Securiti leads GigaOm's DSPM Vendor Evaluation with top ratings across technical capabilities & business value.

View
Contact Us See a demo

Panama’s PDPL

Operationalize PDPL compliance with the most comprehensive PrivacyOps platform

Last Updated on December 4, 2023

Schedule Your
Personal Demo

Learn how you can leverage Securiti’s Data Command Center to address data security, privacy, governance, and compliance.

See a demo
Schedule your demo today

Panama’s Personal Data Protection Law (PDPL), also known as Law 81 of 2019, came into effect on March 29, 2021, along with its implementing regulations (PDPL Regulations).

The law establishes several principles, rights, obligations, and procedures that regulate the protection of the personal data of natural persons in the Republic of Panama. The law provides individuals a degree of control over their personal data processed by businesses through different data rights. In addition, it also places critical obligations upon organizations to ensure responsible and appropriate use of the individuals’ personal data.

The National Authority for Transparency and Access to Information (ANTAI) oversees law enforcement. Violations of the PDPL can lead to penalties ranging from one thousand balboas (B/.1,000.00) to ten thousand balboas (B/.10,000.00), depending on the severity of the offense.

The Solution

Securiti empowers all organizations to ensure compliance with each provision of PDPL with the help of its plethora of products, which include, but are not limited to, AI-driven data discovery, DSR automation, universal consent management, autonomous documented accountability, data breach management, and vendor risk assessment.

The solutions mentioned above are backed up by state-of-the-art artificial intelligence and machine-learning-based algorithms, making Securiti a market leader in providing data compliance and governance solutions.

Panama’s PDPL Solutiion

See how our comprehensive PrivacyOps platform helps you comply with various sections of the Panama’s PDPL.

Request a demo today to learn how Securiti can aid your and your organization's compliance with Panama’s Personal Data Protection Law (PDPL).

Assess PDPL Readiness

PPDPL Article 3, PPDPL Article 5, PPDPL Regulations Article 2

Automate the timely internal assessments of all data collection and processing-related activities, mechanisms, and processes to ensure they remain compliant with the law. Appropriate changes can be implemented proactively to address any blind spots adequately.

Panama PDPL Readiness securiti
Panama Map Data Discover Sensitive Personal Information securiti

Map Data to Discover Sensitive Personal Information

PPDPL Article 4(11)

Leverage dedicated data mapping, classification, and cataloging modules to ensure you gain real-time insights related to your organization’s data infrastructure.

Automate Data Classification & Labeling

PPDPL Article 4(6), PPDPL Article 4(7), PPDPL Article 4(8), PPDPL Article 4(9), PPDPL Article 4(10), PPDPL Article 4(11)

Classify & label data without your organization's data infrastructure to ensure appropriate security controls are enabled on the most sensitive data in your organization. Leverage the same module to identify sensitive files such as consent forms and financial statements and record them under appropriate categories.

Panama Automate Data Classification Labeling securiti
Panama Automate Data Subject Rights Requests securiti

Automate Data Subject Rights Requests

PPDPL Article 15, PPDPL Article 16, PPDPL Article 17, PPDPL Article 19

Automate the entire process related to fulfilling consumer data rights requests and gain real-time updates on the status of each request via the central dashboard.

Continuous Monitoring & Tracking

PPDPL Governance

Ensure absolute compliance with the appropriate regulatory requirements via deep insights into all data subjects’ consent statuses via the central dashboard. This allows for any potential processing or transfer of data to occur only per the relevant consent requirements.

Panama Continuous Monitoring Tracking securiti
Panama Automate People Data Graph securiti

Automate People Data Graph

PPDPL Governance

Discover personal information stored across all your internal and external systems within the organization and link them back to a unique data subject. Also, visualize personal data sprawl and identify compliance risks.

Automate Data Protection Impact Assessment (DPIA)

PPDPL Regulations Article 41

Automate the execution of a data protection impact assessment (DPIA) to ensure it is conducted at regular intervals, giving you ample time, data, and insights to take appropriate actions if necessary.

Panama Automate Data Protection Impact Assessment securiti
Panama Manage Vendor Risk securiti

Manage Vendor Risk

PPDPL Article 14, PPDPL Regulations Article 47

Keep track of all the organization's third-party vendors' data processing activities in real-time to ensure their data processing practices in relation to the data shared with them comply with the applicable legal requirements.

Assess Data Protection Measures & Enable Appropriate Security Controls

PPDPL Article 2(5), PPDPL Regulations Article 36

Leverage several data security-oriented products and modules, such as access controls and identity management, to instill appropriate controls to ensure all data with your organization's data infrastructure is always adequately protected.

