Thailand: Implemented Cybersecurity Act (B.E. 2562) including data protection authority governance

On 28 May 2019, the Cybersecurity Act (B.E. 2562) entered into force. The Act establishes the National Cyber Security Committee (NCSC) and the Cyber Security Supervisory Committee (CSSC) as key bodies responsible for cybersecurity in Thailand. The NCSC, chaired by the Prime Minister and comprising various ex officio members and appointed experts, is tasked with formulating policies, setting standards, coordinating with domestic and international entities, and overseeing the implementation of cybersecurity policies and plans. The CSSC, chaired by the Minister of Digital Economy and Society, assists the NCSC in executing these policies and is specifically involved in monitoring cybersecurity operations, prescribing codes of practice and standards, and handling critical cyber threats, including taking necessary actions and in serious cases, obtaining court orders. The Office of the National Cyber Security Committee provides administrative support to both committees and facilitates coordination, implementation, and monitoring of cybersecurity measures across sectors.