Individual Control over Personal Data in the Saudi Law Consent as a Case Study: A Comparative and an Analytical Study

Abstract

In accordance with Royal Decree No. M/19 dated 9/2/1443H corresponding to 16/09/2021G, the Saudi Arabian Personal Data Protection Law “PDPL” was promulgated in its first edition. This legislative ini[1]tiative was undertaken to position the Kingdom at the forefront of the substantial global advancements in the realm of data, widely recognized as the cornerstone of the twenty-first century. The impetus behind this regulatory development was to align with the digital transformation experienced by the Kingdom of Saudi Arabia, keeping pace with the global trends that had preceded many nations. The European Union took the lead in formulating this kind of regulations designed to safeguard personal data, particularly in the face of large technology corporations that could potentially encroach upon individual rights. Subsequently, the world benefited from the legislation enacted by the European Union, commonly known as the General Data Protection Regulations “GDPR”. Among the nations that drew upon this legal framework is the Kingdom of Saudi Arabia.