As a firm we have a strong commitment to our corporate sustainability principles, and this year we joined the United Nations Global Compact, an initiative dedicated to promoting responsible business practices and advancing the United Nations Sustainable Development Goals (SDGs). Our goals include Education, gender equality, climate action, justice for all, and sustainable partnerships. You can learn about our actions plans and targets, here.
In this edition, we feature an entire section dedicated to COP28 where we share insights and intelligence through conversations we have had with leading experts from across the region. This includes articles and podcasts that delve into the most pertinent topics, such as COP28’s call to action for corporates, ESG reporting, and the UAE’s Net Zero vision.
Beyond the focus on Energy and Climate we feature articles covering important updates that look into a variety of areas, such as UAE consumer protection law, an overview of the Federal Civil Family Law for Non-Muslim Foreigners in the UAE, and from Kuwait we discuss the management of companies. As always, in our final section we continue to share with you real life judgements that provide context to the legal landscape in the region.Read the full edition
Egypt’s Personal Data Protection Law was passed on 13 July 2020 and published on 15 July 2020. It will come into force on 14 October 2020, and the Executive Regulations are expected by 14 April 2021.
The Personal Data Protection Law introduces a variety of compliance requirements, as well as some significant criminal penalties.
The Personal Data Protection Law defines “Personal Data” as any data related to an identified natural person, or to a natural person identifiable, directly or indirectly, by reference to any other data, such as name, voice, picture, identification number, online identifier, or any data that identifies psychological, health, economic, cultural or social identity. “Sensitive Personal Data” is defined as Personal Data that discloses psychological, mental, physical or genetic health, biometric data, financial data, religious beliefs, political opinions or security situation; and Personal Data relating to children is deemed to be Sensitive Personal Data.
The Personal Data Protection Law prohibits the processing of personal data except with the consent of the data subject, or where otherwise permitted by law.
Data subjects have various rights under the Personal Data Protection Law. These include:
The Personal Data Protection Law contemplates that entities processing personal data will be required to appoint a Data Protection Officer. Further details as to this requirement can be expected in the Executive Regulations.
Subject to certain exceptions, the Personal Data Protection Law contains a general prohibition on the transfer of personal data to recipients located outside Egypt except with the permission of the (yet to be established) Egyptian Data Protection Centre and where the level of protection provided is not less than that provided in Egypt pursuant to the Personal Data Protection Law. The Executive Regulations will specify the policies, standards, guidelines, and rules necessary for transferring personal data across borders.
The Personal Data Protection Law provides specific requirements applicable to digital marketing.
The Personal Data Protection Law provides for a variety of criminal offences, with a range of penalties – including fines and imprisonment. These include:
Corporate clients processing personal data in Egypt, or outside Egypt in respect of individuals in Egypt, should familiarise themselves with the requirements and ensure compliance as soon as possible.