Guided by our compliance Experts and supported by our Native Automation tools PRIVM!!

Essential Cybersecurity Controls (ECC): Developed by the National Cybersecurity Authority (NCA) of Saudi Arabia, the ECC establishes minimum cybersecurity standards for all organizations.

Personal Data Protection Law (PDPL): Enacted in 2023, the PDPL regulates the collection, processing, usage, storage, and transfer of personal data. Critical for B2C Organisations.

Cybersecurity Regulatory Framework (CRF) for ICT and Postal Sectors: Issued by the Communications, Space, and Technology Commission (CST), the CRF outlines cybersecurity requirements for service providers in the Information and Communications Technology (ICT) and postal sectors.

National Cyber Security Authority (NCA): ECC and NCA Regulations are Part of Broader Standards and target are all Government Entities plus Critical Infrastructure companies.

The Saudi Arabian Monetary Authority (SAMA): SAMA plays a crucial role in the intersection of cybersecurity and regulatory compliance for financial andInsurance sector.