Algiers, January 21, 2026 – A new presidential decree outlines the creation of a dedicated structure for ensuring the security of information systems and data protection within public institutions, administrations, and organizations across Algeria.
Presidential Decree No. 26-07, dated January 7, 2026 (corresponding to Rajab 18, 1447), details the establishment, responsibilities, organization, and operational procedures of this vital new entity, referred to as ‘the Structure’ within the decree.
The core objective is to establish a dedicated body responsible for the security of information systems and the protection of data within each public institution, administration, and organization. This structure must operate independently from the existing IT department.
The ‘Structure’ will report directly to the highest authority within the respective institution, administration, or organization. It will be responsible for coordinating information systems security and data protection efforts with all relevant bodies, departments, and supervised entities.
Key responsibilities include developing and implementing an information systems security policy tailored to the specific institution, administration, or organization, in accordance with the national strategy. It will also oversee the creation of a risk map identifying potential threats to information systems security and the protection of personal data, and ensure the effective implementation of remediation plans.
Furthermore, the ‘Structure’ will manage and administer a suite of information systems security, data protection, and cyber resilience solutions. It will conduct audits and monitoring activities in the field of information systems security, collaborating with specialized authorities as needed.
The ‘Structure’ is also tasked with maintaining continuous vigilance and monitoring of the security of information systems under its jurisdiction. It is obligated to immediately report any cybersecurity incidents to the appropriate authorities and seek their assistance when necessary.
Externally, the head of the ‘Structure’ will coordinate with key stakeholders, including the National Agency for Information Systems Security (ANSI), the National Authority for the Protection of Personal Data, and any other institution or organization with which cooperation and coordination are essential for the effective operation of the ‘Structure’.
This initiative underscores the government’s commitment to strengthening cybersecurity and safeguarding sensitive data within the public sector.
