Digital Policy Alert logo

Saudi Arabia: Updated Cloud Cybersecurity Controls including operational licensing requirement

Policy overview

Description

Updated Cloud Cybersecurity Controls including operational licensing requirement

On 3 February 2021, the National Cybersecurity Authority (NCA) issued the latest update to the Cloud Cybersecurity Controls (CCC) as a continuation of the previously issued Essential Cybersecurity Controls (ECC). The CCC regulates cloud service providers (CSPs) and cloud service tenants (CSTs). CSTs may only contract with licensed cloud service providers. Additionally, any telecommunication infrastructure may only be used from telecommunication operators that are licensed in the Kingdom.

Original source

Scope

Policy Area
Authorisation, registration and licensing
Policy Instrument
Operational license requirement
Regulated Economic Activity
infrastructure provider: cloud computing, storage and databases
Implementation Level
national
Government Branch
executive
Government Body
other regulatory body

Complete timeline of this policy change

Hide details
2021-02-03
adopted

On 3 February 2021, the National Cybersecurity Authority (NCA) issued the latest update to the Clou…

We use cookies and other technologies to perform analytics on our website. By opting in, you consent to the use by us and our third-party partners of cookies and data gathered from your use of our platform. See our Privacy Policy to learn more about the use of data and your rights.