1. For the purposes of these Rules, the terms and phrases used herein shall have the meanings ascribed to them in Article 1 of the Personal Data Protection Law Issued by Royal Decree No. (M/19) dated 9/2/1443 AH, amended by Royal Decree No. (M/148) dated 5/9/1444 AH and Article 1 of the Implementing Regulation of the Law, unless expressly defined within the body of these Rules.
2. The following terms and phrases -wherever used in these rules- shall have the meanings assigned to them, unless the context requires otherwise:
Rules: The Rules Governing the National Register of Controllers.
Competent Authority: Saudi Data & AI Authority (SDAIA).
The Platform: National Data Governance Platform.
National Register: A way to monitor and follow up on Controllers, as well as assist them in raising their level of compliance with the Law and the Regulations. Additionally, the National Register provides services related to personal data protection procedures.
Personal Data Protection Officer: Any natural person designated by the Controller to serve as the Personal Data Protection Officer. This officer shall be responsible for personal data protection, ensuring adherence to the Law and the Regulations within the Controller. The officer shall also monitor and supervise relevant procedures within the Controller and receive requests related to personal data in accordance with the Law and the Regulations.
Delegate: A designated delegate authorized to act on behalf of the Controller for the purposes of completing registration procedures on the Platform.