (2021) posited that individuals finding themselves within the financial inclusion ecosystem due to digitalisation ended up being marginalised and, owing to socioeconomic circumstances, incapable of sustaining themselves within the framework. Malladi et al. (2021) further observed that whereas some consumers might be savvy with technology—relishing apt gadgets—most users might not be able to afford even basic phones, meaning they would likely struggle to understand and utilise technology efficiently, thus leading to significant variance between users in terms of product and service uptake. Finally, Malladi et al. (2021) opined that a lack of financial knowledge and an understanding of financial cybercrimes led to a general mistrust among the marginalised, thereby diminishing digital penetration.

Digitalisation carries the risk of increasing levels of data inequality at multiple levels. At the household level, those without access to data due to constraints such as infrastructure or cost are excluded from the opportunities that are generated through digital platforms. At the global level, there are massive inequalities in the generation and usage of data, which put developing economies at risk of becoming mere originators of raw data to global platforms, then turned into paying consumers of digital intelligence obtained from their data. Additionally, global companies operating digital platforms enjoy significant financial, market and technological power over smaller competing firms that put them in firm control over data markets.

Global development agendas, such as Millennium Development Goals s (2000–2015) and Sustainable Development Goals (2015–2030) set in motion demand for data on complex set of social, economic and political indicators, hitherto believed to be unmeasurable. Digital technologies, supported by satellite interfaces generate massive data by the second which can only be processed by computation capabilities that exist mainly in advanced economies, creating the space for inequality of opportunities. The UN defines this phenomenon as data revolution which is “an explosion in the volume and production of data matched by growing demand for data from all parts of society”. The increasing use of data as a backbone of the Fourth Industrial Revolution has generated interest on who benefits from access to data, how data production shapes the world and how data mining and algorithmic discrimination techniques shape individual and collective identities and life chances.

Cinnamon (2020) identified inequality in data in three dimensions: “access to data, representation of the world as data, and control over data flows.” Countries, and regions vary considerably in their capability and policy in all these dimensions. Africa lags significantly behind the rest of the world where the “digital” divide morphs into a “data divide” and the inequality of opportunities it engenders, and this “digital capabilities” gap is widening over time. Further, Africa does not only lag in the capacity of the internet bandwidth to access, use and transfer data but also in the levels of subscription to mobile phones as well as high-speed mobile network technology. Therefore, the potential for Africa as a continent to remain disfranchised is real and significant unless concerted effort is made by governments to accelerate investment in the information technology infrastructure as well as skills necessary to utilise complex and large data sets for making decisions and facilitate socioeconomic development.

Digital financial inclusion raises key regulatory issues regarding agency, money laundering, financing of illicit activities, regulation of e-money, consumer protection, payment-system regulation and competition. The increasing influence of technology firms underscores the need for global monitoring and a regulatory framework capable of accommodating the competing priorities of different countries and stakeholders, whilst supporting inter-jurisdictional coordination and minimising the risk of regulatory fragmentation. Global action has, however, thus far lacked coordination, emphasising the need for urgent and concerted remedial action (Lopez, 2020). To help meet this need, this issue paper analyses the impact of digitalisation and data governance in the financial sector and focusses on the challenges and emerging opportunities for private and public organisations across Africa.

6.2 The Current State of Affairs

6.2.1 Emerging Concerns

Digitalisation has transformed global financial markets (International Finance Corporation, 2017; Lehner & Simlinger, 2019), and the COVID-19 pandemic has accelerated this transition (Caldwell & Krishna, 2020). As finance has been democratised, credit has become at once more accessible, available and affordable; several platforms, for example, now deploy big-data analytics and AI to build customer credit scores that offer more convenient services, such as digital loans. Digital transformation has also spurred fundamental changes in the customer experience, affecting decisions and transactional processes across the global world of finance (Backbase, 2021; International Finance Corporation, 2017).

Challenges remain, however, even with the greater inclusion delivered by emerging technology solutions. The digitalisation process has raised questions about data governance, as private entities have generated and deployed massive amounts of customer data without necessarily receiving consent or offering assurances of privacy (Davis, 2021). Indeed, there are numerous instances where consumers have balked at having their data used without their consent. Panian (2010) identified the goals of data governance as enabling secure data collection to complement business needs, managing data as an important competitive advantage whilst optimising costs of data storage. Macmillan (2020) argued that successful data governance meant recognising the economic and social utility of data whilst delivering public benefits across the economy and distribution that should be done securely and in accordance with widely observed norms of consumer protection and privacy. Figure 6.1 illustrates the tension between the need for data protection and production with respect to data governance issues.

