Skip to main content
NOPE
In Effect Law Data Protection Context Relevance

Kuwait Cybercrime Law

Cybercrime Law No. 63 of 2015

Kuwait's cybercrime law criminalizing personal data breaches with 3 years imprisonment and fines of KWD 3,000-10,000.

Jurisdiction

Kuwait

KW

Enacted

Jul 1, 2015

Effective

Jul 1, 2015

Enforcement

Ministry of Interior (Kuwait)

Who Must Comply

This law applies to:

  • Entities processing personal data in Kuwait
  • Information system operators
  • Online service providers

Capability triggers:

dataProcessing (required)
Required Increases applicability

Who bears obligations:

Operator

Safety Provisions

  • Personal data breach criminalized (3 years imprisonment)
  • Fines KWD 3,000-10,000 for data violations
  • Unauthorized access penalties
  • Electronic fraud protections

Enforcement

Enforced by

Ministry of Interior (Kuwait)

Penalties

KWD 10K; criminal (up to 3yr)

Max fine: $10,000
Criminal liability(up to 3y)

Up to 3 years imprisonment and/or fines KWD 3,000-10,000

Quick Facts

Binding
Yes
Mental Health Focus
Yes
Child Safety Focus
No
Algorithmic Scope
No

Why It Matters

Kuwait's criminalization of data breaches with imprisonment creates high-stakes liability for AI chatbot security incidents involving Kuwaiti users.

What You Need to Comply

Strong cybersecurity measures to avoid criminal penalties for data breaches

NOPE can help

Cite This

APA

Kuwait. (2015). Cybercrime Law No. 63 of 2015. Retrieved from https://nope.net/regs/kw-cybercrime-63-2015

BibTeX

@misc{kw_cybercrime_63_2015,
  title = {Cybercrime Law No. 63 of 2015},
  author = {Kuwait},
  year = {2015},
  url = {https://nope.net/regs/kw-cybercrime-63-2015}
}

Related Regulations

In Effect KW Data Protection

Kuwait Decision 26/2024

Kuwait's data privacy regulation requiring guardian consent for minors under 18, 72-hour breach notification, and automated decision restrictions.

In Effect IL Data Protection

Israel Privacy Amendment 13

Israel's most significant privacy reform in 40 years, explicitly covering AI systems. Requires Data Protection Officers (DPOs) for entities processing sensitive data at scale, mandates Data Protection Impact Assessments (DPIAs) before AI deployment, and enhances Protection of Privacy Authority enforcement powers. One of first data protection laws to explicitly require DPIAs before AI development or deployment.

In Effect JO Data Protection

Jordan PDPL

Jordan's data protection law with medical data processing exceptions, data portability rights, and oversight including security services.

In Effect EG AI Safety

Egypt AI Strategy 2025

Ambitious national strategy positioning Egypt as regional AI hub for Africa and Middle East. Targets 7.7% ICT sector GDP contribution by 2030, training 30,000 AI specialists, establishing 250 AI companies. Built on six strategic pillars: governance, infrastructure, technology, data, ecosystem, and talent. Accompanied by Egyptian Charter for Responsible AI (April 2023) with ethics principles.

In Effect QA AI Safety

Qatar QCB AI Guidelines

Binding AI governance requirements for Qatar's financial sector. Mandates board-level accountability, risk assessments, human-in-the-loop for high-impact decisions, and prior QCB approval for high-risk AI systems.

In Effect AE Online Safety

UAE Media Law

Comprehensive media regulation requiring licensing for all digital platforms, social media operations, and influencers. 20 binding content standards with significant penalties.

Back to all regulations Check if this applies to you