PDPL Article 34, gives data subjects the right to file complaints with the Competent Authority (e.g., SDAIA) if they believe their rights under the PDPL have been violated or if a controller fails to comply with the law.
The Regulations will define how complaints must be submitted, how they will be reviewed, and the timeline for processing.
Saudi PDPL Article 34
File Data Subject Complaints
A Data Subject may submit to the Competent Authority any complaint that may arise out of the implementation of this Law and the Regulations. The Regulations shall set out the rules for processing the complaints that may arise from implementing this Law and the Regulations.
Explanation of Saudi PDPL Article 34
Individuals can report violations to the Competent Authority:
Saudi PDPL Article 34 says, if someone believes their personal data was misused or their PDPL rights were violated, they may submit a complaint to SDAIA, and the Regulations will govern how it’s processed.
