What is Israel’s privacy protection authority? - Actonic – Unfolding your potential
Become an Atlassian Knowledge Champion

What is Israel’s privacy protection authority?

The Israel’s Privacy Protection Authority (“PPA”), established in 2006, enforces the privacy law in Israel. The Privacy Protection Authority is responsible for regulating and enforcing Israel’s privacy laws, including the Privacy Protection Law, which regulates the collection, use and disclosure of personal information in Israel.

The main data protection regulator PPA is part of the Ministry of Justice, takes part in the legislative process, and represents Israel in the international privacy arena.

The PPA responsibilities

PPA protects all personal information (PII) stored in digital databases.

The privacy protection authority PPA:

  • Sets out the rights and obligations of parties that collect data and use data
  • Sets out the rights and obligations around security requirements in relation to parties that collect and use other people’s personal data
  • Sets out the rights granted to the owners of the data collected and used

 

The Privacy Protection Authority (PPA) publishes guidance reflecting its interpretation of the obligations under the Privacy Act.

 

Israel’s privacy protection authority has an administrative power and may impose administrative penalties in certain circumstances. It also has criminal investigative powers and can perform inspections and audits of any entity subject to the Privacy Act.

The PPA registrar’s requirements

The head of the PPA is the registrar of databases.

The registrar is authorized to maintain the registry of databases and control compliance with the provisions of the Privacy Law and supervise compliance with the regulations issued pursuant to it.

The Registrar is also authorized to refuse to register a database if there is a reasonable basis. Under reasonable ground, is meant the existence of the following situations:

  • the database is used for illegal activities or as a cover for illegal activities (or has the potential to be used for such activities);
  • the data included in the database was obtained, collected or accumulated in violation of the Privacy Act or in violation of any other law.

Discover our Apps for Jira and Confluence