Integration Between Data Disclosure Governance and Legal Protection: An Analytical Legal Study

Abstract

This study examines the integration between data disclosure governance and its legal protection within Jordanian legislation, focusing on the Personal Data Protection Law No. (24) of 2023 and the Data Disclosure Regulation No. (28) of 2025. The research aims to achieve an effective balance between institutional transparency requirements and the protection of individuals’ digital rights, particularly the right to privacy. Employing a descriptive analytical methodology, the study explores the regulatory concepts of disclosure governance on one hand, and the legal and regulatory safeguards for data protection on the other.

The study finds that Jordanian legislation has established advanced institutional mechanisms, including the formation of a Data Protection Council and a specialized regulatory unit, alongside the mandatory appointment of a data controller. These mechanisms enhance both internal and external oversight of data processing, thereby ensuring clear institutional governance.

Furthermore, the study recommends that the legislature incorporate legal provisions concerning the “data minimization” principle within the disclosure framework, to guarantee that only necessary data are processed for specific and legitimate purposes, thereby supporting a balanced legal and regulatory approach between disclosure and protection