Dominican Republic provides certain privacy and data security protections and requirements. Companies subject to the law should be familiar with all relevant privacy and data laws or regulations, including those listed below.

National Data Protection Authority - Other Government Agencies

Instituto Dominicano de las Telecomunicaciones (INDOTEL)

The Dominican Telecommunications Regulatory Authority

Superintendencia de Bancos

The Superintendency of Banks regulates organizations that maintain databases that are intended provide credit reports

Privacy Law and Regulations

Organic Law (172-13) on the Protection of Personal Data

Article 8 contains rights of the individual and includes the inviolability of correspondence and private documents, as well as private documentation. However, the next paragraph states that all information media have free access to official and private news sources if such access is not against public policy or endangers national security.

Free Access to Public Information Law
  • Citizens have the right to access to request and receive information from any governmental authority. However (pursuant to Article 19) the request might be rejected if as a result of disclosing such information other private interests might be affected (e.g., personal data which disclosure could be an invasion to privacy).
  • When disclosing personal data, such data should only be disclosed when there is express and clear evidence of the consent of the personal data subject or when the law requires such disclosure.
Credit Bureau Law
Ley No. 288-05, del 18 de agosto de 2005, que regula las Sociedades de Intermediación Crediticia y de Protección al Titular de la Información. Publicada en la G. O. No. 10332 del 20 de agosto de 2005
  • All individuals are entitled to access the information held on them by a Credit Information Entity or credit bureau. Credit bureaus must maintain updated and true records.
  • The institutions requesting a credit report from a credit bureau should have an authorization from their customer (data subject or person on whom the data is held) and maintain such authorization for a six month period.
  • In addition the data subject may access the information held on them by a credit bureau, request its amendment when such information is erroneous or its deletion when false.
Electronic Commerce Law
Law on the Remission of Unsolicited Business E-mail (SPAM)
Law on Crimes and High Tech Crime
Telecommunications Law
Cybersecurity and Information Regulation