Last review date: January 24, 2025

☒        applies to organizations located in the jurisdiction
☒        no express territorial scope, but would require some nexus to the jurisdiction
☒        other

The Israeli privacy legislation is silent with respect to its territorial scope.

In a draft statement of opinion issued by the PPA on 4 July 2024 for public comments with respect to the interpretation of certain provisions of Israeli cross-border transfer regulations, the PPA noted that there may be databases abroad which may be subject to the entire provisions of Israeli law, regardless of the fact that their controllers are not incorporated/registered in Israel – for example, due to their vast influence on Israeli data subjects.

To date, there are no published cases in which sanctions were imposed by the PPA with respect to multinationals offering goods/services to Israelis or otherwise performing data processing activities on a cross-border basis.

This matter is still evolving, and developments may occur in the near future.