Egypt: Supreme Council of Digital Society's Cloud First Policy (2024) including cybersecurity requirements entered into force

Supreme Council of Digital Society's Cloud First Policy (2024) including cybersecurity requirements entered into force

On 22 August 2024, the Supreme Council of Digital Society's Cloud First Policy (2024) including cybersecurity requirements entered into force. The policy mandates that cloud service providers (CSPs) must establish necessary technical and organisational procedures to manage security risks through the adoption of security standards certificates issued by the Egyptian Supreme Cybersecurity Council (ESCC). The policy also requires the development of encryption foundations, including full control over encryption keys, and agreement on contractual terms with CSPs to ensure data security and recovery mechanisms in case of incidents or breaches.

Original source

Scope

Policy Area

Data governance

Policy Instrument

Cybersecurity regulation

Regulated Economic Activity

infrastructure provider: cloud computing, storage and databases

Implementation Level

national

Government Branch

executive

Government Body

central government

Complete timeline of this policy change

Hide details

2024-03-13

adopted

On 13 March 2024, the Supreme Council of Digital Society adopted the “Cloud First Policy.” The poli…

2024-08-22

in force

On 22 August 2024, the Supreme Council of Digital Society's Cloud First Policy (2024) including cyb…

Description

Supreme Council of Digital Society's Cloud First Policy (2024) including cybersecurity requirements entered into force

Scope

Complete timeline of this policy change