Data Privacy & Data Protection Archives

Saudi Arabia: Next steps for compliance with Personal Data Protection Law as one-Hijri-year grace period expiry approaches

May 17, 2024 By Zahi Younes, Maher Ghalloussi and Lucrezia Lorenzini 9 Mins Read

In brief As you may know, on 14 September 2023, the Personal Data Protection Law promulgated by Royal Decree No. M/19, dated 09/02/1443H, amended pursuant to Royal Decree No. M/148, dated 05/09/1444H (the “PDPL”), officially entered into force in the Kingdom of Saudi Arabia. While the PDPL came into force on 14 September 2023, organisations were afforded a further 12 Hijri months’ period from the date of entry into force to bring themselves into compliance…

UAE: Central Bank Digital Currency introduced, paves the way for the recognition of digital currencies

December 14, 2023 By Mazen Boustany and Samir Safar-Aly, LL.M. 3 Mins Read

On 2 October 2023, the UAE issued Federal Law No. 54 of 2023, which amended Federal Law No. 14 of 2018 on the Central Bank and the Organization of Financial Institutions and Financial Activities (the “Central Bank Law”) and changed the definition of currency to include a “National Digital Currency”. The amendment to the Central Bank Law was published in the Official Gazette on 31 October 2023. Article 57.4 of the Central Bank Law has…

Saudi Arabia: Data and Artificial Intelligence Authority Reveals AI Ethics Principles 2.0

November 7, 2023 By Zahi Younes, Lucrezia Lorenzini and Maher Ghalloussi 4 Mins Read

In brief In September 2023, the Saudi Authority for Data and Artificial Intelligence (SDAIA) published the “AI Ethics Principles”, intending to support the Kingdom’s effort towards achieving its vision and national strategies related to adopting AI technology. SDAIA has analyzed global practices and developed the AI Ethics Principles to limit the negative implications of AI systems, help companies ensure the responsible use of those systems and protect the privacy of individuals and their rights concerning…

Saudi Arabia: Draft Global Digital Content Safe Harbor Law

October 17, 2023 By Zahi Younes, Lucrezia Lorenzini and Maher Ghalloussi 3 Mins Read

On 13 September 2023, the Communication Space & Technology Commission of Saudi Arabia (CST) proposed a draft law on Global Digital Content Safe Harbor (please find the draft law here). The proposed law is aimed at providing a legal framework for intermediary service providers hosting and transiting global digital content in the Kingdom of Saudi Arabia (KSA) in a way that ensures no objection, deletion or modification of content hosted in and accessible within the…

UAE: Amendments to the DIFC Data Protection Law enacted

September 15, 2023 By Lucrezia Lorenzini, Maher Ghalloussi, Andrea Mezzetti and Rosanne Brennan 3 Mins Read

The law addresses for the first time the processing of personal data via autonomous and semi-autonomous systems In brief On 7 September 2023, the Dubai International Financial Centre (DIFC) enacted amendments to Data Protection Law No. 5 of 2020 (“DIFC Data Protection Law”) which came into force starting on 1 September 2023. These amendments were preceded by a 30-day public consultation launched by the DIFC in April 2023. The amendments are aimed at enhancing the…