In Effect Law Data Protection Context Relevance

Nicaragua Law 787

Law 787 on the Protection of Personal Data

Nicaragua's data protection law enacted but with limited enforcement due to non-operational supervisory authority (DIPRODAP).

Jurisdiction

Nicaragua

Enacted

Mar 29, 2012

Effective

Mar 29, 2012

Enforcement

Dirección de Protección de Datos Personales (DIPRODAP) - not operational

Limited enforcement - DIPRODAP not operational

What It Requires

Transparency

Must disclose AI nature, data practices, or algorithmic decisions

User Rights

Must honor access, correction, and deletion requests

Who Must Comply

This law applies to:

• Data controllers and processors in Nicaragua
• Entities processing data of Nicaraguan residents

Capability triggers:

● dataProcessing (required)

● Required ◐ Increases applicability

Who bears obligations:

Data Controller

Safety Provisions

• Data subject rights to access, rectification, deletion
• Consent requirements for data processing
• Security measures for personal data
• Cross-border transfer restrictions

Enforcement

Enforced by

Dirección de Protección de Datos Personales (DIPRODAP) - not operational

Penalties

Enforcement limited due to non-operational authority

Primary Source

OneTrust DataGuidance (opens in new tab)

https://www.dataguidance.com/notes/nicaragua-data-protection-overview

Quick Facts

Binding: Yes
Mental Health Focus: No
Child Safety Focus: No
Algorithmic Scope: No

Why It Matters

Nicaragua's law is on the books but DIPRODAP's non-operational status creates regulatory uncertainty for AI chatbot compliance.

Cite This

APA

Nicaragua. (2012). Law 787 on the Protection of Personal Data. Retrieved from https://nope.net/regs/ni-law-787

BibTeX

@misc{ni_law_787,
  title = {Law 787 on the Protection of Personal Data},
  author = {Nicaragua},
  year = {2012},
  url = {https://nope.net/regs/ni-law-787}
}

Related Regulations

In Effect CARICOM • Data Protection

CARICOM CCSCAP 2025

CARICOM's 2025 regional cyber security framework establishing digital safety culture and coordinated incident response across 18 member states.

In Effect CL • Data Protection

First cybersecurity framework law in Latin America (Law 21,663 promulgated Mar 26, 2024; published Apr 8, 2024). Creates National Cybersecurity Agency (ANCI), mandatory incident reporting, and encryption rights.

In Effect PR • Data Protection

Puerto Rico Cybersecurity Act

Puerto Rico's comprehensive cybersecurity law establishing cybersecurity framework for public and private sectors, complementing Act 111-2005 breach notification.

In Effect AR • AI Safety

Argentina AI Strategy

Non-binding AI governance guidelines establishing principles for responsible AI use. Argentina positioning as AI innovation hub with limited regulatory barriers. Emphasizes transparency, accountability, and human oversight. Multiple legislative proposals pending inspired by EU AI Act, aiming to establish formal regulatory authority.

Failed CA • AI Safety

AIDA

Would have regulated high-impact AI systems with potential penalties up to $25M or 5% global revenue. Part of Bill C-27 which died when Parliament ended.

In Effect PE • AI Safety

Peru AI Regulations

Peru's first comprehensive AI regulatory framework, inspired by EU AI Act. Establishes three-tier risk-based approach: prohibited uses, high-risk systems (including healthcare), and low-risk/acceptable AI. First general AI regulation in Latin America. Requires human oversight, transparency, and risk assessments for high-risk AI including healthcare applications.

Back to all regulations Check if this applies to you

Nicaragua Law 787

What It Requires

Who Must Comply

Safety Provisions

Enforcement

Primary Source

Quick Facts

Why It Matters

Cite This

Related Regulations

CARICOM CCSCAP 2025

Chile Cybersecurity Law

Puerto Rico Cybersecurity Act

Argentina AI Strategy

AIDA

Peru AI Regulations