Skip to main content
NOPE
In Effect Law Data Protection Context Relevance PRA

Dominican Republic Law 172-13

Law 172-13 on the Protection of Personal Data

Dominican Republic's data protection law establishing Habeas Data remedy but lacking dedicated supervisory authority.

Jurisdiction

Dominican Republic

DO

Enacted

Dec 13, 2013

Effective

Jan 13, 2014

Enforcement

Courts (no dedicated DPA)

No dedicated supervisory authority - enforcement through courts

Who Must Comply

This law applies to:

  • Data controllers and processors in Dominican Republic
  • Entities processing data of Dominican residents
  • Public and private sector

Capability triggers:

dataProcessing (required)
Required Increases applicability

Who bears obligations:

Data Controller

Safety Provisions

  • Habeas Data constitutional remedy available
  • Right to access, rectification, and deletion
  • Consent requirements for data processing
  • Security measures for personal data

Enforcement

Enforced by

Courts (no dedicated DPA)

Penalties

Civil remedies through Habeas Data action

Private Right of Action

Individuals can sue directly without waiting for regulatory action. This significantly increases liability exposure.

Quick Facts

Binding
Yes
Mental Health Focus
No
Child Safety Focus
No
Algorithmic Scope
No
Private Action
Yes

Why It Matters

Dominican Republic's Habeas Data remedy provides constitutional-level data protection enforcement pathway for AI chatbot users.

Cite This

APA

Dominican Republic. (2013). Law 172-13 on the Protection of Personal Data. Retrieved from https://nope.net/regs/do-law-172-13

BibTeX

@misc{do_law_172_13,
  title = {Law 172-13 on the Protection of Personal Data},
  author = {Dominican Republic},
  year = {2013},
  url = {https://nope.net/regs/do-law-172-13}
}

Related Regulations

In Effect UY Data Protection

Uruguay Law 18.331

Uruguay's comprehensive data protection law with EU adequacy status. Establishes automated decision-making rights and requires explicit consent for sensitive data.

In Effect CARICOM Data Protection

CARICOM CCSCAP 2025

CARICOM's 2025 regional cyber security framework establishing digital safety culture and coordinated incident response across 18 member states.

In Effect CL Data Protection

Chile Cybersecurity Law

First cybersecurity framework law in Latin America (Law 21,663 promulgated Mar 26, 2024; published Apr 8, 2024). Creates National Cybersecurity Agency (ANCI), mandatory incident reporting, and encryption rights.

In Effect AR AI Safety

Argentina AI Strategy

Non-binding AI governance guidelines establishing principles for responsible AI use. Argentina positioning as AI innovation hub with limited regulatory barriers. Emphasizes transparency, accountability, and human oversight. Multiple legislative proposals pending inspired by EU AI Act, aiming to establish formal regulatory authority.

Failed CA AI Safety

AIDA

Would have regulated high-impact AI systems with potential penalties up to $25M or 5% global revenue. Part of Bill C-27 which died when Parliament ended.

In Effect PE AI Safety

Peru AI Regulations

Peru's first comprehensive AI regulatory framework, inspired by EU AI Act. Establishes three-tier risk-based approach: prohibited uses, high-risk systems (including healthcare), and low-risk/acceptable AI. First general AI regulation in Latin America. Requires human oversight, transparency, and risk assessments for high-risk AI including healthcare applications.

Back to all regulations Check if this applies to you