KINGSTON, Jamaica — As the Jamaican Senate concluded debate and passed the landmark Cybercrimes (Amendment) Act 2026 on Friday, government Senator Kavan Gayle has emphasized the urgent need for the updated legislation, warning that unregulated cybercrime carries potentially devastating long-term harms for individual victims across the country.
The revised bill introduces two key changes to the existing legal framework: significantly harsher criminal penalties for offenders, particularly for those who misuse digital devices to distribute malicious communication, and expanded formal protections for cybercrime victims through a structured, accessible compensation system. This framework explicitly covers people whose intimate images are shared or published online without their consent, a pervasive form of digital abuse that has previously lacked clear redress for victims.
In his address to the upper legislative chamber, Gayle stressed that strengthening victim compensation is rooted in a simple, critical reality: cybercrimes are not victimless offenses. “Behind every compromised bank account, stolen identity, or act of online harassment is a person whose financial security, emotional well-being, and sense of safety have been undermined,” he explained. “Ensuring that victims can access adequate compensation is a critical step in restoring dignity, promoting recovery, and reinforcing public confidence in the rule of law. I want to commend the Government for this move of protection.”
A professional trade unionist, Gayle outlined the wide spectrum of cyber threats that Jamaican citizens now face on a regular basis. These range from identity theft and phishing scams that steal sensitive financial information to unauthorized bank account breaches, cyberstalking, and ransomware extortion attacks that target both individuals and small businesses. Unlike many traditional offenses, he noted, the harm from cybercrime extends far beyond immediate financial losses: it can permanently damage personal and professional reputations, disrupt stable livelihoods, and leave victims with lasting psychological trauma.
To address these harms, Gayle said, the compensation system must be robust enough to cover all categories of harm suffered by victims. This includes reimbursement for out-of-pocket financial losses, funding for costs associated with restoring stolen identities and damaged credit ratings, compensation for diagnosed psychological harm, and coverage of legal fees related to recovering damaged data or reputation. “A comprehensive system ensures that victims are not left to bear the burden of crimes committed against them,” he added.
One of the core changes included in the 2026 amendment stems from a key recommendation made by the joint select committee that reviewed the original Cybercrimes Act: the repeal of the act’s Section 15, which will allow the broader, more structured compensation framework outlined in Section 24A of the Criminal Justice (Administration) Act to apply to cybercrime cases.
Gayle explained that aligning the Cybercrimes Act with this existing comprehensive regime brings multiple benefits to Jamaica’s legal system. First, it creates consistency in how crime victims are treated, ensuring that people harmed in digital space have access to the same range of remedies as those harmed in physical space. It also reduces fragmentation in national law, and sends a clear signal to the public that the Jamaican government recognizes the severity of cyber harm and is committed to taking decisive action to address it. Most importantly, the amendment strengthens offender accountability: perpetrators will now face both criminal sanctions and court-ordered restitution to victims where appropriate, creating a balanced justice system that combines punishment with remediation.
The push for reform comes amid official data that highlights the growing scale of cybercrime in Jamaica. Data shared with the joint select committee by the Jamaica Cyber Incident Response Team shows that in 2020 alone, 136 separate cyber incidents were reported across the country. The three most common categories were abusive online content, identity impersonation, and non-consensual intimate image sharing (often called revenge pornography). More than 70 percent of these cases were deemed prosecutable and referred to the Counter-Terrorism and Organised Crime Investigation Branch, but Gayle noted that a large share never moved forward to formal prosecution — exposing a critical gap between initial reporting, investigation, and final judicial outcomes.
Additional caseload data from the Office of the Director of Public Prosecutions reinforces this challenge. Between 2017 and 2020, Jamaican parish courts maintained a persistent, fluctuating backlog of cybercrime cases. In 2017, there were 65 active cases, 6 inactive cases, and 26 cases finalized. In 2018, 61 cases remained active, 2 were inactive, and only 12 were completed. Between 2019 and 2020, 83 new cybercrime cases were filed, 103 were disposed of, and 107 remained pending. Gayle called these numbers clear evidence that Jamaica’s current justice system is under strain, and needs reforms to speed up case resolution and improve throughput.
The reform process also identified a hidden transparency gap in cases of cyber fraud targeting financial institutions. Gayle highlighted a recent real-world incident where fraudsters ran a phishing campaign targeting a Jamaican bank, using deceptive emails and phone calls to steal customer banking credentials. While existing laws technically covered this conduct, Gayle noted that most financial institutions handle cyber fraud incidents internally rather than reporting them publicly. This lack of public data limits the ability of policymakers and law enforcement to accurately measure the full scale of cyber fraud and track how many cases result in successful prosecution.
To address this gap, the joint select committee recommended a new reporting requirement: financial institutions will be required to share aggregated, anonymized data on cyber fraud incidents with the Bank of Jamaica. The committee further recommended that both the Bank of Jamaica and the Financial Services Commission collect and publish this aggregated data, making it accessible to both law enforcement and the general public. Gayle said this step will dramatically improve transparency, help policymakers craft more targeted future reforms, and strengthen Jamaica’s overall national cybercrime response strategy.
On the topic of malicious online communication, which Gayle described as a rapidly growing problem, the committee balanced free expression protections with the need to protect individuals from harm. “While the right to free expression must always be preserved, the Committee was clear that there must be a firm boundary where speech becomes harmful, particularly when it threatens an individual’s reputation, livelihood, or safety,” he said.