Egypt: Personal Data Protection Center released Electronic Direct Marketing Guidelines

On 26 January 2026, the Personal Data Protection Center (PDPC) released the Electronic Direct Marketing Guidelines (Version 1.1). The Guidelines clarify obligations under Chapter 8 of the Personal Data Protection Law enacted by Law No. 151 of the year 2020 and the Executive Regulations issued by Decision No. 816 of 2025. The Guidelines apply to Electronic Direct Marketing Communications that are electronic and direct communications targeted at specific individuals to promote goods, services, or commercial, political, social, or charitable requests. Purely customer-service-related communications without promotional content are excluded. The Guidelines define the roles of the creator, which determines the purposes and means of Electronic Direct Marketing, and the sender, which delivers the communication on behalf of the creator. Creators must obtain an “EDM for Self” permit, obtain valid consent, honour opt out requests, and maintain suppression lists. Senders must obtain an “EDM for others” permit, ensure valid consent, refrain from unauthorised disclosure, and retain consent records for three years. The Guidelines require all Electronic Direct Marketing Communications to include the identity and contact details of the sender, the identity of the creator, the stated marketing purpose, and a clear, simple, and free opt out mechanism, and recognise a transitional “soft opt in” mechanism for existing customers during the one-year compliance grace period.