Egypt: Supreme Council of Digital Society adopted Cloud First Policy (2024) including cybersecurity requirements

On 13 March 2024, the Supreme Council of Digital Society adopted the “Cloud First Policy.” The policy mandates that CSPs must establish necessary technical and organisational procedures to manage security risks through the adoption of security standards certificates issued by the Egyptian Supreme Cybersecurity Council (ESCC). The policy also requires the development of encryption foundations, including full control over encryption keys, and agreement on contractual terms with CSPs to ensure data security and recovery mechanisms in case of incidents or breaches.