-
The Data Use and Access Act (DUAA) Compliance Risks and Checklist
There is a lot of noise around the Data (Use and Access) Act (DUAA) at the moment. New requirements. More guidance. Plenty of “what’s changed” summaries. But the real shift is not what’s been added. It is what is now being expected. Because DUAA does not completely change the rules. It changes how closely those…
-
Data Privacy Day: Risks to Avoid in 2026
Most people have no idea that this day exists. There is no countdown, fireworks, or public holiday. There will be, however, cake in my office, which feels like a reasonable and proportionate response from a DPO. It falls on 28 January every year, and not because of GDPR, fines, or cookie banners (we are all…
-
Posted in:
Egypt’s PDPL | 2026 Updates & Guide
Egypt’s Personal Data Protection Law (PDPL) is the country’s primary framework governing how organisations collect, use, store, transfer, and protect personal data relating to individuals in Egypt. It applies to organisations operating inside Egypt, as well as organisations outside Egypt that process the personal data of individuals located there. At its core, Egypt’s PDPL is…
-
Posted in:
UAE’s Child Digital Safety Law: 2026 Guide for Organisations
From 1 January 2026, it is essential organisations offering online services to users in the UAE, pay closer attention to how children may use those services. This follows the introduction of Federal Decree-Law No. 26 of 2025 on Child Digital Safety, which makes it clear that child digital safety is an organisational responsibility, not something…
-
Posted in:
Securing a VARA Licence in Dubai
For organisations seeking a VARA licence in Dubai, compliance is not limited to financial or technical readiness. It is now a critical requirement for any business operating in Dubai’s virtual assets ecosystem. Data protection, governance, and DPO independence are now core licensing requirements, particularly for firms operating across the UAE, Saudi Arabia, and the wider…
-
Posted in:
A DPO’s Guide to Password Protection
On World Password Day 2025, observed on May 1st, let’s reflect on one of our most basic yet crucial lines of defence…..the password protection. And let’s be honest, we’ve all been there… “Password123”, “pet’s name” or even default credentials such as “admin.” These practices significantly weaken your security posture and expose your organisation’s sensitive systems…