Information Systems Security and Data Protection in Public Administrations and Institutions under Presidential Decree No. 07-26

Abstract

The article addresses the issue of information systems security and data protection within Algerian public administrations under Presidential Decree No. 26/07, as a legal framework regulating data protection in the context of digital transformation. It highlights that the expansion of e-government has led to a significant increase in data volume and cyber security risks, necessitating an effective legal and regulatory framework. Information systems security is defined as a set of measures ensuring the confidentiality, integrity, and availability of information, with a distinction made from cyber security.

The article also emphasizes that data protection, particularly personal and sensitive data, is based on legal principles such as legality, proportionality, and confidentiality, within a coherent framework combining constitutional and legislative provisions, notably Law 18-07. It further explains that Decree 26/07 establishes organizational rules including the allocation of responsibilities, data classification, and the implementation of internal security policies.

Moreover, the article presents protection mechanisms combining technical and organizational measures, while stressing the importance of the human factor, as well as the various forms of legal liability in cases of information security breaches. It concludes by underscoring the need to update the legal framework and strengthen training and institutional coordination to address evolving digital challenges.