The Federal Council for Transparency (CFT) and the Agency for Access to Public Information (AAIP) issued a document outlining the Guidelines for the formulation of a Personal Data Protection Plan aimed at the public sector (the “Guidelines”).
Unlike the private sector, whose legal basis for the processing of personal data is consent, the government is authorized to do so within the scope of its functions. Therefore, it is important for public bodies to comply with the principles and regulations governing the matter and carry out an appropriate processing of personal data.
The Guidelines specify the content that every Personal Data Protection Plan must have, including a privacy policy to comply with the duty to inform data subjects. Likewise, the Guidelines highlight the specific role of the data processor, especially when it is a cloud hosting service provider, whether public or private, national or foreign.
Link: https://www.argentina.gob.ar/sites/default/files/documento_datos_2023.pdf.