What are the data protection regulations in Colombia?
Posted: Thu Jan 23, 2025 9:19 am
Within the development of a Comprehensive Personal Data Protection Program, it is very important to know which regulations make up the framework for compliance with data protection in Colombia. For this reason, in this article you will find the most important regulations to take into account when you decide to effectively respond to the call to safeguard the privacy and security of the personal information for which you are responsible.
Colombian Political Constitution 1991:
Article 15, Rights, Guarantees and Duties.
Laws:
Statutory Law 1266 of 2008, which establishes the general ios database of Habeas Data and regulates the management of information contained in personal databases, especially financial, credit, commercial, services and information from third countries, and establishes other provisions.
Law 1581 of 2012, which establishes general provisions for the Protection of Personal Data.
Law 1712 of 2014, which creates the transparency law and the right of access to national public information and dictates other provisions.
Decrees:
Decree 1727 of 2009, which determines the manner in which operators of the Financial, Credit, Commercial, Services and Third Country Information Data Banks must present the information of the information holders.
Decree 2952 of 2010, regulating articles 12 and 13 of Law 1266 of 2008.
Decree 1377 of 2013, which partially regulates Law 1581 of 2012.
Decree 886 of 2014, regulating article of Law 1581 of 2012, relating to the National Database Registry.
Resolutions:
Resolution 76434 of 2012, which repeals the content of Title V of the Sole Circular of the Superintendency of Industry and Commerce, on Accreditation and provides instructions regarding the Protection of Personal Data, in particular, regarding compliance with Law 1266 of 2008, on reports of financial, credit, commercial, service information and information from third countries, which are incorporated in the aforementioned Title.
Resolution 20752 of 2013 , which sets the rates for instruction, training, teaching or dissemination services provided by the Superintendency of Industry and Commerce on issues related to Personal Data Protection.
Sentences:
Judgment C – 748 of 2011, Constitutional Control of Statutory Bill No. 184 of 2010 Senate; 046 of 2010 Chamber, «By which general provisions for the Protection of Personal Data are dictated».
Judgment C – 1011 of 2008, Draft Statutory Law on Habeas Data and Management of Information contained in Personal Databases.
Circulars
Circular 02 of 2015 , provides instructions to those responsible for the processing of personal data, private legal entities registered in the chambers of commerce and mixed economy companies, for the purposes of registering their databases in the National Database Registry – RNBD
Guides
Guide to Demonstrated Responsibility, This document provides guidance on the path to building a Comprehensive Personal Data Management Program and is directed to those who are subject to compliance with the general regime of Personal Data Protection and are supervised by the Superintendency of Industry and Commerce.
Additionally, if you wish to learn more about this information, you can do so by clicking here ! There you will find the details of each of the regulations mentioned. I hope that this information is useful to you during the process of learning about data protection in Colombia.
Colombian Political Constitution 1991:
Article 15, Rights, Guarantees and Duties.
Laws:
Statutory Law 1266 of 2008, which establishes the general ios database of Habeas Data and regulates the management of information contained in personal databases, especially financial, credit, commercial, services and information from third countries, and establishes other provisions.
Law 1581 of 2012, which establishes general provisions for the Protection of Personal Data.
Law 1712 of 2014, which creates the transparency law and the right of access to national public information and dictates other provisions.
Decrees:
Decree 1727 of 2009, which determines the manner in which operators of the Financial, Credit, Commercial, Services and Third Country Information Data Banks must present the information of the information holders.
Decree 2952 of 2010, regulating articles 12 and 13 of Law 1266 of 2008.
Decree 1377 of 2013, which partially regulates Law 1581 of 2012.
Decree 886 of 2014, regulating article of Law 1581 of 2012, relating to the National Database Registry.
Resolutions:
Resolution 76434 of 2012, which repeals the content of Title V of the Sole Circular of the Superintendency of Industry and Commerce, on Accreditation and provides instructions regarding the Protection of Personal Data, in particular, regarding compliance with Law 1266 of 2008, on reports of financial, credit, commercial, service information and information from third countries, which are incorporated in the aforementioned Title.
Resolution 20752 of 2013 , which sets the rates for instruction, training, teaching or dissemination services provided by the Superintendency of Industry and Commerce on issues related to Personal Data Protection.
Sentences:
Judgment C – 748 of 2011, Constitutional Control of Statutory Bill No. 184 of 2010 Senate; 046 of 2010 Chamber, «By which general provisions for the Protection of Personal Data are dictated».
Judgment C – 1011 of 2008, Draft Statutory Law on Habeas Data and Management of Information contained in Personal Databases.
Circulars
Circular 02 of 2015 , provides instructions to those responsible for the processing of personal data, private legal entities registered in the chambers of commerce and mixed economy companies, for the purposes of registering their databases in the National Database Registry – RNBD
Guides
Guide to Demonstrated Responsibility, This document provides guidance on the path to building a Comprehensive Personal Data Management Program and is directed to those who are subject to compliance with the general regime of Personal Data Protection and are supervised by the Superintendency of Industry and Commerce.
Additionally, if you wish to learn more about this information, you can do so by clicking here ! There you will find the details of each of the regulations mentioned. I hope that this information is useful to you during the process of learning about data protection in Colombia.