Update in Respect of Data Protection in the Cayman Islands

The Cayman Islands Data Protection Law, 2017 (“DPL”) is in effect as of 30 September 2019. The Office of the Ombudsman has issued a Guide for Data Controllers which aims to explain how the Ombudsman interprets certain provisions of the DPL. This advisory provides a brief summary of key documentary requirements in relation to the DPL. Our previous advisory provides an overview of the DPL.

The DPL requires a Cayman Islands data controller (for example, an investment fund) to comply with eight data protection principles when rocessing personal data and to ensure that those principles are complied with in relation to personal data processed on the data controller’s behalf (for example, an administrator). The DPL deals also with data security, data breaches and the rights of individual data subjects. The DPL applies regardless of the location of the data subject or any data processor.

International financial sector businesses will find many similarities between the data protection law of the Cayman Islands and of other jurisdictions where they are active.


Click to view advisory

Lucy FrewPartnerT +1 345 814 4676lucy.frew@walkersglobal.com

Tony De QuintalPartnerT +1 345 914 6388tony.dequintal@walkersglobal.com
Lucy FrewPartnerT +1 345 814 4676lucy.frew@walkersglobal.com
Andrew HowarthPartnerT +1 345 814 4561andrew.howarth@walkersglobal.com

Colm DawsonPartnerT +852 2596 3357colm.dawson@walkersglobal.com

Sara HallPartnerT +44 (0)20 7220 4975sara.hall@walkersglobal.com

Related Content