Angola Personal Data Protection Law (Law No. 22/11)
Angola's Law No. 22/11 on the Protection of Personal Data (2011) establishes the country's data protection framework. The Agência de Protecção de Dados (APD) serves as the supervisory authority. The law establishes data processing principles, individual rights, controller obligations, and provisions for cross-border transfers. Applies to processing of personal data by controllers established in Angola.
Framework summaries on this platform are AI-assisted interpretations for educational and compliance planning purposes. They do not reproduce or replace the official standards. Refer to the authoritative source for the definitive text. Framework names and trademarks belong to their respective organisations.
Framework Domains (19)
Awareness
| Code | Title |
|---|---|
| AO-PDPL-23 | Training and Awareness |
CCTV
| Code | Title |
|---|---|
| AO-PDPL-14 | Video Surveillance and Location Data |
Documentation
| Code | Title |
|---|---|
| AO-PDPL-19 | Records of Processing |
Enforcement
| Code | Title |
|---|---|
| AO-PDPL-20 | APD Cooperation and Audits |
Incident Response
| Code | Title |
|---|---|
| AO-PDPL-18 | Breach Response |
Legal Basis
| Code | Title |
|---|---|
| AO-PDPL-3 | Lawful Basis |
Marketing
| Code | Title |
|---|---|
| AO-PDPL-15 | Direct Marketing and Cookies |
Principles
| Code | Title |
|---|---|
| AO-PDPL-2 | General Processing Principles |
Processors
| Code | Title |
|---|---|
| AO-PDPL-12 | Processor Agreements |
Registration
| Code | Title |
|---|---|
| AO-PDPL-5 | APD Notification and Authorisation |
Rights
| Code | Title |
|---|---|
| AO-PDPL-7 | Right of Access |
| AO-PDPL-8 | Right of Rectification, Erasure and Blocking |
| AO-PDPL-9 | Right to Object |
Sanctions
| Code | Title |
|---|---|
| AO-PDPL-21 | Sanctions and Liability |
Scope
| Code | Title |
|---|---|
| AO-PDPL-1 | Scope and Application |
Sectoral
| Code | Title |
|---|---|
| AO-PDPL-22 | Sectoral Rules Health and Financial |
Security
| Code | Title |
|---|---|
| AO-PDPL-10 | Security Measures |
| AO-PDPL-11 | Confidentiality Obligations |
Special Categories
| Code | Title |
|---|---|
| AO-PDPL-17 | Children's Data |
| AO-PDPL-4 | Sensitive Data |
Transfers
| Code | Title |
|---|---|
| AO-PDPL-13 | Cross-Border Transfers |
Transparency
| Code | Title |
|---|---|
| AO-PDPL-6 | Information to Data Subjects |
Workplace
| Code | Title |
|---|---|
| AO-PDPL-16 | Employee Monitoring |
Your Compliance Coverage
If you comply with Angola Personal Data Protection Law (Law No. 22/11), you already cover:
GDPR
43%
10 controls mapped
Compare →ISO 37001:2016
4%
1 controls mapped
Compare →ISO 27018
4%
1 controls mapped
Compare →+ 5 more: ISO/IEC 42001:2023 (4%), ISO/IEC 27018:2019 (4%)
See all 8 mapped frameworks ↓Maps to 8 other frameworks
Frequently Asked Questions
What is Angola Personal Data Protection Law (Law No. 22/11)?
Angola Personal Data Protection Law (Law No. 22/11) is a compliance framework from Angola with 19 domains and 23 controls. Angola's Law No. 22/11 on the Protection of Personal Data (2011) establishes the country's data protection framework. The Agência de Protecção de Dados (APD) serves as the supervisory authority. The law establishes data processing principles, individual rights, controller obligations, and provisions for cross-border transfers. Applies to processing of personal data by controllers established in Angola. It is used by organisations to establish and maintain compliance with industry standards and regulatory requirements.
How many controls does Angola Personal Data Protection Law (Law No. 22/11) have?
Angola Personal Data Protection Law (Law No. 22/11) has 23 controls organised across 19 domains. The largest domains are Rights (3 controls), Security (2 controls), Special Categories (2 controls). Each control defines specific requirements that organisations must implement to achieve compliance.
What frameworks does Angola Personal Data Protection Law (Law No. 22/11) map to?
Angola Personal Data Protection Law (Law No. 22/11) maps to 8 other compliance frameworks. The top mapping partners are GDPR (43% coverage), ISO 37001:2016 (4% coverage), ISO 27018 (4% coverage). Use our comparison tool to explore control-level mappings between frameworks.
How do I get started with Angola Personal Data Protection Law (Law No. 22/11) compliance?
Start your Angola Personal Data Protection Law (Law No. 22/11) compliance journey by running a self-assessment on our platform to identify your current compliance posture. Our AI advisory can answer specific questions about Angola Personal Data Protection Law (Law No. 22/11) requirements, and cross-framework mapping helps you leverage existing controls from other frameworks you may already comply with. Create a free account to access all 23 controls and track your progress.
Start Your Compliance Journey
Create a free account to run self-assessments, get AI advisory, and track your compliance progress across 723 frameworks.
Get Started Free →Free forever — no credit card required