The Personal Data Protection Directorate is the regulatory unit responsible for safeguarding personal data and ensuring the right to privacy by ensuring compliance with the provisions of the Personal Data Protection Law No. (24) Of 2023, as well as the regulations and instructions issued thereunder in the Hashemite Kingdom of Jordan. The unit aims to enhance Jordan's position in the field of personal data protection and the development of legislation and policies that support the protection of the digital environment.
To position the Hashemite Kingdom of Jordan as a leader in personal data protection and a global benchmark in promoting the right to privacy, as well as in developing legislation and policies that support the protection of the digital environment.
To regulate and govern the processing of personal data in the Kingdom and ensure the protection of individuals’ rights through the implementation of the Personal Data Protection Law and the regulations and instructions issued pursuant to it.
- Neutrality and Objectivity: Commitment to dealing with all parties without discrimination or bias, ensuring fairness and equal opportunities.
- Confidentiality of Information: Maintaining the confidentiality and integrity of the information and data we access, and not disclosing it except in accordance with relevant legislation.
- Professionalism: Applying best practices in work, relying on scientific and practical foundations in decision-making, and ensuring the professional development of employees based on competence, experience, and effort.
- Loyalty and Belonging: Demonstrating dedication to the nation, commitment to the principles of the Jordanian Constitution, and positively contributing to the achievement of national goals.
- Integrity: Adhering to standards of honesty and transparency, and exercising entrusted authorities responsibly.
- Excellence: Striving for excellence and applying the highest quality standards in all work.
- Inclusiveness: Providing a work environment that promotes equality, diversity, and inclusion in experiences, ideas, and cultures.
- Initiative and Innovation: Encouraging creative ideas and proactive initiatives, and adopting innovative solutions that support continuous development.
- Teamwork: Working with a unified team spirit to achieve goals and effectively set priorities.
- Enhancing transparency and trust in the use of digital government services, contributing to their wider adoption, supporting digital transformation, and promoting the growth of the digital economy.
- Supporting and enabling both the public and private sectors to comply with the requirements of the Personal Data Protection Law, thereby strengthening the reliability of digital transactions and increasing trust in the digital environment.
- Building and promoting a culture of privacy and personal data protection among individuals and institutions, and raising awareness of best practices in managing and protecting personal data to enhance users’ trust in digital services.
- Supporting innovation and digital services, and enabling digital businesses and investments by providing a reliable and secure regulatory and legislative environment for data, contributing to the stimulation of digital economic growth.
- Preparing drafts of legislation and instructions related to Data Protection and submitting them to the Council.
- Receiving notifications and complaints related to violations of the provisions of this law, and the regulations and instructions issued pursuant to it, investigating them, and recommending appropriate decisions to the Council.
- Monitoring compliance with the provisions of this law, the regulations, and instructions issued pursuant to it.
- Establishing a registry that includes records of Controllers, Processors, and Data Protection Officers, and supervising and organizing it according to instructions issued by the Council for this purpose.
- Preparing the annual report on The Unit's activities and submitting it to the Council for approval.
- Any other tasks assigned to it by the Minister or the Council.
Regulatory Affairs and Compliance Monitoring Department: This department is responsible for ensuring that entities handling personal data comply with the provisions of the law, regulations, and instructions issued thereunder. It is also tasked with drafting regulations, guidelines, and necessary compliance frameworks.
Awareness and Education Department: This department works on fostering a culture of privacy protection and personal data security within Jordanian society by raising awareness among individuals and institutions about the importance of data protection. It also promotes awareness of rights and obligations stipulated by data protection laws and implements innovative awareness campaigns and training programs to ensure a safe, secure, reliable, and sustainable digital environment.
Licensing, Permits, and Records Department: This department manages the procedures for granting licenses and permits, including assessing applications for approval or rejection. It also oversees the development and management of a registry containing the names and contact details of Data Protection Officers (DPOs), data controllers, and data processors.
Public Service Department: This department is responsible for receiving complaints, reports, and inquiries related to privacy and personal data protection, investigating them, and providing responses following transparent, confidential, and high-quality procedures.