Welcome to Global Privacy Deep Dive, your deep dive into the world of global data law and compliance. Presented by Annie and Rob.

Today, we’re unwrapping how Vietnam is undergoing a major legislative shift in data privacy. The new Personal Data Protection Law (PDPL), effective January 1, 2026, replacing the foundational Decree 13/2023/ND-CP and elevates the country’s compliance requirements to a global standard, often mirroring GDPR.

In this essential episode, your hosts Annie and Rob break down this critical transition, explaining why this new law is a game-changer for any multinational organization operating in or engaging with the Vietnamese market. It’s no longer a minor compliance item—it’s a critical financial risk.

Welcome to Global Privacy Deep Dive, your deep dive into the world of global data law and compliance. Presented by Annie and Rob.

Today, we’re not talking about your desktop or your smartphone. We’re talking about the most sophisticated, data-collecting device you probably own: your car.

We’re dedicating a whole segment to the high-stakes issue of driver profiling for insurance purposes. How transparent are these algorithms? And more importantly: what rights does the driver actually have when their vehicle is constantly watching their every move? It’s a crucial question for anyone who drives a modern car.

Stay with us as we shift gears and drive deep into the global challenges of automotive data privacy, right here on Global Privacy Deep Dive.

Welcome to Global Privacy Deep Dive, your deep dive into the world of global data law and compliance. Presented by Annie and Rob.

The era of “one-size-fits-all” data compliance in the Middle East is over. Many organizations operating in key markets like Saudi Arabia (KSA) and Egypt are falling into a critical compliance gap by focusing only on the national data laws (KSA PDPL, Egypt DPL) and ignoring stricter, sector-specific regulations.

In this essential episode, your hosts Annie Garcia and Rob Healey introduce the concept of Dual-Compliance. We break down exactly why financial institutions, healthcare providers, and tech firms must answer to two masters—the national Data Protection Authority and powerful sectoral regulators like SAMA and the CBE. Ignoring these layers can lead to severe penalties and operational disruption.