Countries rushed to enact a law that guarantees legal protection of
personal data in the light of the widespread use of personal data in the daily
transactions, and companies relying on them in marketing plans. These laws
enfolded the concept of personal data, its types, its owner rights, the
obligations of the controller and the processor, the liability arising from its
violation and the resulting compensation, and the deterrent penalties, which
preserve the confidentiality and privacy of this data.
Within this framework, the research was divided into an introductory topic
related to the concept of personal data. The first chapter addressed the rights
of the data subject outlined in article (11) of the Personal Data Protection Law
issued by the Royal Decree No. 6/2022. Finally, the second chapter presented
the forms of attacks suffered by personal data, the resulting civil liability, and
the means adopted for its protection.
An analytical method and comparative method have been adopted in this
research between the Omani Personal Data Protection Law and the European
General Data Protection Regulation, in which a number of the most important
recommendations have been reached, the most important of which is the need
to issue the Executive Regulations for the Omani Personal Data Protection
Law, making the exercise of the rights stipulated in the law free of charge and
regulating the relationship between the processor and the controller on one
hand, and the processor and the owner of the personal data on the other hand.