Yes, Egypt mandates user consent for marketing messages under its Personal Data Protection Law (PDPL), effective since October 2020. This law regulates the collection, processing, and use of personal data, aligning with global standards like the European Union’s General Data Protection Regulation (GDPR). Specifically, the PDPL imposes strict requirements on electronic marketing practices to ensure consumer privacy and data protection.
Key Provisions of the PDPL Regarding Marketing Messages
Under Article 17 of the PDPL, direct electronic marketing is prohibited unless the following conditions are met:
Obtaining Explicit Consent: Businesses must secure prior, informed, and unambiguous consent from the data subject before sending marketing communications.
Sender Identification: The communication must clearly identify the sender and provide valid contact information.
Purpose Disclosure: The message must explicitly state that it is for direct marketing purposes.
Easy Opt-Out Mechanism: Recipients should have clear and simple methods to withdraw their consent or opt out of receiving future communications.
Record Maintenance: Businesses are required to maintain electronic records of consent for a period of three years from the date of the last communication.
Article 18 further mandates that the sender specifies the marketing purpose, does not disclose the contact data of the data subject, and maintains records egypt phone number list evidencing consent or non-objection for three years.
Penalties for Non-Compliance
Violating the provisions related to electronic marketing can result in significant penalties. Fines range from EGP 200,000 to EGP 2 million, depending on the severity of the infringement. Additionally, individuals responsible for non-compliance may face imprisonment.
Consumer Protection Measures
Beyond the PDPL, Egypt’s Consumer Protection Law No. 181 of 2018 offers additional safeguards:
Right to Information: Consumers are entitled to accurate information about products or services before making a purchase.
Right to Amend or Cancel: Consumers can set clear and measurable goals modify or cancel their orders within seven working days, unless a longer period is agreed upon.
Mondaq
Regulatory Oversight
The Personal Data Protection Centre (PDPC) is the primary authority overseeing data protection in Egypt. While the PDPC has not been formally established, the law empowers it to license and regulate data processing activities. Additionally, the National Telecom alb directory Regulatory Authority (NTRA) plays a role in managing telemarketing practices, including the implementation of a telemarketing registry and alert service to protect consumers from unsolicited calls.
Conclusion
In summary, Egypt’s legal framework requires businesses to obtain explicit consent from individuals before sending marketing messages. This approach ensures consumer privacy and aligns with international data protection standards. Companies operating in Egypt must comply with these regulations to avoid legal repercussions and maintain consumer trust.
