Chief Adviser Professor Muhammad Yunus presided over the meeting of the Advisory Council at his office today. Photo : PID

DHAKA, Oct 9, 2025 (BSS) - The government today approved drafts of the "Personal Data Protection Ordinance, 2025," and "National Data Governance Ordinance, 2025" aimed at ensuring the privacy, security, and ownership of citizens' personal information and establishing an integrated framework for data management.

The advisory council today gave the final approval to the ordinances at its meeting at the Chief Adviser's Office (CAO) in the city with Chief Adviser Professor Muhammad Yunus in the chair.

The council also approved the draft of the Cyber Security (amendment) Ordinance 2025. 

Chief Adviser's Press Secretary Shafiqul Alam revealed it at a briefing at the Foreign Service Academy here this afternoon following the meeting. 

Special Assistant to the Chief Adviser for the Ministry of Posts, Telecommunications and Information Technology Faiz Ahmed Taiyeb also spoke at the briefing.

About the approval of the two ordinances- data protection and governance - Taiyeb said it will open a new chapter in the country's data governance and protection of citizens' information.

He explained that the Personal Data Protection Ordinance, 2025 has been designed to ensure the privacy, security, and ownership of citizens' personal information. 

The ordinance, comprising 57 sections, legally recognizes each citizen as the owner of their personal data, he said, adding it makes mandatory individual consent for the collection, storage, transfer, and use of personal data. 

Consent from parents or legal guardians will be required when processing data related to children or persons with disabilities, Taiyeb said, adding that the ordinance also includes strict provisions for handling sensitive information, with administrative fines and penalties for violations.

About the National Data Governance Ordinance, 2025, the special assistant said it has been formulated to align with global technological changes, improve citizen services, and establish an integrated framework for data management. 

The ordinance contains 68 sections and provides for the lawful processing of personal data, secure interoperability among government and private entities, and the establishment of an independent body titled the "National Data Management Authority", Taiyeb added.