Dino Wilkinson of Clyde & Co LLP writes:
Bahrain’s Personal Data Protection Law No. 30 of 2018 (the Law) has been published in the Official Gazette on 19 July 2018.
The Law aims to be consistent with international practices in the protection of personal data and to enhance the attractiveness of Bahrain to foreign investors by providing a clear framework for processing personal data. It is anticipated to be supplemented by resolutions that are due to be issued by 1 February 2019.
Who is affected?
The Law will apply to any processing of personal data wholly or partly by automated means or the manual processing of personal data that will form part of an organised filing system. The Law is stated to apply to individual residents or workers in Bahrain, locally established businesses and any businesses outside Bahrain that process personal data “by means available within the Kingdom” other than for purely transitory purposes.
This means that non-Bahraini businesses operating data centres or using third party data processors in Bahrain will be caught by the Law.
Read more on Lexology.