Territory: Bolivia
Data Protection Regulations:
- Observation: Bolivia does not have a comprehensive data protection law, however, the telecommunications law 164 is in force, and the DS 1793 that regulates the use of personal data by natural or legal persons that provide services related to digital certification, e-government, free software, electronic mail and the use of digital documents and signatures in the Plurinational State of Bolivia.
Link: https://www.lexivox.org/norms/BO-RE-DSN1793.xhtml
Regulatory purpose: To regulate the access, use and development of Information and Communication Technologies - ICTs, within the framework of Title IV of Law No. 164 of 8 August 2011, General Law on Telecommunications, Information and Communication Technologies.
Parties:
- Data controller: YES, applies to entities regulated by the telecommunications law.
- Data Processor: No.
- Data Protection Officer: No.
- Supervisory Authority: Telecommunications Authority.
Principles: Finality; Truthfulness; Transparency; Security; Confidentiality.
Obligations:
- Register of Processing Activities: No.
- Impact Assessments: No.
- Risk analysis: No.
- Technical and organisational security measures: Yes.
- Duty to inform: Yes.
- Data Protection Officer: No.
Data subjects' rights:
- Right of Access: Yes.
- Right of rectification: Yes.
- Right of Suppression: Yes.
- Right to limitation: No.
- Right to portability: No.
- Right to object: Yes.
- Automated individual decisions, including profiling: No.
International transfers: No.
Penalty regime: Administrative Penalties of three hundred and sixtieths (1/360) of 1% of the gross income of the offender.
Certification or accreditation of compliance for companies: No.
