Myanmar’s Cybersecurity Law 2025 introduces a comprehensive legal framework for cybersecurity governance, critical infrastructure protection, and digital platform regulation. It establishes regulatory oversight, licensing requirements, and enforcement mechanisms to combat cyber threats and ensure compliance.
The authors have prepared this publication to provide key insights of this new legislation to the readers. Key features discussed in this publication include:
- Mandatory licensing for cybersecurity service providers and digital platforms, with penalties for non-compliance.
- Data privacy obligations, including mandatory retention periods and potential government access to user data.
- Regulatory authority to suspend or control digital platforms in the interest of national security or public order.
Understanding these changes is essential for businesses operating in Myanmar’s digital landscape. At DFDL, we are closely monitoring these developments and are keen to hear from readers who may have any questions on how this law may impact their operations.
