/

/

/

/

/

Revised Laws of Saint Lucia (2021)

Back to Revised Laws of Saint Lucia (2021)

Back to Table of Contents

PART 2
OFFENCES

5. Unauthorized access to computer data

(1) Subject to section 13 and subsections (3) and (4), a person shall not knowingly and without lawful authority, cause a computer system to perform any function for the purpose of securing access to any program or data held in that computer system or in any other computer system.

(2) A person who contravenes subsection (1), commits an offence and is liable, on summary conviction—
1. (a) in case of a first offence—
  1. (i) subject to subparagraph (ii), to a fine not exceeding $5,000 or to imprisonment for a term not exceeding 3 months or to both, and
  1. (ii) where the computer system is damaged, impaired, or where data contained in the computer system is suppressed or modified, to a fine not exceeding $10,000 or to imprisonment for a term not exceeding 3 months, or to both;
1. (b) in the case of a second or subsequent offence—
  1. (i) subject to subparagraph (ii), to a fine not exceeding $20,000 or to imprisonment for a term not exceeding 6 months or to both, and
  1. (ii) where the computer system is damaged impaired, or where data contained in the computer system is suppressed or modified, to a fine not exceeding $50,000 or to imprisonment for a term not exceeding one year, or to both.

(3) A person shall not be liable under subsection (1) if that person—
1. (a) is the person with a right to control the operation or use of the computer system and exercises such right in good faith;
1. (b) has the express or implied consent of the person empowered to authorize him or her to have such an access;
1. (c) has reasonable grounds to believe that he or she had such consent as specified in paragraph (b);
1. (d) is acting pursuant to measures that can be taken under Part 3; or
1. (e) is acting in reliance of any statutory power arising under any enactment for the purpose of obtaining information, or of taking possession of, any document or other property.

(4) An access by a person to a computer system is unauthorized if the person—
1. (a) is not entitled or allowed to control access of the kind in question; and
1. (b) does not have consent to the kind of access in question from any person who is entitled to give the consent.

(5) For the purposes of this section, it is immaterial that the unauthorized access is not directed at—
1. (a) any particular program or data;
1. (b) a program or data of any kind; or
1. (c) a program or data held in any particular computer system.

5. Unauthorized access to computer data

1. Short title and commencement

3. Objectives of this Act

4. Application of Act

6. Access with intent to commit or facilitate commission of offence

7. Unauthorized access to and interception of computer service

8. Unauthorized modification of computer material

9. Damaging, and denying access to computer system

10. Unauthorized disclosure of password

11. Unlawful possession of devices and data

12. Electronic fraud

13. Offences involving protected computer systems

14. Indecent photographs of children

15. Malicious communications

16. Preservation order

17. Disclosure of preserved data

18. Production order

19. Powers of access, search and seizure for the purposes of investigation

20. Collection of traffic data

21. Limited use of data and information

22. Institution of criminal proceedings

23. Order for compensation

25. Regulations

2. Interpretation