Personal Data Protection Law No. 151
Egypt
2020
Privacy
Overview
Key Obligations
- Obtain explicit consent before collecting or processing personal data
- Process data for specified, legitimate, and clearly defined purposes
- Grant individuals rights to access, correct, erase, or object to data processing
- Apply enhanced safeguards for sensitive personal data
- Restrict cross-border data transfers unless the receiving country provides adequate protection
- Implement technical and organizational security measures
- Comply with future executive regulations issued by the Personal Data Protection Center
Stay ahead of risk with Signzy
Explore tools that help you onboard, monitor, and verify with confidence
Data Breach
Track any instance of user or business data leaks to stay one step ahead of fraud and malpractices.
One Touch KYC
Launch global KYC flows with built-in document OCR, liveness checks, deepfake detection, and AML, all through a single, customizable dashboard.
MENA API Marketplace
A comprehensive API marketplace for the Middle East and North Africa, offering localized verification and compliance solutions.
Related Regulations
FAQ
Is the Personal Data Protection Center active in Egypt?
As of 2025, it has not been fully operationalized. Enforcement and implementation await executive regulations.
Does the law apply to companies outside Egypt?
Yes, if they process data related to individuals located in Egypt.
Are data transfers outside Egypt allowed?
Yes, but only to jurisdictions that provide adequate data protection or with regulatory approval.
What happens if companies violate this law?
Penalties may include administrative sanctions, suspension of data processing activities, or criminal fines.