Saudi Arabia: Entry into force of Implementing Regulation of the Personal Data Protection Law including cybersecurity regulation

Entry into force of Implementing Regulation of the Personal Data Protection Law including cybersecurity regulation

On 14 September 2024, the Implementing Regulation of the Personal Data Protection Law (PDPL) became effective alongside the PDPL itself. It stipulates that data controllers must implement comprehensive security measures to safeguard personal data an…

Scope

Policy Area

Data governance

Policy Instrument

Cybersecurity regulation

Regulated Economic Activity

cross-cutting

Implementation Level

national

Government Branch

executive

Government Body

central government

Complete timeline of this policy change

Hide details

2023-07-11

in consultation

On 11 July 2023, the Authority for Data and Artificial Intelligence published the draft Implementin…

2023-07-31

processing consultation

On 31 July 2023, the Authority for Data and Artificial Intelligence closed the public consultation …

2023-09-07

adopted

On 7 September 2023, the final version of the Implementing Regulation of the Personal Data Protecti…

2024-09-14

in force

On 14 September 2024, the Implementing Regulation of the Personal Data Protection Law (PDPL) became…

Description

Entry into force of Implementing Regulation of the Personal Data Protection Law including cybersecurity regulation

Scope

Complete timeline of this policy change