TheArtOfService
Cross-Framework Mapping

Costa Rica Personal Data Protection Law (Law No. 8968) as amended by Executive Decree No. 42089-MGPvsGDPR

See exactly how Costa Rica Personal Data Protection Law (Law No. 8968) as amended by Executive Decree No. 42089-MGP controls map to GDPR. Pre-computed mappings, identified gaps, and coverage analysis.

41
Controls Mapped
0
Gaps Found
39%
Coverage

According to the TheArtOfService Compliance Knowledge Graph:

Costa Rica Personal Data Protection Law (Law No. 8968) as amended by Executive Decree No. 42089-MGP maps to GDPR with 39% coverage across 13 directly mapped controls. Analysis of 31 Costa Rica Personal Data Protection Law (Law No. 8968) as amended by Executive Decree No. 42089-MGP controls identifies 24 compliance gaps — primarily concentrated in Chapter III - Rights of Data Subjects.

Source: TheArtOfService Knowledge Graph | 31 controls analysed | 693 frameworks | 820K+ cross-framework mappings

Control Mappings

Showing 20 of 41 mapped controls across 5 domains. Sign up to explore all 820K+ mappings across 693 frameworks.

Chapter III - Rights of Data Subjects(15 mappings)

Art. 10Consent Requirements
GDPR-Art.20Right to data portability
Art. 26Outsourcing of Personal Information Processing6 targets
Art. 19Consent Management Controls
GDPR-Art.10Processing of personal data relating to criminal convictions
GDPR-Art.11Processing which does not require identification
GDPR-Art.15Right of access by the data subject
GDPR-Art.19Notification obligation regarding rectification, erasure or restriction
GDPR-Art.9Processing of special categories of personal data
Art. 8Data Categories6 targets
Art. 19Consent Management Controls
GDPR-Art.10Processing of personal data relating to criminal convictions
GDPR-Art.11Processing which does not require identification
GDPR-Art.15Right of access by the data subject
GDPR-Art.19Notification obligation regarding rectification, erasure or restriction
GDPR-Art.9Processing of special categories of personal data
Art. 9Free Data Sharing
GDPR-Art.20Right to data portability
Cl. 12Right to Data Portability
GDPR-Art.20Right to data portability

Chapter IV - Obligations of Data Controllers(5 mappings)

Art. 12Data Ownership5 targets
Art. 19Consent Management Controls
GDPR-Art.10Processing of personal data relating to criminal convictions
GDPR-Art.11Processing which does not require identification
GDPR-Art.15Right of access by the data subject
GDPR-Art.19Notification obligation regarding rectification, erasure or restriction

+21 more mappings

Plus AI-powered gap analysis, compliance advisory, PDF exports, and cross-mapping for all 693 frameworks.

Create Free Account →

Free forever — no credit card required

Related Comparisons

Other Costa Rica Personal Data Protection Law (Law No. 8968) as amended by Executive Decree No. 42089-MGP comparisons

Costa Rica Personal Data Protection Law (Law No. 8968) as amended by Executive Decree No. 42089-MGP vs BS 65000:2014 — Guidance on Organizational Resilience15 mappingsCosta Rica Personal Data Protection Law (Law No. 8968) as amended by Executive Decree No. 42089-MGP vs Serbia Law on Personal Data Protection (2018)14 mappingsCosta Rica Personal Data Protection Law (Law No. 8968) as amended by Executive Decree No. 42089-MGP vs Montenegro Law on Personal Data Protection (2023)14 mappingsCosta Rica Personal Data Protection Law (Law No. 8968) as amended by Executive Decree No. 42089-MGP vs North Macedonia Law on Personal Data Protection (2020)14 mappingsCosta Rica Personal Data Protection Law (Law No. 8968) as amended by Executive Decree No. 42089-MGP vs Iceland Data Protection and Processing of Personal Data Act (Act No. 90/2018)14 mappingsCosta Rica Personal Data Protection Law (Law No. 8968) as amended by Executive Decree No. 42089-MGP vs Uruguay Personal Data Protection Act (Law No. 18.331)14 mappingsCosta Rica Personal Data Protection Law (Law No. 8968) as amended by Executive Decree No. 42089-MGP vs Ghana Data Protection Act 2012 (Act 843)14 mappingsCosta Rica Personal Data Protection Law (Law No. 8968) as amended by Executive Decree No. 42089-MGP vs Australia Consumer Data Right — Banking (CDR)14 mappings

