By means of Decree No. 302/2024, published in the Official Gazette on 10 April 2024 (“Decree”), the National Executive Branch (PEN for its acronym in Spanish) has amended Argentine Digital Law No. 27,078 and repealed Decree No. 690/2020.
The Decree’s main purpose is to free the market and to develop Information and Communication Technology Services, allowing licensees to freely set prices, which shall be fair and reasonable; cover the operation costs; and aim at efficient provision and a reasonable operating margin.

By means of Resolution No. 87/2024, the Secretariat of Commerce established that businesses that operate with purchase, debit or credit cards must make the electronic payment terminal available to consumers. This is to ensure that they do not lose control of their card during the transaction.

On 2 February 2024, the Agency for Access to Public Information (AAIP) published Resolution No. 38/2024 (“Resolution”) in the Official Gazette. The Resolution updates the poster template that must be placed in areas where digital images are collected via video surveillance.

In the context of the International Data Protection Day, on 26 January 2024, the Agency of Access to Public Information (AAIP, its acronym in Spanish) published their “Recommendations to protect personal data on the internet”. The AAIP provided five recommendations to users of any digital platform that entails the assignment of personal data.

Data is a critical asset in today’s globally connected economy. Rapidly evolving technologies have made it easier than ever for companies to collect, use and transfer data throughout the world. Yet strict data protection, privacy and cybersecurity regulation is evolving rapidly, imposing complex and often inconsistent standards. Our Global Data Privacy & Cybersecurity Handbook is updated annually to help you keep up with the dynamic legal landscape. We provide detailed overviews and allow a comparative perspective of the increasingly complex and sophisticated data privacy and cybersecurity standards in over 50 countries.

The European Commission concluded that personal data transferred from the European Union (EU) to Argentina are adequately protected and, therefore, can continue to flow freely from the EU to Argentina. On 15 January 2024, the Commission published its conclusions regarding the first review of the adequacy decisions adopted — pursuant to Article 25(6) of Directive 95/46/EC — in 1995. In these decisions, the Commission had determined that 11 countries or territories, including Argentina, guaranteed an adequate level of protection of personal data. This allowed data transfers from the EU to these countries.

Following Administrative Decision No. 641/2021 on “Minimum information security requirements for the national public sector,” the AAIP approved its information security policy. The purposes of the policy are to protect the information resources of the AAIP and the technological tools used for their processing; ensure the confidentiality, integrity, availability, legality and reliability of information, and strengthen the adequate implementation of security measures, identifying available resources.

By means of Resolution No. 198/2023, published in the official gazette on 18 October 2023, the Agency of Access to Public Information (AAIP) approved the model contractual clauses included in the Implementation Guide of Model Contractual Clauses for International Personal Data Transfers of the Ibero-American Data Protection Network (MCC and IADPN, respectively).

By means of Resolution No. 44/2023, the Chief of Cabinet of Ministers: (i) approved the Second National Cybersecurity Strategy; (ii) created the Cybersecurity Management and Cooperation Unit; and (iii) established the functions of the Executive Unit of the National Cybersecurity Committee.

Through Resolution No. 161/2023, published in the official gazette on 4 September 2023, the Agency for Access to Public Information (AAIP) created the Program for Transparency and Protection of Personal Data in the Use of Artificial Intelligence and entrusted its execution, monitoring and evaluation to the National Directorates of Evaluation of Transparency Policies and Protection of Personal Data.