Skip to main content
NOPE
In Effect Law Data Protection

Tunisia Organic Law 2004-63

Organic Law 2004-63 on the Protection of Personal Data

Tunisia's data protection law requiring prior authorization for personal data processing and restricting cross-border transfers.

Jurisdiction

Tunisia

Enacted

Jul 27, 2004

Effective

Jul 27, 2004

Enforcement

Instance Nationale de Protection des Données Personnelles (INPDP)

INPDP (Tunisia Data Protection Authority)

Why It Matters

Tunisia's prior authorization requirement creates operational friction for new AI chatbot deployments serving Tunisian users.

At a Glance

Applies to

AI CompanionMental Health AppGeneral Chatbot

Who Must Comply

  • Data controllers and processors in Tunisia
  • Entities processing data of Tunisian residents
  • Cross-border data transfers from Tunisia

Obligations fall on:

Safety Provisions

  • Prior authorization required for processing personal data
  • Cross-border transfer restrictions
  • Security measures required
  • Right to access and correction
  • Data controller registration

Compliance & Enforcement

Penalties

criminal liability

Criminal liability

View on map

Tunisia

Focus Areas

General regulation

Cite This

APA

Tunisia. (2004). Organic Law 2004-63 on the Protection of Personal Data.

Related Regulations

In Effect ZM

Zambia DPA

Zambia's comprehensive data protection law with special protections for vulnerable persons and DPIA requirements for high-risk processing.

In Effect BW

Botswana DPA

Botswana's modernized data protection law requiring Data Protection Impact Assessment and establishing age 16 for consent.

In Effect SC

Seychelles DPA

Seychelles' modern data protection law requiring DPO for large-scale processing and recognizing Cross-Border Privacy Rules certification.

In Effect RW

Rwanda AI Policy

First African country to adopt comprehensive national AI policy. Establishes Responsible AI Office (RAIO) under MINICT. Implements RURA ethical guidelines covering beneficence, non-maleficence, autonomy, justice, explicability, transparency. Non-binding framework.

In Effect CN

China CSL Amendments

First major revision of China's foundational Cybersecurity Law since 2017. Introduces formal AI governance provisions, significantly increases penalties, and expands extraterritorial application to all cybersecurity violations.

In Effect US-CA

CA SB 524

Requires law enforcement agencies to disclose when AI is used to write or assist in creating official police reports, maintain audit trails, and preserve AI-generated first drafts.

All regulations Check if this applies to you

Last updated January 22, 2026. Verify against primary sources before relying on this information.