As data protection laws evolve across the Middle East, UAE organisations must prepare for significant updates that could affect their operations. Saudi Arabia’s Personal Data Protection Law (PDPL) is already in effect as of 14th September 2023. Companies have until 13th September 2024 to fully conform to the law. With only one month left, now is the time to ensure your organisation meets the required standards.
Understanding UAE PDPL
The PDPL was initially set to be enforced in March 2022 but was delayed to allow time for revisions. The law, similar to the GDPR, applies not only to Saudi-based organisations but also to those outside Saudi Arabia that handle data related to individuals in the Kingdom.
This development is part of a broader regional trend, with many Middle Eastern countries, including the UAE, introducing or updating their data protection laws. It is crucial for organisations in the UAE to stay informed and ensure compliance with these regulations across different countries.
Data Protection in the UAE
The UAE has made significant progress in establishing a comprehensive data protection framework. The newly enacted federal data protection law, applicable across all emirates, complements existing regulations. It includes the Dubai International Financial Centre (DIFC) Data Protection Law and the Abu Dhabi Global Market (ADGM) Data Protection Regulations. Bahrain, Oman, and Qatar have also implemented stringent data protection laws.
These changes highlight the growing importance of data privacy and security in the region, creating both challenges and opportunities for organisations.
Steps for UAE PDPL Compliance
With the 13th of September 2024 deadline just around the corner, it’s crucial to act quickly to meet the PDPL’s requirements. Here’s a streamlined action plan to help your organisation get on track:
TenIntelligence Thoughts
With less than one month left until the 13th September 2024 deadline, it’s critical to act now to ensure compliance with the PDPL. By following these steps, your organisation can meet the requirements and strengthen its data protection practices. There’s still time to conform—take action today to stay ahead of these important changes.
If you need assistance, especially in appointing or consulting with a Data Protection Officer, TenIntelligence is here to help. Contact our Data Protection Officer, Lynsey Hanson, at lynsey.hanson@tenintel.com for guidance and resources tailored to your needs.
Written by
Lynsey Hanson