Home/Regulations/DIFC DPL
All Regulations
🇦🇪

DIFC DPL

Dubai Uluslararası Finans Merkezi Veri Koruma Kanunu

UAE (DIFC)
Effective: July 1, 2020
Active

Data protection regulation for Dubai International Financial Centre. Designed to be GDPR-compatible.

Scope

  • Applies to organizations operating within DIFC
  • Focused on financial sector
  • Has extraterritorial scope

Data Subject Rights

  • Right to access
  • Right to rectification
  • Right to erasure
  • Right to data portability
  • Right to object

Key Obligations

  • Registration with Commissioner
  • Data protection impact assessment
  • Data breach notification (72 hours)
  • DPO appointment (when required)

Penalties

DIFC DPL provides for significant fines for violations.

Maximum Fine
Up to 100,000 USD fine.

Cross-Border Transfers

Cross-border transfers allowed to countries with adequate protection or with appropriate safeguards.

Supervisory Authority

DIFC Commissioner of Data Protection

Visit website →

Related Regulations

🇪🇺GDPR🇸🇦PDPL

Need DIFC DPL Compliance?

JUS. helps you comply with DIFC DPL requirements efficiently.

Book a Demo

Compare Regulations

See how DIFC DPL compares to other privacy laws.

Explore in Compliance Hub

View detailed data protection information for UAE.

Go to UAE

Simplify DIFC DPL Compliance

Automate compliance workflows, manage data subject requests, and demonstrate compliance with JUS.

Book a DemoView Solutions
Request Demo