Algeria: Law no. 25-11 on data protection, including data protection regulation, entered into force

On 24 July 2025, Law no. 25-11 amending Data Protection Law no. 18-07, including data protection regulation entered into force. The Law establishes a framework for the processing of personal data belonging to natural persons. It defines personal data as any information relating to an identified or identifiable natural person, including biometric data and physical, physiological, or behavioural characteristics that permit unique identification of that person. The Law prohibits unlawful processing of such data, including unauthorised disclosure, modification, destruction, or access, and requires that personal data be processed only through lawful means. Data controllers must ensure that personal data cannot be linked to a specific individual without the use of additional information, and that processing activities comply with the requirements of transparency and accountability established under the Law.