Fig. 6.1
Data governance issues in the order of decreasing production and increasing protection are inferences, policy inputs and algorithmic accountability, access to data, markets and platforms, identification systems, personal and other data usage control, and data security, cyber security and cybercrime.

Data production and data protection. Note. From Data Governance: Towards a Policy Framework, by Macmillan (2020), Industrial Development Think Tank (IDTT)

Full size image

Ultimately, governance influences financial stability. We adopt the conceptual framework in Fig. 6.2, and we argue that financial data governance requires a system of self and external regulation.

Fig. 6.2
A relationship diagram between financial governance, regulation, compliance, consumer protection, tax collection, and financial stability, with types listed for each.

Conceptual framework. Source: Authors

Full size image

The need for regulation in FinTechs revolves around four principal pillars: compliance (such as preventing money laundering), consumer protection, tax collection and financial stability. There are interacting actions around these pillars, and scholarly work on the same is still fairly nascent.

It is estimated that more than 500 companies across Africa provide financial services enabled by technology (African Union Commission/Organization for Economic Co-Operation and Development, 2021), and the total is even higher when accounting for firms in other sectors that also base their work in technology. Furthermore, the FinTech industry is highly dynamic and is replete with investments, acquisitions, buyouts and partnerships (Wójcik, 2021). Because massive amounts of data are now held by private corporations operating in jurisdictions other than those in which they are based, data governance has emerged a top priority—especially in sub-Saharan Africa (Devermont & Harris, 2021). In response, the European Union of the General Data Protection Regulations (GDPR) developed data-protection laws in 2016, and several African countries have produced similar legislation. Figure 6.3 demonstrates the status of such legislative enactments on the continent.

Fig. 6.3
A map of Africa with countries shaded for data legislation. A majority of the countries that include South Africa and Algeria have legislation. Countries that include Namibia and Zimbabwe have draft legislation. Egypt and Libya among others have no legislation. Few counties have no data.

Data protection and privacy legislation in Africa. Note: Adapted from Data Protection and Privacy Legislation Worldwide, United Nations Conference on Trade and Development, 2020, https://unctad.org/page/data-protection-and-privacy-legislation-worldwide

Full size image

Laws such as those referenced in Fig. 6.3 address the risk of personal information leaking into the wrong hands while also attending to matters of privacy infringement, concerns about data monopoly, responsibility for data quality and service and the limits of data governance for Big Data implementation. Additionally, these laws aspire to protect personal information whilst safely accessing and linking open and non-sensitive data; at the same time, they offer proportionality in the use of data and autonomy for individuals and communities deploying data to achieve commercial benefits and efficiency in public services. Most countries, at present, refer to the principles of AI as developed by the OECD.

Yermack (2018) posited that regulation of FinTech companies in developing countries was undeveloped due to immature regional institutions and ever-evolving technology. Malladi et al. (2021) observed that while financial inclusion has broadened, access to credit was still a concern and has caused a spike in predatory lenders charging exorbitant rates of interest, typically due to insufficient penetration by government and credible formal schemes, thereby requiring more outreach to enhance would-be users’ access to credit. Moreover, avenues for digital lending and online loans from credible financial institutions are still missing.

Despite clarity at the continent level, numerous studies have shown that not all countries have progressed towards operationalising their data-protection laws and governance mechanisms (Ademuyiwa & Adeniran, 2020; Deloitte, 2017). According to the United Nations Congress on Trade and Development (2021), African countries are at different stages of legislating various aspects of safeguards on digital transactions and data use.

As indicated by Fig. 6.4, by 2021, only 25 of the 54 countries in Africa had fully enacted legislation on consumer protection. Similar numbers exist regarding cybercrime (39), privacy and data protection (27) and electronic transactions (33). These rates of enactment have significant implications for trade potential and subsequent financial transactions in the region.

Fig. 6.4
A stacked horizontal bar graph plots legislation status versus the number of African countries. Cybercrime legislation is enacted in 39 countries. Data protection and privacy have no legislation in 13 countries. Other categories are online consumer protection and e-transactions legislation.

