Data-protection expectations across Egypt and the GCC are rising, and “we did not know” is not a defense anyone wants to rely on. The good news is that the first steps are practical and within reach for any organization.
Start with the basics
Know what personal data you hold and where it lives. Limit who can access it. Protect it with encryption and backups. Have a plan for requests and for incidents. Document what you do. None of this requires a legal department to begin; it requires intent and a methodical first pass, which is exactly where we help.