Skip to main content
NOPE
In Effect Law Data Protection

Egypt PDPL

Personal Data Protection Law (Law No. 151 of 2020)

Comprehensive data protection law regulating personal data processing in Egypt. Requires parental consent for children under 15, mandatory Data Protection Officer appointment, and 72-hour breach notification.

Jurisdiction

Egypt

Enacted

Jul 13, 2020

Effective

Nov 1, 2020

Enforcement

Data Protection Center

Enforcement begins November 2026 after 18-month grace period

Egypt PDPL Analysis (Lexology)

Why It Matters

Egypt is Africa's third-largest economy. November 2026 deadline creates compliance obligation for companies serving Egyptian users, particularly for platforms used by minors.

Recent Developments

November 2026 enforcement deadline approaching after 18-month grace period

At a Glance

Applies to

AI CompanionMental Health AppGeneral Chatbot

Who Must Comply

  • Public and private entities processing personal data in Egypt
  • Entities outside Egypt offering services to Egyptian data subjects
  • Automated decision-making systems processing Egyptian personal data

Obligations fall on:

Safety Provisions

  • Children under 15 require guardian consent for data processing
  • Mandatory 72-hour breach notification to Data Protection Center
  • Data Protection Officer required for entities processing personal data
  • Security measures proportionate to risk
  • Cross-border transfer restrictions

Compliance & Enforcement

Key Dates

Nov 1, 2026

Full enforcement and compliance deadline

Penalties

EGP 3M; criminal liability

Criminal liability

View on map

Egypt

Focus Areas

Mental health & crisis
Child safety
Algorithmic accountability

Cite This

APA

Egypt. (2020). Personal Data Protection Law (Law No. 151 of 2020).

Related Regulations

In Effect ZM

Zambia DPA

Zambia's comprehensive data protection law with special protections for vulnerable persons and DPIA requirements for high-risk processing.

In Effect EG

Egypt AI Strategy 2025

Ambitious national strategy positioning Egypt as regional AI hub for Africa and Middle East. Targets 7.7% ICT sector GDP contribution by 2030, training 30,000 AI specialists, establishing 250 AI companies. Built on six strategic pillars: governance, infrastructure, technology, data, ecosystem, and talent. Accompanied by Egyptian Charter for Responsible AI (April 2023) with ethics principles.

In Effect BW

Botswana DPA

Botswana's modernized data protection law requiring Data Protection Impact Assessment and establishing age 16 for consent.

In Effect SC

Seychelles DPA

Seychelles' modern data protection law requiring DPO for large-scale processing and recognizing Cross-Border Privacy Rules certification.

In Effect RW

Rwanda AI Policy

First African country to adopt comprehensive national AI policy. Establishes Responsible AI Office (RAIO) under MINICT. Implements RURA ethical guidelines covering beneficence, non-maleficence, autonomy, justice, explicability, transparency. Non-binding framework.

In Effect US-CA

CA SB 524

Requires law enforcement agencies to disclose when AI is used to write or assist in creating official police reports, maintain audit trails, and preserve AI-generated first drafts.

All regulations Check if this applies to you

Last updated February 17, 2026. Verify against primary sources before relying on this information.