Other GDPR comparisons

ISO 27001:2022 vs GDPR20 mappingsEU In Vitro Diagnostic Medical Devices Regulation (IVDR) vs GDPR13 mappingsEthiopia Personal Data Protection Proclamation (No. 1321/2024) vs GDPR13 mappingsDigital Services Act (DSA) - Regulation (EU) 2022/2065 vs GDPR13 mappingsEU Network Code on Cybersecurity for the Electricity Sector vs GDPR13 mappingsAfrican Union Malabo Convention vs GDPR13 mappingsPakistan Personal Data Protection Bill 2023 vs GDPR13 mappingsPortugal Law No. 58/2019 — Data Protection Implementation Act vs GDPR13 mappings

Stop Paying Consultants to Read Spreadsheets

AI-powered compliance intelligence across 693 frameworks — at a fraction of consulting costs.

$0/forever

Free

  • 693 framework browser
  • Cross-framework mappings (820K+)
  • 824 compliance assessments
  • 3 AI queries & searches per day
Get Started Free
Recommended
$49/month

Professional

  • Unlimited AI Compliance Advisory
  • Unlimited full-text search
  • Framework self-assessment
  • PDF, Excel & CSV exports
Start 7-Day Free Trial →

Popular framework comparisons

NIST CSF vs NIST 800-53ISO 27001 vs NIST CSFCMMC vs NIST 800-53FedRAMP vs NIST 800-53NIST CSF vs SOC 2HIPAA vs NIST 800-53ISO 27001 vs SOC 2ISO 27001 vs ISO 27701

What are the key differences between Costa Rica Personal Data Protection Law (Law No. 8968) as amended by Executive Decree No. 42089-MGP and GDPR?

Costa Rica Personal Data Protection Law (Law No. 8968) as amended by Executive Decree No. 42089-MGP has 31 controls across its framework, while GDPR covers 44 controls. Direct mapping analysis identifies 13 overlapping controls (39% coverage). The frameworks diverge most significantly in Chapter III - Rights of Data Subjects, where 7 Costa Rica Personal Data Protection Law (Law No. 8968) as amended by Executive Decree No. 42089-MGP controls have no direct GDPR equivalent.

How many controls map between Costa Rica Personal Data Protection Law (Law No. 8968) as amended by Executive Decree No. 42089-MGP and GDPR?

Of 31 total Costa Rica Personal Data Protection Law (Law No. 8968) as amended by Executive Decree No. 42089-MGP controls, 13 map directly to GDPR controls — representing 39% coverage. The remaining 24 controls represent compliance gaps requiring additional documentation or compensating controls to satisfy both frameworks simultaneously.

What are the compliance gaps when mapping Costa Rica Personal Data Protection Law (Law No. 8968) as amended by Executive Decree No. 42089-MGP to GDPR?

24 Costa Rica Personal Data Protection Law (Law No. 8968) as amended by Executive Decree No. 42089-MGP controls have no direct equivalent in GDPR. The highest concentration of gaps is in Chapter III - Rights of Data Subjects with 7 unmapped controls. These gaps represent areas where additional controls, policies, or documentation must be created to achieve compliance with both frameworks.

Which control domains have the most gaps between Costa Rica Personal Data Protection Law (Law No. 8968) as amended by Executive Decree No. 42089-MGP and GDPR?

The domain with the highest gap count is Chapter III - Rights of Data Subjects (7 gaps). Export the full domain-by-domain gap breakdown via the Professional tier to generate a prioritised remediation roadmap.

Related Resources

How to Map Controls Across Frameworks|Multi-Framework Compliance Guide|Compliance Glossary

This platform provides educational compliance tools, not legal, regulatory, or professional compliance advice. Cross-framework mappings are AI-assisted interpretations and do not reproduce or replace official standards. Framework names and trademarks belong to their respective owners. Consult qualified professionals for your specific compliance requirements. See our Terms of Service.