On 17 April 2023, Argentina became the 23rd country to ratify Convention 108+, which aims to protect the privacy of individuals against possible abuses in the processing of their personal data. Argentina ratified Convention 108+ during the Privacy 2023 Symposium held in Venice between 17 and 21 April.

In line with the process intended to update Data Protection Law 25,326, the Agency for Access to Public Information announced on its official website the presentation of the Bill of Law on Personal Data Protection in the National Congress.

With Resolution No. 263/2023, published on 17 March in the Official Gazette, the National Communications Entity (Ente Nacional de Comunicaciones (ENACOM)) approved a new Regulation for the Collection of Personal Data and Identity Validation of Users of Mobile Services that Hold a Mobile Number.

The Argentine Central Bank issued Communication ‘A’ 7724, which updated the technology and information security risk standards to strengthen the cyber resilience of financial institutions. The Communication will become effective on 6 September 2023.

On 16 February 2023, Argentina signed the Second Additional Protocol to the Convention on Cybercrime, known as the Budapest Convention, becoming its 35th signatory state. The Second Protocol responds to the challenge of obtaining electronic evidence that may be stored in foreign jurisdictions when carrying out criminal investigations. It also aims to provide tools to enhance cooperation and disclosure of electronic evidence.

Every 28 January, Data Protection Day is celebrated to remember the date on which Convention 108 for the Protection of Individuals with Regard to the Automatic Processing of Personal Data was opened for signature. As technology continues to develop and influence the manner in which we make decisions, data protection is confronted with new and dynamic challenges. Data protection is not something companies can easily tick from a to-do list. Instead, the latest tech developments and modern-day regulations require daily and ongoing efforts to proactively demonstrate compliance.

By means of Resolution No. 1/2023, published in the Official Gazette on 5 January 2023, the Chief of Cabinet Ministers launched the public consultation on the Second National Cybersecurity Strategy. The goal is for all parties interested in cybersecurity and the protection of the digital space to participate, contribute recommendations and share experiences.
The public consultation process will be available for 30 business days from the day following the date of the Resolution’s publication in the Official Gazette, that is, until 16 February 2023.

On 16 December 2022, the Data Protection Authority issued Resolution No. 255/2022 (“Resolution”). The Resolution approves the guiding criterion on the processing of genetic data, which is mandatory for those who are subject to the Personal Data Protection Law No. 25,326.

On 5 and 6 December 2022, Resolutions 240/2022 and 244/2022 were published in the Official Gazette. By means of these resolutions, the Access to Public Information Agency contemplates a new classification of infringements and sanctions applicable to conduct in breach of Law 25,326 and its related regulations.

On 30 November 2022, Decree No. 792/2022 enacting Law No. 27,699 that approves Convention 108+ on the Protection of Individuals with regard to Automatic Processing of Personal Data, was published in the Official Gazette.