Access Alert: CITC White Paper on Cloud Computing

Access Alert: CITC White Paper on Cloud Computing

Organizations and governments in the Middle East are no longer aiming to lead on a regional level only – they are looking to go global. The Kingdom of Saudi Arabia is a key example. The Communications and Information Technology Commission (CITC) recently released a study outlining the legislative and regulatory status of cloud computing at a global level. This study, which benchmarks Saudi Arabia against ten other countries and regions, has come at a crucial time, given the current global trend towards digitalization and data caused by the COVID-19 pandemic and the recent announcement that Google and Alibaba will work with Saudi entities to create cloud networks in the kingdom.

Moreover, CITC and the Kingdom’s Ministry of Communications and Information Technology (MCIT) have taken timely measures to bring cloud services under the ambit of regulations. In fact, CITC’s Cloud Computing Regulatory Framework, published in 2018, was updated and republished last December 2020 to better enable cloud service providers by rearranging the cloud service provider’s registration levels, aligning with data and cybersecurity requirements and creating a special track for providers classified as SMEs.

With these developments, the government’s cloud procurement ambitions and cybersecurity concerns remain high on the national agenda and there is growing interest in further strengthening the internal processes and capabilities required to harness technology and innovate effectively in the face of exponential growth. However, from a regulatory perspective, the KSA seems to be en route to achieve its Vision 2030 objectives, albeit facing one key policy challenge: the National Cybersecurity Authority’s Essential Cybersecurity Controls currently restricts cloud for public sector and critical national infrastructure to remain in-country due to data residency requirements.

Read the paper here.

Related Articles

The Practical Path Forward: Why Data Regulations 2.0 Must Be Built for Emerging Tech – And Fast

The Practical Path Forward: Why Data Regulations 2.0 Must Be Built for Emerging Tech – And Fast

This article is part of Access Partnership’s series ‘The New Privacy Playbook: Adapting to a Shifting Global Landscape’, which explores...

17 Jun 2025 Opinion
The Power of Light: Optical Links For Satellite Communications

The Power of Light: Optical Links For Satellite Communications

Making big waves in satellite communications, optical links, also known as Free-Space Optical (FSO) communication or laser communication, are transforming...

13 Jun 2025 Opinion
What Vietnam’s Political Transformation Means for Business Leaders

What Vietnam’s Political Transformation Means for Business Leaders

Vietnamese Communist Party General Secretary Tô Lâm and his administration are leading a streamlining of government that will fundamentally change the...

13 Jun 2025 Opinion
Access Alert: Ireland Launches SMS Sender ID Registry to Tackle Text Scams

Access Alert: Ireland Launches SMS Sender ID Registry to Tackle Text Scams

In 2022, Ireland recorded an alarming average of 1,000 fraud cases per day linked to scam calls and texts, with...

12 Jun 2025 Opinion