Myanmar has introduced a new cybersecurity law, which officially took effect on January 1, 2025. This comprehensive legislation aims to strengthen the country’s digital infrastructure and tackle emerging cyber threats. The law outlines a variety of offenses related to cybercrime, including the unauthorized establishment of VPN services and online gambling systems. Those who break these laws can face severe penalties, including imprisonment and substantial fines. The law also stresses the importance of securing critical digital infrastructure and taking proactive measures to prevent cyberattacks.
A significant aspect of the law is its expansion of the definition of identity theft, now encompassing medical and health insurance information. This will provide additional protection for personal data against cybercriminals targeting sensitive information. Furthermore, the law mandates that all digital platform services must comply with new security standards, including obtaining proper licenses and maintaining registration. These measures are designed to create a more secure online environment for both individuals and businesses in Myanmar.
One of the law’s key provisions focuses on the regulation of cybersecurity services. Any entity providing such services without the necessary authorization will face penalties, including fines and potential imprisonment. For example, organizations offering services without a valid license or those failing to renew their licenses could face significant fines, while digital platform service operators with over 100,000 users will be subject to strict registration requirements. This part of the law aims to ensure that cybersecurity service providers meet national standards and contribute to the overall security of the digital landscape.
Overall, Myanmar’s new cybersecurity law seeks to create a more secure and resilient digital ecosystem. By addressing a wide range of cyber offenses and imposing strict penalties, the government aims to protect the nation’s critical information infrastructure, prevent cyberattacks, and ensure the safety of its citizens’ personal data. As the law is enforced, businesses and individuals alike will need to remain vigilant in adhering to these new regulations to avoid potential legal and financial consequences.
