The Extra-Territorial Effect of the Saudi Data Protection Law and the EUGDPR-A Comparative Analysis

Authors

  • Anas Mohameden Senior Legal Counsel, Riyadh, Kingdom of Saudi Arabia Author

Downloads

Abstract

The primary aim of promulgating the General Data Protection Regulation (GDPR) was to establish a suitable privacy deterrent for individuals’ rights across the EU. Therefore, a substantial obstacle to conformity for overseas businesses that process the personal data of European Union citizens and expatriates is addressed through this enactment. This article highlights the new norms governing the extraterritorial realms of securing sensitive data and explains the principles of data protection. In addition, it examines the scope of the GDPR's application, highlighting its territorial reach and the entities to which the law applies. Furthermore, this highlights the impact of GDPR on international law, encompassing subsequent jurisdictions. Qualitative research methodology employs document analysis from various data sources throughout the development of this article. Those sources include regulations, conventions, books, journal articles, etc. Hitherto, the article explores the significance of data privacy. In the digital age, exploring personal data protection law in Saudi Arabia is timely and essential. This law is designed to protect the privacy and rights of individuals, ensuring that their personal information is collected, processed, and stored in a lawful and transparent manner. This article examines the specific provisions, extraterritorial aspects, and implications of the Personal Data Protection Law (PDPL) 2021, with a focus on its alignment with Shariah principles. Additionally, it highlights the significant role played by the Saudi Data and Artificial Intelligence Authority (SDAIA), mainly through the National Data Management Office, in safeguarding personal data. By thoughtfully comparing Saudi policies to the European Union’s General Data Protection Regulation (GDPR), we also identify areas for improvement. The insights provided here aim to assist Saudi legislators in reevaluating the Personal Data Protection Law and encourage the development of proactive strategies to address and manage data incidents and breaches. Fulfilling trust and security for all citizens is vital to enhancing commitment to privacy in the rapidly evolving digital landscape.

Readership Data

🌐

Refreshing Cached Analytics Data

The cached analytics data has become stale and journal.thelawbrigade.com is making a fresh request to fetch the latest data from Google Analytics. This may take 20-30 seconds depending on the server response time from Google Analytics. Please do not close the browser during this time. We appreciate your patience.

License Terms

Ownership and Licensing:

Authors of research papers submitted to any journal published by The Law Brigade Publishers retain the copyright of their work while granting the journal specific rights. Authors maintain ownership of the copyright and grant the journal the right of first publication. Simultaneously, authors agree to license their research papers under the Creative Commons Attribution-ShareAlike 4.0 International (CC BY-SA 4.0) License.

License Permissions:

Under the CC BY-SA 4.0 License, others are permitted to share and adapt the work, even for commercial purposes, provided that appropriate attribution is given to the authors, and acknowledgment is made of the initial publication by The Law Brigade Publishers. This license encourages the broad dissemination and reuse of research papers while ensuring that the original work is properly credited.

Additional Distribution Arrangements:

Authors are free to enter into separate, non-exclusive contractual arrangements for distributing the published version of the work (e.g., posting it to institutional repositories or publishing it in books), provided that the original publication by The Law Brigade Publishers is acknowledged.

Online Posting:

Authors are encouraged to share their work online (e.g., in institutional repositories or on personal websites) both prior to submission and after publication. This practice can facilitate productive exchanges and increase the visibility and citation of the work.

Responsibility and Liability:

Authors are responsible for ensuring that their submitted research papers do not infringe on the copyright, privacy, or other rights of third parties. The Law Brigade Publishers disclaims any liability for any copyright infringement or violation of third-party rights within the submitted research papers.

 

Published

15-02-2025

Issue

Vol. 4 No. 1 (2025): Cyber Law Reporter

Section

Articles

License

Creative Commons License

This work is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License.

Copyright © 2026 by Anas Mohameden

The copyright and license terms mentioned on this page take precedence over any other license terms mentioned on the article full text PDF or any other material associated with the article.

How to Cite

Mohameden, Anas. “The Extra-Territorial Effect of the Saudi Data Protection Law and the EUGDPR-A Comparative Analysis”. Cyber Law Reporter, vol. 4, no. 1, Feb. 2025, pp. 1-42, https://journal.thelawbrigade.com/cylr/article/view/928.