Argentina: Personal Data Protection Bill (S-0644/2025) including cybersecurity regulation was introduced to Senate

On 5 May 2025, the Personal Data Protection Bill (S-0644/2025) was introduced to the Argentine Senate. The Bill would establish obligations on data controllers and processors to implement technical and organisational measures to ensure the security of personal data. These measures would be required to protect the confidentiality, integrity, and availability of data, taking into account the nature of processing and associated risks. The Bill would also require the development of incident response mechanisms, the ability to restore the availability and access to personal data in a timely manner following a physical or technical incident, and the regular testing and evaluation of security measures. Additionally, controllers would be required to notify the supervisory authority and, in some cases, affected data subjects in the event of a personal data breach.