/ Global trends that anticipate the new digital landscape for Chile
January 22, 2026Chile is at a pivotal moment in shaping its digital future. As new data protection and cybersecurity laws move forward in their implementation, global trends are emerging that require organizations to look beyond compliance and adopt a more strategic approach.
Partner at Alessandri
In Chile, the digital regulatory landscape is undergoing an unprecedented update. In terms of personal data protection, Law No. 21,719 marked a milestone by regulating its processing and creating the future Personal Data Protection Agency. To ensure its implementation, a Ministerial Advisory Commission was established in 2025 to work on the implementation of the regulations before they come into force in December 2026. Its reports have defined priorities such as the establishment of the Agency, institutional strengthening, guidelines for international data transfers, and the application of the regulations in public bodies.
In addition to these advances, the first Cybersecurity Law has been enacted, with a National Agency already in operation and sectoral entities aligned. The regulatory framework has identified Operators of Vital Importance (OVIs) and declared various industries as Essential Services (ES)—including electricity, telecommunications, banking, health, and transportation—imposing specific obligations. OVIs must ensure the continuity of their services through risk management systems, certified continuity plans, periodic drills, the appointment of an independent Cybersecurity Officer, strict reporting deadlines, and immediate containment measures.
However, regulatory compliance must be complemented by a proactive look at international trends in data protection and digital rights. Issues such as the processing of minors’ data, age verification, the use of blockchain, biometric access, and valid consent in digital services anticipate challenges that must also be considered in Chile. The case of biometric data is particularly complex and requires international coordination to avoid regulatory asymmetries.
We want to focus on one central aspect: the protection of minors in the digital environment. According to the European General Data Protection Regulation, minors must receive enhanced protection, as they may be less aware of the risks, consequences, guarantees, and rights related to the processing of their personal data. Therefore, data controllers are required to specifically consider the risks arising from the processing of minors’ data in impact assessments and to ensure that security and safeguard measures are proportionate to their vulnerability. The experience of the French National Commission for Information Technology and Civil Liberties (CNIL) shows how the protection of minors and their digital rights has become a priority, with measures addressing issues such as access to sensitive content, cyberbullying, and media literacy. The Commission itself has promoted the development of workshops in schools, adapted educational resources, and collaborations with ministries and the media, initiatives that reflect the fact that social awareness is as important as technical regulation.
Along the same lines, Spain’s Data Protection Agency (AEPD) set up a Working Group on “Minors, Digital Health, and Privacy” in 2019, with the aim of studying and proposing initiatives to protect minors in the digital sphere. This group brings together actors from the public and private sectors and includes professional organizations and scientific societies, and has established itself as a permanent space for reflection and action on the safety of minors in the online world. The group’s work has led to various initiatives: digital education, digital health, and the Decalogue of Age Verification, which establishes criteria and requirements for control systems for access to adult online content to be effective and respectful of minors’ rights.
In conclusion, as Chile implements its Data Protection Law and Cybersecurity Framework Law, authorities and companies must look beyond immediate compliance. Incorporating the protection of minors as a central focus of the digital agenda and anticipating international trends will help consolidate a secure, reliable ecosystem that is aligned with global best practices.