Status of digital protection-related legislation across African countries. Note: From United Nations Conference on Trade and Development E-Commerce Legislation Index, 2021

Full size image

6.2.2 Digitalisation Has a Heterogeneous Impact Across Africa

Digitalisation is a multidimensional and rapidly evolving concept (International Finance Corporation, 2017), one that has emerged as a practical and feasible approach to improving governance (World Bank, 2021). Information asymmetries have been reduced by increasing transparency and access to information, leading different organisations to move towards digitalisation. On account of individual-level data, different organisations can offer advanced search outcomes, tailored product, service recommendations, useful ratings, timely traffic data and targeted advertisements (Devermont & Harris, 2021). Furthermore, as the World Bank (2021) has observed, digitalisation can improve linkages between citizens and governments, a connection that is increasingly important as the public and private spheres have become increasing intertwined and reliant on digital technology amid the COVID-19 pandemic. Virtually, every organisation realises that customer data is like gold and a major corporate asset, hence the need for careful protection and active management to preserve the integrity and realise the value of this data.

As many organisations have realised lately, notwithstanding its value, data can be a liability in the event of data breaches (Gregory, 2011; Gressin, 2018; Wang & Johnson, 2018), especially in the financial sector, where such episodes are a common occurrence. Wang and Johnson (2018) estimated that between 2005 and 2018 there were over 8000 documented breaches affecting over 10.3 billion records. Of these cases, more than 2300 breaches implicating 9.8 billion records affected e-commerce transactions in finance and insurance services. For example, in July 2020, a data breach was reported involving as many as 7.5 million banking users who had been exposed on a forum used by hackers to sell and swap ill-gotten data (PYMNTS, 2020).

The African Cyber Immersion Centre (2020) noted a marked increase in cyber-attacks transcending key sectors of the economy and found that these attacks were mostly coordinated across different countries. Cyber resilience, therefore, remains a critical component in the relationship between digitalisation and economic development; the African Union (AU) Heads of States thus adopted and approved the AU Convention on Cybersecurity and Personal Data Protection at the 2014 Malabo Convention (AU, 2014). The convention obliged member states to

establish in each state party, mechanisms capable of combating violations of privacy that may be generated by personal data collection, processing, transmission, storage, and use; that by proposing a type of institutional basis, the convention guarantees that whatever form of processing is used shall respect the basic freedoms and rights of local communities and the interest of business; and take on board internationally recognized best practices. (p. 2)

Verification, vigilance and keen detection efforts are more important than ever in this rapidly changing environment. Without ratification and subsequent operationalisation by the different states of the Malabo Convention, the good intentions will remain just that.

Africa is a large heterogeneous collection of countries with distinct societal objectives and institutional frameworks. There are significant intra-country disparities within the region and at the most basic levels of digitalisation; higher-income countries, for example, enjoy superior connectivity (International Finance Corporation, 2017). Yermack (2018) analysed different patterns of legal systems in Africa, as well as their influence on the adoption of technology and FinTech platforms, and deemed that common law countries (as compared to civil law countries) provided more infrastructure incentives that, in turn, encouraged robust growth for FinTech platforms. Ademuyiwa and Adeniran (2020) further established that most existing laws required substantial amendments to qualify them as appropriate to the dynamics of digitalisation and highlighted emerging concerns regarding policies directed at competition and taxation in the digital space. Table 6.1 offers a summary of progress regarding different aspects of data governance in light of existing trade agreements and protocols.

Table 6.1 Missing clauses—digital provisions in Africa trade agreements
Full size table

6.2.3 What Does This Portend for Africa?

Africa has unique demographic advantages that include a young and increasingly literate population, a burgeoning middle class, initiative-taking mobile network operators and escalating internet penetration (Gyori, 2018). Accordingly, digitalising Africa today paves the way for more resilient economies in the future (International Finance Corporation, 2017). Innovative digital financial services, including mobile money, can increase financial opportunity in Africa and transform the landscape of financial inclusion for the unbanked or underserved (Gyori, 2018). By enhancing unconstrained access to financial services, capital, goods and services, these innovations can integrate the poor and minorities into the mainstream economy whilst addressing inequalities. Such innovations in economic development include SME development and support systems, infrastructural development, circular economic activities and increases in employment. As examples of what is possible through access to technology, some of these innovations enable remote micropayments to and from SMEs, while other proposed FinTech propositions include involving central banks in embracing blockchain technology and transitioning to sovereign virtual currencies. Transformations such as these have vast implications for macroeconomic stability and would likely improve tax collection, compliance and other administrative functions of the government (Yermack, 2018).

At the same time, the International Monetary Fund (IMF) has noted that as countries become increasingly digitalised, they must invest in four broad policy pillars: infrastructure, policy frameworks, skill-building and appropriate risk management policies. At present, numerous African countries lack these data governance pillars (as well as the enforcement capacity) needed to support a well-functioning data-based economy (Adeniran & Osakwe, 2021). The discourse around the consequences of FinTechs remains controversial and should be viewed from a geographical perspective (Wójcik, 2021); in as much as Mpesa was nurtured by, and successful in, Kenya, very few African countries have, within their current legislative framework, taken a stand on the legitimacy of digital currency and initial coin offerings (ICO). Data governance provides invaluable support for these developments.

