Employee Data Privacy | United Arab Emirates

United Arab Emirates - Breach Notification

Are there any data breach notification requirements?

A data breach is a security incident in which sensitive, protected or confidential data is copied, transmitted, viewed, stolen or used by an individual unauthorized to do so. Local data protection regulations have required data controllers to report such breaches in certain circumstances.

markus-spiske-303121

There is no required notification in mainland UAE in the event of a data breach and there is no data protection regulator to notify. That said, under the Penal Code (Art. 407) individuals who conceal property derived from crime can be subject to the penalty for that crime.

Note that some free trade zones in the UAE, such as the Dubai International Financial Center (DIFC), have data breach notification requirements and have regulators specifically responsible for data protection.

Ultimate Software's HR Compliance Assist team relies on a network of internal and external compliance experts and lawyers to provide clients with best practices and recommendations on topics such as HR document retention, employee data privacy, and HR electronic records. HR Compliance Assist also provides local compliance monitoring and alert services in select countries where Ultimate Software's customers have employees. HR Compliance Assist is a service exclusively available to Ultimate Software customers.

Share Your Feedback

Let's Talk