The journal
Regulation, read closely.
Analysis and practical guidance on the frameworks shaping information security in the Kingdom and beyond.
★ Latest — Data Protection · 23 Nov 2025 · 13 min
Saudi PDPL: When Personal Data Can Be Processed Without Consent
How to correctly apply vital, actual, and legitimate interest under the Saudi PDPL when processing personal data without consent, with practical worked examples.
Read the story →
Data Protection
02Navigating the Saudi PDPL Part 1: Appointing a Data Protection Officer (DPO)
Understand when the Saudi PDPL requires a Data Protection Officer, the criteria under Article 30, and the value a DPO brings beyond compliance obligations.
11 Jul 2024 · 6 min
→Data Protection
03Navigating the Saudi PDPL Part 2: A Step-by-Step Guide to Appointing a DPO
A practical six-step guide to appointing a Data Protection Officer under the Saudi PDPL, from assessing data processing activities to communicating the appointment.
11 Jul 2024 · 6 min
→
AI Governance
04Achieving ISO 42001 Compliance: A Guide to AI Management Systems
An in-depth guide to ISO 42001, the standard for AI management systems, covering its structure, benefits, and practical steps to achieve and maintain compliance.
09 Jun 2024 · 5 min
→Cyber Threat Intelligence
05Operational CTI: Technical and Tactical Insights
Discover how Technical and Tactical Cyber Threat Intelligence uses IoCs and vulnerability monitoring to strengthen threat detection, response, and cyber defense.
28 Apr 2024 · 2 min
→Cyber Threat Intelligence
06Cyber Threat Intelligence: A Guide to Core Principles
Master Cyber Threat Intelligence with this guide to core CTI principles, helping financial institutions build a resilient defense against evolving cyber threats.
18 Apr 2024 · 2 min
→Cyber Threat Intelligence
07Strategic CTI: Cyber Threat Intelligence
Explore Strategic Cyber Threat Intelligence and how understanding the motives behind attacks helps Saudi financial institutions predict and counter future threats.
18 Apr 2024 · 2 min
→