Global Data and Cyber Handbook

Egypt

Select a Topic
Start Comparison
Regulators, Enforcement Priorities and Penalties
Jump to
Regulators, Enforcement Priorities and Penalties Start Comparison
Who are the main data privacy, non-personal data and/or cybersecurity regulator(s) in the jurisdiction?

Last review date: January 2025

The Personal Data Protection Law (“PDPL”) provides for the establishment of a new public body to be known as the Personal Data Protection Center (“PDPC”) that will be affiliated to the Ministry of Telecommunications & Information Technology with a board of directors chaired by the Minister of Telecommunications & Information Technology. The board will also include representatives from the Ministry of Defense, Ministry of Interior, General Intelligence Service, Administrative Control Authority, IT Industry Development Agency, and National Telecoms Regulatory Authority (“NTRA”). As of the end of 2024, the PDPC has not commenced operational activities.

The police and national security agencies (including the Ministry of Defense, Ministry of Interior, General Intelligence Service, and Administrative Control Authority) are responsible for investigating and enforcing offences under the Penal Code and Cybercrimes Law.

The NTRA and other sectoral regulators regulate data and cyber regulations within their relevant industry sector.

How active is each of the regulator(s)?

Last review date: January 2025

Very active

While the PDPC is not yet operational (and the PDPL is not being actively enforced), the protection of privacy and security of information is an important issue for the police and national security agencies.

What are each of the regulator's anticipated enforcement priorities for the next 12 months?

Last review date: January 2025

National security agencies will remain focused on the protection of state interests and security.

There is no publicly available information as to when the PDPC will become operational or the executive regulations (or any guidance) under the PDPL will be issued.

What trends are you seeing in regulatory investigations relating to data & cyber?

Last review date: January 2025

Regulatory investigations or direct enforcement activity by data or cyber regulators are:

         Increasing

Class actions/group actions under data or cyber regulation are:

         Not available in the jurisdiction

The Ministry of Interior has been investigating cyber security issues, either for national security threats or based on reports filed by third parties. The National Telecommunication Regulatory Authority has been actively issuing taking down requests.

What are the potential penalties/remedies for non-compliance with the key data and cybersecurity laws in the jurisdiction?

Last review date: January 2025

There are:

  administrative remedies /civil penalties applied by regulators and law enforcement

  criminal penalties from regulators and law enforcement

  private remedies

If data subjects have private remedies, what form can these remedies take?

Last review date: January 2025

        individual personal actions

{{ $store.state.loadingScreen.message }} ...