6.3 Formulating a Research and Policy Agenda

6.3.1 Opportunities Associated with Financial Data Governance

Technology is evolving at a fast pace, and there is a constant need to both evaluate these developments and engage in research to nurture the capacity for the management and governance of data. Financial data governance should be viewed from the perspective that it can create value; if appropriately managed, data governance enables organisations to be competitive and agile, managing costs to more effectively address the needs of their customers (Panian, 2010). The desirable attributes that facilitate value creation include the availability of superior, relevant and consistent data, and compatible technology, combined with clear audibility and easy accessibility (Panian, 2010; Petzold et al., 2020).

What is the expected level of data quality and service attendant to new financial innovations? Inadequate data quality and poor availability yield poor productivity, with significant amounts of time wasted on non-value-added activities, including data sourcing, data aggregation, data reconciliation, data cleansing and manual reporting (Petzold et al., 2020). Hence, effective data governance may require rethinking organisational design to accommodate a balance between the setting of standards, strategic direction and execution—a balance necessarily affected by data complexity (which increases with the scope of business operations), the speed with which core data evolves and the maturity of the underlying and predominant technology.

What are some of the emerging models of organisational design that would best utilise available opportunities? With its focus on systems that appreciate autonomy for individuals and communities, and its emphasis on using open data to achieve commercial benefit and efficiency in public services, digitalisation balances public and private interests. In its Policy Brief No. 89, the United Nations outlined some areas in which the use of open data and big data analytics could be considered useful (United Nations, 2020), such as in attaining real-time reactions to changes in economic phenomena, facilitating coordination and collaboration across different stakeholders in the financial system and enhancing public trust and countering misinformation when explaining complicated economic cycles. The COVID-19 pandemic propelled digitalisation to the forefront of discourse on the nature of the world economy of the future (Wójcik, 2021), but digitalisation can also identify and address vulnerable groups to provide effective resource management. Such value-added actions, however, necessitate enhanced data governance to complement their efforts. The question that follows then is: What have been the linkages between different levels of data governance and resource management?

6.3.2 Challenges and Risks Associated with Big Data in the Financial Sector

As FinTechs expand the geographical limits of the financial sphere, initiating new products and offerings based on copious financial data, they complicate the predicament of regulators (Wójcik, 2021). Firms that have underinvested in governance make their organisations vulnerable to real and often expensive breaches. The concerns around the handling of personal information, as well as privacy infringement by FinTechs, have not been fully assessed but certainly include issues of customer privacy and protection. Data-handling risks arise at three nodes: data collection, processing and even archiving. These risks crystallise when data is inadequately handled at the three nodes and in a manner that compromises the firm. In a January 2020 Consultative Group to Assist the Poor (CGAP) report, Medine and Murthy noted that

As the commercial use of personal data grows exponentially, so do concerns over whether that data will be used in consumers’ best interests. This is particularly true for financial services in emerging economies, where data expand the potential for reaching poor and underserved communities with suitable products but where customer protection risks are great. In many markets ranging from Indonesia to India and Kenya, it is unfair to impose the burden of consent on individuals to protect their data when such a large proportion of the population are opening accounts or coming online for the first time, literacy rates are low, and individuals face potential language and technological barrier. (p. 1)

To address these concerns, Janssen et al. (2020) argued that data governance principles should include evaluation of data quality and bias (before data is used), post-processing validity checks and data minimisation/need-to-know protocols (e.g., only necessary information should be shared as opposed to complete data sets). Other policies advocated by Janssen et al. (2020) include bug bounty schemes (i.e., rewarding those who detect errors and issues), informing when sharing, data separation (e.g., sensitive versus insensitive data) and citizens’ control of data (i.e., citizens and organisations should be sufficiently empowered to validate the accuracy of their data). Finally, Janssen et al. (2020) stressed the importance of collecting data at the source, as well as authorisation to access data (including separation of concerns so no single person could misuse or abuse data), distributed storage of data (because distributed systems are less vulnerable and circumvent easy data combining) and the appointment of data stewards for accountability.