Panama Assess Data Protection Measures securiti
Panama Automate Records of Processing Activities securiti

Automate Records of Processing Activities (RoPA)

​​PPDPL Regulations Article 35

Track data flows in and out of your organization's data infrastructure, trace this data, and catalog, transfer, and document business process flows internally and to service providers or third parties. These insights can then be used to automate the generation of a record of processing activities (RoPA) to comply with all necessary documentation-related regulatory requirements.

Breach Response Notification

PPDPL Regulations Article 37

Automate data breach response notifications to all concerned stakeholders as soon as legally obliged by leveraging a knowledge database on security incident diagnosis and response.

Panama Breach Response Notification securiti
Panama Privacy Policy Notice Management securiti

Privacy Policy & Notice Management

​​PPDPL Regulations Article 14, PPDPL Regulations Article 15, PPDPL Regulations Article 16

Automate the generation of a privacy policy that adequately informs individuals about your organization's data processing practices while fully complying with all applicable law provisions.

Monitor & Track Consent

PPDPL Article 10, PPDPL Article 11, PPDPL Article 12, PPDPL Article 25

Ensure absolute compliance with the appropriate regulatory requirements via deep insights into all data subjects’ consent statuses via the central dashboard. This allows for any potential processing or transfer of data to occur only per the relevant consent requirements.

Panama Monitor Track Consent securiti
Panama Enable Opt out Mechanisms securiti

Enable Opt-out Mechanisms

​​PPDPL Article 15(4), PPDPL Regulations Article 19

Leverage DSR automation modules to receive and proactively register any data subject opt-out requests and address such requests with global privacy controls (GPC).

Key Rights Under Panama’s PDPL

Right of Access

Data subjects have the right to request access to their personal data that is stored or subject to processing in databases of public or private institutions, in addition to knowing the origin and purpose for which they have been collected.

Right of Rectification

Data subjects have the right to request correction to any personal data collected on them that has since become incorrect, irrelevant, incomplete, outdated, inaccurate, false, or irrelevant.

Right of Cancellation

Data subjects have the right to request the deletion of any personal data that has, since its collection, become incorrect, irrelevant, incomplete, outdated, inaccurate, false, or irrelevant.

Right of Opposition

Data subjects have the right to reject requests related to the collection of their personal data, have them subject to a certain treatment, and revoke their consent to any previous data collection.

Right of Portability

Data subjects have the right to request a copy of their personal data in a structured manner, in a generic and commonly used format, which allows it to be operated by different systems and/or transmitted to another controller.

Facts About PDPL

1

The PDPL may have extra-territorial applications in cases where the data processing is carried out for online commercial activities aimed at the Panamanian market.

2

The National Authority for Transparency and Access to Information (ANTAI), through the Directorate for the Protection of Personal Data, is the primary control authority related to the enforcement of the PDPL.

3

The National Authority for Government Innovation provides secondary support in aspects related to Information and Communication Technologies.

4

Financial penalties for violations of this law can lead to penalties ranging from one thousand balboas (B/.1,000.00) to ten thousand balboas (B/.10,000.00), depending on the severity of the offense.

5

The violations of the PDPL are categorized into three levels of offenses: minor, serious, and very serious.

IDC MarketScape

Securiti named a Leader in the IDC MarketScape for Data Privacy Compliance Software

Read the Report
Please enter a minimum of 3 characters to begin your search.

Videos

View More

January 20, 2025

Mitigating OWASP Top 10 for LLM Applications 2025

Generative AI (GenAI) has transformed how enterprises operate, scale, and grow. There’s an AI application for every purpose, from increasing employee productivity to streamlining...

View More

January 15, 2025

DSPM vs. CSPM – What’s the Difference?

While the cloud has offered the world immense growth opportunities, it has also introduced unprecedented challenges and risks. Solutions like Cloud Security Posture Management...

View More

January 15, 2025

Top 6 DSPM Use Cases

With the advent of Generative AI (GenAI), data has become more dynamic. New data is generated faster than ever, transmitted to various systems, applications,...

View More

January 2, 2025

Colorado Privacy Act (CPA)

What is the Colorado Privacy Act? The CPA is a comprehensive privacy law signed on July 7, 2021. It established new standards for personal...

View More

December 24, 2024

Securiti for Copilot in SaaS

Accelerate Copilot Adoption Securely & Confidently Organizations are eager to adopt Microsoft 365 Copilot for increased productivity and efficiency. However, security concerns like data...

View More

November 1, 2024

Top 10 Considerations for Safely Using Unstructured Data with GenAI

A staggering 90% of an organization's data is unstructured. This data is rapidly being used to fuel GenAI applications like chatbots and AI search....

