In the twenty-first century, peace is no longer measured solely by the absence of armed conflict or by the security of national borders. True security extends into digital spaces, where information, identity, and human interaction converge. The recent signing of the United Nations Convention against Cybercrime in Hanoi, with seventy two nations committing to a universal framework for investigating and prosecuting online offences, signals a global recognition that cyber threats are as consequential as physical ones. It affirms that no country, regardless of size or resources, should be left vulnerable to cybercrime and its cascading impacts on human dignity, institutional trust, and economic stability.
 
Cybercrime manifests in multiple forms. Ransomware attacks, financial fraud, identity theft, phishing campaigns, and the non-consensual dissemination of intimate images have emerged as significant threats to both individuals and institutions. The UN treaty establishes a mechanism for cross-border cooperation, data sharing, and legal harmonisation to ensure that cyber offences can be investigated and prosecuted effectively. Without such coordinated frameworks, investigations stall, victims remain unprotected, and public confidence in governance erodes.
 
The magnitude of the challenge is illustrated by recent events in Thailand. In 2024, authorities dismantled a syndicate laundering over three billion baht through shell companies, involving nearly 200 entities and hundreds of individuals. A Singaporean hacker was apprehended in Bangkok after a four-year campaign that breached more than seventy companies across the world  and seized assets valued at over ten million baht. In the same period, cross-border romance and cryptocurrency scams defrauded victims of over one hundred million baht. Political and expression-related cases have also demonstrated the potential for cybercrime laws to be misapplied, as in the arrest of individuals under Thailand’s Computer Crime Act and lese-majeste (article 112 of their criminal code) laws for online posts. These examples illustrate that cybercrime is not only financial but also intersects with human vulnerability, governance, and human rights.
 
For Rwanda, these lessons are both cautionary and instructive. Law No. 60 of 2018 on the Prevention and Punishment of Cybercrime establishes mechanisms to criminalise unauthorised access, malware attacks, phishing, and the publication of illegal digital content. The Penal Code contains complementary provisions targeting the fraudulent use or destruction of electronic data. Law No. 058 of 2021 on the Protection of Personal Data and Privacy enshrines the rights of citizens over their personal information, requires consent for data processing, and designates a supervisory authority for oversight. Rwanda has also aligned its domestic laws with global standards through accession to the Budapest Convention on Cybercrime, demonstrating a strategic commitment to harmonisation and international cooperation.
 
Legal frameworks, however, are insufficient in isolation. Effective enforcement depends on institutions that are well-resourced, independent, and accountable. Broad or vaguely worded provisions, if misinterpreted, risk encroaching on freedom of expression, research, and dissent. Rwanda must therefore couple its legal architecture with operational capacity, procedural safeguards, and transparent mechanisms to ensure that enforcement protects both security and rights.
 
The implications of cybercrime are profound. Thailand’s experience shows that unregulated digital spaces can disrupt financial systems, erode trust in public institutions, and divert attention from productive social and economic activity. Globally, ransomware attacks on hospitals and public services have disrupted essential care, while online scams disproportionately affect women, youth, and marginalised groups. In Rwanda, protecting citizens in cyberspace is essential not only for security but also for fostering inclusive development, social cohesion, and economic resilience.
 
Addressing cybercrime requires a multidimensional approach. Civic education and digital literacy programs, particularly for women and young people, can equip citizens to identify threats, protect personal data, and seek recourse. Rights-based oversight ensures that enforcement does not become a tool for oppression. Coordination across government agencies, private institutions, and regional partners strengthens resilience, ensuring that Rwanda can respond effectively to cross-border threats and criminal networks.
 
The economic consequences are equally compelling. Cybercrime erodes household savings, deters investment, and undermines institutional credibility. Cybersecurity ventures expects global cybercrime costs to grow by 15% per year over the next five years reaching 10.5 trillion USD annually from 2025.  Rwanda’s investment in digital governance, cybersecurity institutions, and cross-border cooperation is therefore an investment not only in safety but also in sustainable development and national credibility.
 
Africa’s rapidly growing online population makes harmonisation and coordination across borders vital. Weak safeguards in one jurisdiction can create vulnerabilities across the continent. Rwanda can lead by example, demonstrating that robust legislation, institutional capacity, and rights-based enforcement can coexist to protect citizens and support regional stability.
 
The UN Convention against Cybercrime is not merely a legal instrument. It codifies the principle that digital spaces are integral to peace, that connectivity is inseparable from human security, and that justice must extend into the digital realm. For Rwanda, the challenge is to operationalise this principle: to translate moral clarity into effective policy, to ensure laws are applied consistently, and to hold institutions accountable for safeguarding citizens in cyberspace.
 
Digital peace is inseparable from human peace. The measure of Rwanda’s success will not be the sophistication of its legal codes alone, but the extent to which its citizens feel secure online, the efficiency of its justice system, and the inclusivity of its digital future. Every law, every policy, and every institution must reflect this principle. In safeguarding cyberspace, Rwanda safeguards the dignity, trust, and development potential of its people.

We speak in actions, not just words, letting impact matter.