Last review date: 18 December 2024

☒ Yes

☒  a) data localization / data residency laws that mandate retention of personal data or a copy thereof in the local jurisdiction (include whether copies or the original data may be also be stored outside of the jurisdiction):

In the context of electronic payment processing and for parties operating in or providing services to customers in the health sector.

☒  b) other laws that may require the retention and storage of personal data (including, for example, where such data is part of another type of record or dataset) in the local jurisdiction or otherwise prohibit the transfer or disclosure of the personal data outside of the local jurisdiction.

Last review date: 18 December 2024

☒         Obligation for public sector organizations to share or make accessible non-personal data

The Dubai Data Law includes data sharing and exchange commitments, including reference to the Dubai government’s Open Data Committee. Other Emirates (including Abu Dhabi and Ajman) and the federal government of the UAE also have open data portals and programs falling broadly under the TDRA’s Smart Data Strategy and National Smart Data Framework.

☒         Obligation for private organizations to share or make accessible other non-personal data

In relation to data relating to the Emirate of Dubai, the Dubai Data Law may be extended to specified private sector organizations upon a determination by Digital Dubai.

Last review date: 18 December 2024

☒         Obligation to share data on request

☒         Obligation to share data proactively

☒         Obligation to (re)design products or services to facilitate data accessibility

☒         Obligation to standardize products or services to facilitate data portability or interoperability