View More

October 29, 2024

Gencore AI: Building Safe, Enterprise-grade AI Systems in Minutes

As enterprises adopt generative AI, data and AI teams face numerous hurdles: securely connecting unstructured and structured data sources, maintaining proper controls and governance,...

View More

August 12, 2024

Navigating CPRA: Key Insights for Businesses

What is CPRA? The California Privacy Rights Act (CPRA) is California's state legislation aimed at protecting residents' digital privacy. It became effective on January...

View More

June 3, 2024

Navigating the Shift: Transitioning to PCI DSS v4.0

What is PCI DSS? PCI DSS (Payment Card Industry Data Security Standard) is a set of security standards to ensure safe processing, storage, and...

View More

January 29, 2024

Securing Data+AI : Playbook for Trust, Risk, and Security Management (TRiSM)

AI's growing security risks have 48% of global CISOs alarmed. Join this keynote to learn about a practical playbook for enabling AI Trust, Risk,...

Spotlight Talks

Spotlight 14:21

AI Governance Is Much More than Technology Risk Mitigation

AI Governance Is Much More than Technology Risk Mitigation
Watch Now View
Spotlight 12:!3

You Can’t Build Pipelines, Warehouses, or AI Platforms Without Business Knowledge

Watch Now View
Spotlight 47:42

Cybersecurity – Where Leaders are Buying, Building, and Partnering

Rehan Jalil
Watch Now View
Spotlight 27:29

Building Safe AI with Databricks and Gencore

Rehan Jalil
Watch Now View
Spotlight 46:02

Building Safe Enterprise AI: A Practical Roadmap

Watch Now View
Spotlight 13:32

Ensuring Solid Governance Is Like Squeezing Jello

Watch Now View
Spotlight 40:46

Securing Embedded AI: Accelerate SaaS AI Copilot Adoption Safely

Watch Now View
Spotlight 10:05

Unstructured Data: Analytics Goldmine or a Governance Minefield?

Viral Kamdar
Watch Now View
Spotlight 21:30

Companies Cannot Grow If CISOs Don’t Allow Experimentation

Watch Now View
Spotlight 2:48

Unlocking Gen AI For Enterprise With Rehan Jalil

Rehan Jalil
Watch Now View

Latest

The ROI of Safe Enterprise AI View More

April 20, 2025

The ROI of Safe Enterprise AI: A Business Leader’s Guide

The fundamental truth of today’s competitive landscape is that businesses harnessing data through AI will outperform those that don’t. Especially with 90% of enterprise...

View More

April 14, 2025

Accelerating Safe Enterprise AI: Securiti’s Gencore AI with Databricks and Anthropic Claude

Securiti AI collaborates with the largest firms in the world who are racing to adopt and deploy safe generative AI systems, leveraging their own...

New Draft Amendments to China Cybersecurity Law View More

April 24, 2025

New Draft Amendments to China Cybersecurity Law

Gain insights into the new draft amendments to the China Cybersecurity Law (CSL). Learn more about legal responsibilities, noncompliance penalties, the significance of the...

View More

April 14, 2025

What are Data Security Controls & Its Types

Learn what are data security controls, the types of data security controls, best practices for implementing them, and how Securiti can help.

View More

April 27, 2025

Top 10 Privacy Milestones That Defined 2024

Discover the top 10 privacy milestones that defined 2024. Learn how privacy evolved in 2024, including key legislations enacted, data breaches, and AI milestones.

View More

April 16, 2025

2025 Privacy Law Updates: Key Developments You Need to Know

Download the whitepaper to discover privacy law updates in 2025 and the key developments you need to know. Learn how Securiti helps ensure swift...

Comparison of RoPA Field Requirements Across Jurisdictions View More

April 24, 2025

Comparison of RoPA Field Requirements Across Jurisdictions

Download the infographic to compare Records of Processing Activities (RoPA) field requirements across jurisdictions. Learn its importance, penalties, and how to navigate RoPA.

Navigating Kenya’s Data Protection Act View More

April 14, 2025

Navigating Kenya’s Data Protection Act: What Organizations Need To Know

Download the infographic to discover key details about navigating Kenya’s Data Protection Act and simplify your compliance journey.

Gencore AI and Amazon Bedrock View More

January 7, 2025

Building Enterprise-Grade AI with Gencore AI and Amazon Bedrock

Learn how to build secure enterprise AI copilots with Amazon Bedrock models, protect AI interactions with LLM Firewalls, and apply OWASP Top 10 LLM...

DSPM Vendor Due Diligence View More

November 18, 2024

DSPM Vendor Due Diligence

DSPM’s Buyer Guide ebook is designed to help CISOs and their teams ask the right questions and consider the right capabilities when looking for...

What's
New