Mass Surveillance Without Data Protection

The DNS Security Operations Centre will monitor "domain resolutions, traffic, and logs" for all .gh domains, but the provision contains no privacy safeguards, data minimization principles, or independent oversight. Combined with mandatory .gh domain use (19), this creates a system where all legally registered entities must route their digital operations through government-monitored infrastructure. The provision violates GDPR principles (no data minimization, purpose limitation, or transparency), ICCPR Article 17 (arbitrary interference with privacy), and OECD privacy guidelines by establishing mass surveillance without specifying what data is collected, how long it's retained, who can access it, or whether judicial authorization is required.