In short, the data risks posed by FinTechs can be better managed by an improved regime of data management, adoption of advanced analytics techniques and reliance on cognitive technologies. The overriding concern is the extent to which these principles, policies and procedures have been implemented, as well as the degree to which they have influenced data governance. Malladi et al. (2021) observed that stakeholders exercised disjointed efforts to achieve sustainable last-mile delivery models; furthermore, open access to information like healthcare-schemes data, social-inclusion data, COVID-19 data and vaccination data had not been fully leveraged, demonstrating incidences of incoherence. In a dynamic environment, last-mile technological systems and artefacts are especially vulnerable to exposure and exploitation.

Cybersecurity remains the biggest threat facing digitalisation, with few available experts to mitigate attacks in Africa (International Development Research Centre, 2019). Evidence indicates that risks increase as organisations digitalise and automate their operations (Kaplan et al., 2019). Owing to an emergent worldwide commitment to diminish cybersecurity threats, the International Telecommunication Union (ITU, 2021) developed an index, the Global Cybersecurity Agenda (GCA), to assess countries according to five strategic pillars (Legal Measures, Technical Measures, Organisational Measures, Capacity Building and International Cooperation) and to then aggregate an overall score. Based on this calculus, the top 10 African countries most committed to cyber stability are (with their overall scores in parentheses) as follows: Mauritius (96.89), Tanzania (90.58), Ghana (86.69), Nigeria (84.76), Kenya (81.70), Benin (80.06), Rwanda (79.95), South Africa (78.46), Uganda (69.98) and Zambia (68.88) (ITU, 2018). Each of these countries has, subsequently, addressed challenges in a collaborative manner; because of this collaboration, 18 African countries currently have an institutional framework for reporting cybersecurity incidents.

6.3.3 Social and Ethical Issues Affecting Digitalisation of Financial Data

Beyond the technological challenges of digitalisation are the social and ethical issues it presents. The predominant view of regulatory structures is that they stifle innovation; data privacy continues to be a major concern as vast amounts of captured data is easily available to unauthorised stakeholders because personal information and privacy norms are not honoured (Malladi et al., 2021). There are also technology concerns around some of the technologies like AI, whose algorithms may be discriminatory. Zook and Grote (2020) imagined digitalisation as a decentralised techno-utopian vision of society that would enshrine individual liberty and resist the centralised and surveillance nature of regulations. Royakkers et al. (2018) identified privacy, autonomy, security, human dignity, justice and the balance of power as impacted by digitalisation and, consequently, in need of protection; moreover, they opined that, whereas regulation had been developed around privacy and security, official scrutiny was not as well-articulated in the other four areas (which are inherently fundamental in many modern-day constitutional architectures). The question then becomes: What policies and systems can hold governments and private citizens accountable for the use of financial digital data in a manner that does not run afoul of their basic rights?

6.3.4 Enhancing Institutional Frameworks

Institutional frameworks must be addressed because they affect data collection, transmission, processing, storage, access and interoperability. The preferred approach has, thus far, been regulatory sandboxes that offer co-development of regulation by stakeholders as well as private self-regulation (Yermack, 2018). However, as policymakers chart their way forward and consider various factors, they must question what structures exist to incentivise FinTechs to adopt and adapt data governance. Davis (2021) proposed a series of actions that could strengthen transparency, accountability and participation in data protection; one such recommendation would require proactive verification of the compliance activities by each of the players in this space.

The impact of FinTechs on the fragility and profitability of financial institutions is still uncertain (Fung et al., 2020). The impact of digitalisation through the coordination of decentralised data systems across institutions must still be assessed. What, for example, are the risks to financial data associated with data monopoly? What is the scope for antitrust regulation in so far as data concentration is concerned? Davis (2021) opined that applicable regulatory sanctions and monetary fines should deter breaches of existing governance requirements, but others aren’t so sure.

From a regulatory perspective, the limits of data governance for Big Data implementation are unclear, as are the regional and in-country impacts of recently enacted frameworks and legislation. Davis (2021) recommended that regulatory authorities enjoy multiple mandates affording them multi-stakeholder engagements and, where possible, regional collaborations. Is there a scope for regulatory sandboxes that would allow experiments with direct feedback between citizens and the government? In Africa, this terrain is uncharted; more areas call for in-depth analysis regarding the possible challenges and opportunities of digitalisation and financial governance.

6.4 Conclusions and Implications

The literature on digitalisation reveals several emerging themes. Scholars should consider how the abovementioned issues will guide any future discourse on digitalisation and financial governance in Africa. In this issue paper, we have outlined the state of financial-data governance and practices in Africa and have discussed areas that necessitate more investigation to narrow existing gaps in knowledge and policy. Finally, we have identified questions and dilemmas facing scholars, practitioners and policymakers as we all proceed on this journey into a digitalised future.