Back to Frameworks

Angola Personal Data Protection Law (Law No. 22/11)

Angola
v2011
19 domains
23 controls

Angola's Law No. 22/11 on the Protection of Personal Data (2011) establishes the country's data protection framework. The Agência de Protecção de Dados (APD) serves as the supervisory authority. The law establishes data processing principles, individual rights, controller obligations, and provisions for cross-border transfers. Applies to processing of personal data by controllers established in Angola.

Verified

Framework summaries on this platform are AI-assisted interpretations for educational and compliance planning purposes. They do not reproduce or replace the official standards. Refer to the authoritative source for the definitive text. Framework names and trademarks belong to their respective organisations.

Framework Domains (19)

Awareness

1 controls
Controls in the Awareness domain of Angola Personal Data Protection Law (Law No. 22/11)1 controls
CodeTitle
AO-PDPL-23Training and Awareness

CCTV

1 controls
Controls in the CCTV domain of Angola Personal Data Protection Law (Law No. 22/11)1 controls
CodeTitle
AO-PDPL-14Video Surveillance and Location Data

Documentation

1 controls
Controls in the Documentation domain of Angola Personal Data Protection Law (Law No. 22/11)1 controls
CodeTitle
AO-PDPL-19Records of Processing

Enforcement

1 controls
Controls in the Enforcement domain of Angola Personal Data Protection Law (Law No. 22/11)1 controls
CodeTitle
AO-PDPL-20APD Cooperation and Audits

Incident Response

1 controls
Controls in the Incident Response domain of Angola Personal Data Protection Law (Law No. 22/11)1 controls
CodeTitle
AO-PDPL-18Breach Response

Legal Basis

1 controls
Controls in the Legal Basis domain of Angola Personal Data Protection Law (Law No. 22/11)1 controls
CodeTitle
AO-PDPL-3Lawful Basis

Marketing

1 controls
Controls in the Marketing domain of Angola Personal Data Protection Law (Law No. 22/11)1 controls
CodeTitle
AO-PDPL-15Direct Marketing and Cookies

Principles

1 controls
Controls in the Principles domain of Angola Personal Data Protection Law (Law No. 22/11)1 controls
CodeTitle
AO-PDPL-2General Processing Principles

Processors

1 controls
Controls in the Processors domain of Angola Personal Data Protection Law (Law No. 22/11)1 controls
CodeTitle
AO-PDPL-12Processor Agreements

Registration

1 controls
Controls in the Registration domain of Angola Personal Data Protection Law (Law No. 22/11)1 controls
CodeTitle
AO-PDPL-5APD Notification and Authorisation

Rights

3 controls
Controls in the Rights domain of Angola Personal Data Protection Law (Law No. 22/11)3 controls
CodeTitle
AO-PDPL-7Right of Access
AO-PDPL-8Right of Rectification, Erasure and Blocking
AO-PDPL-9Right to Object

Sanctions

1 controls
Controls in the Sanctions domain of Angola Personal Data Protection Law (Law No. 22/11)1 controls
CodeTitle
AO-PDPL-21Sanctions and Liability

Scope

1 controls
Controls in the Scope domain of Angola Personal Data Protection Law (Law No. 22/11)1 controls
CodeTitle
AO-PDPL-1Scope and Application

Sectoral

1 controls
Controls in the Sectoral domain of Angola Personal Data Protection Law (Law No. 22/11)1 controls
CodeTitle
AO-PDPL-22Sectoral Rules Health and Financial

Security

2 controls
Controls in the Security domain of Angola Personal Data Protection Law (Law No. 22/11)2 controls
CodeTitle
AO-PDPL-10Security Measures
AO-PDPL-11Confidentiality Obligations

Special Categories

2 controls
Controls in the Special Categories domain of Angola Personal Data Protection Law (Law No. 22/11)2 controls
CodeTitle
AO-PDPL-17Children's Data
AO-PDPL-4Sensitive Data

Transfers

1 controls
Controls in the Transfers domain of Angola Personal Data Protection Law (Law No. 22/11)1 controls
CodeTitle
AO-PDPL-13Cross-Border Transfers

Transparency

1 controls
Controls in the Transparency domain of Angola Personal Data Protection Law (Law No. 22/11)1 controls
CodeTitle
AO-PDPL-6Information to Data Subjects

Workplace

1 controls
Controls in the Workplace domain of Angola Personal Data Protection Law (Law No. 22/11)1 controls
CodeTitle
AO-PDPL-16Employee Monitoring

Your Compliance Coverage

If you comply with Angola Personal Data Protection Law (Law No. 22/11), you already cover:

Maps to 8 other frameworks

23 total controls
GDPR
10 source controls mapped|12 target controls covered
43%
ISO 37001:2016
1 source controls mapped|1 target controls covered
4%
ISO 27018
1 source controls mapped|1 target controls covered
4%
ISO/IEC 42001:2023
1 source controls mapped|1 target controls covered
4%
ISO/IEC 27018:2019
1 source controls mapped|1 target controls covered
4%
ISO 19011
1 source controls mapped|1 target controls covered
4%
ISO 31000:2018
1 source controls mapped|1 target controls covered
4%
ISO/IEC 17025:2017 - General Requirements for Testing and Calibration
1 source controls mapped|1 target controls covered
4%

Frequently Asked Questions

What is Angola Personal Data Protection Law (Law No. 22/11)?

Angola Personal Data Protection Law (Law No. 22/11) is a compliance framework from Angola with 19 domains and 23 controls. Angola's Law No. 22/11 on the Protection of Personal Data (2011) establishes the country's data protection framework. The Agência de Protecção de Dados (APD) serves as the supervisory authority. The law establishes data processing principles, individual rights, controller obligations, and provisions for cross-border transfers. Applies to processing of personal data by controllers established in Angola. It is used by organisations to establish and maintain compliance with industry standards and regulatory requirements.

How many controls does Angola Personal Data Protection Law (Law No. 22/11) have?

Angola Personal Data Protection Law (Law No. 22/11) has 23 controls organised across 19 domains. The largest domains are Rights (3 controls), Security (2 controls), Special Categories (2 controls). Each control defines specific requirements that organisations must implement to achieve compliance.

What frameworks does Angola Personal Data Protection Law (Law No. 22/11) map to?

Angola Personal Data Protection Law (Law No. 22/11) maps to 8 other compliance frameworks. The top mapping partners are GDPR (43% coverage), ISO 37001:2016 (4% coverage), ISO 27018 (4% coverage). Use our comparison tool to explore control-level mappings between frameworks.

How do I get started with Angola Personal Data Protection Law (Law No. 22/11) compliance?

Start your Angola Personal Data Protection Law (Law No. 22/11) compliance journey by running a self-assessment on our platform to identify your current compliance posture. Our AI advisory can answer specific questions about Angola Personal Data Protection Law (Law No. 22/11) requirements, and cross-framework mapping helps you leverage existing controls from other frameworks you may already comply with. Create a free account to access all 23 controls and track your progress.

Start Your Compliance Journey

Create a free account to run self-assessments, get AI advisory, and track your compliance progress across 723 frameworks.

Get Started Free →

Free forever — no credit card required