Complying with the ECC and DCC of the National Cybersecurity Authority (NCA)

With the digital transformation and easy access and sharing of data, protecting personal data is becoming challenging.

The Kingdom of Saudi Arabia is striving towards a new era under the National Vision 2030 to improve government effectiveness and transparency, develop economic diversification with digital and data, and participate in the global economy based on public trust and international partnerships.

The ECC and DCC of the National Cybersecurity Authority

The National Cybersecurity Authority (NCA) has developed a set of essential cybersecurity controls (ECC-1: 2018) for all organizations to implement. These practices were derived from the NCA’s review and consideration of multiple national frameworks, standards, and international experiences. The NCA also surveyed opinions from various organizations about how best practices should work in this area to be better protected against future attacks.

In continuation of its role in regulating and protecting the Kingdom’s cyberspace, NCA has issued the Data Cybersecurity Controls (DCC-1:2022). These controls are designed based on comprehensive research of multiple national and international cybersecurity standards, frameworks, and controls.

Three Reasons Why Data-Centric Security Helps Comply with the ECC and DCC of the National Cybersecurity Authority

Control Who & What

Control who can use the information and to what extent

Revoke Access

Revoke access to information - whether it is inside or outside the organization - whenever you deem necessary

Track and Audit

Track the use of information wherever it travels and automatically generate reports consisting of details such as the devices and IP addresses that use the information

Learn More

Use Cases

Comply with UAE Resolution

Get access to Seclore uses cases.

Learn More

Infographic

Data Breaches in the Middle East

Whitepaper

Complying with the SDAIA Regulations

Infographic

Cookie	Duration	Description
AWSALBCORS	7 days	This cookie is managed by Amazon Web Services and is used for load balancing.
connect.sid	2 hours	This cookie is used for authentication and for secure log-in. It registers the log-in information.
cookielawinfo-checbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-advertisement	1 year	Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Advertisement" category .
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
JSESSIONID	6 hours	Used by sites written in JSP. General purpose platform session cookies that are used to maintain users' state across page requests.
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Cookie	Duration	Description
__cf_bm	30 minutes	This cookie, set by Cloudflare, is used to support Cloudflare Bot Management.
bcookie	2 years	LinkedIn sets this cookie from LinkedIn share buttons and ad tags to recognize browser ID.
lang	session	This cookie is used to store the language preferences of a user to serve up content in that stored language the next time user visit the website.
lidc	1 day	LinkedIn sets the lidc cookie to facilitate data center selection.

Cookie	Duration	Description
ADRUM_BT1	past	This cookie is used to optimize the visitor experience on the website by detecting errors on the website and share the information to support staff.
ADRUM_BTa	past	This cookie is used to optimize the visitor experience on the website by detecting errors on the website and share the information to support staff.
dtCookie	session	This cookie is set by the provider Dynatrace. This is a session cookie used to collect information for Dynatrace. Its a system to track application performance and user errors.

Cookie	Duration	Description
_ga	2 years	The _ga cookie, installed by Google Analytics, calculates visitor, session and campaign data and also keeps track of site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognize unique visitors.
_gat_UA-60622713-1	1 minute	A variation of the _gat cookie set by Google Analytics and Google Tag Manager to allow website owners to track visitor behaviour and measure site performance. The pattern element in the name contains the unique identity number of the account or website it relates to.
_gcl_au	3 months	Provided by Google Tag Manager to experiment advertisement efficiency of websites using their services.
_gid	1 day	Installed by Google Analytics, _gid cookie stores information on how visitors use a website, while also creating an analytics report of the website's performance. Some of the data that are collected include the number of visitors, their source, and the pages they visit anonymously.
_uetsid	1 day	This cookies are used to collect analytical information about how visitors use the website. This information is used to compile report and improve site.
CONSENT	2 years	YouTube sets this cookie via embedded youtube-videos and registers anonymous statistical data.
pardot	past	The pardot cookie is set while the visitor is logged in as a Pardot user. The cookie indicates an active session and is not used for tracking.

Cookie	Duration	Description
bscookie	2 years	This cookie is a browser ID cookie set by Linked share Buttons and ad tags.
IDE	1 year 24 days	Google DoubleClick IDE cookies are used to store information about how the user uses the website to present them with relevant ads and according to the user profile.
MUID	1 year 24 days	Bing sets this cookie to recognize unique web browsers visiting Microsoft sites. This cookie is used for advertising, site analytics, and other operations.
test_cookie	15 minutes	The test_cookie is set by doubleclick.net and is used to determine if the user's browser supports cookies.
VISITOR_INFO1_LIVE	5 months 27 days	A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface.
YSC	session	YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt-remote-device-id	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt.innertube::nextId	never	This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen.
yt.innertube::requests	never	This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen.

Cookie	Duration	Description
_ce.cch	session	No description
_ce.s	1 year	No description
_uetvid	1 year 24 days	No description available.
alr	30 minutes	No description
AnalyticsSyncHistory	1 month	No description
asst	30 minutes	No description available.
AWSALB	7 days	AWSALB is a cookie generated by the Application load balancer in the Amazon Web Services. It works slightly different from AWSELB.
cass	2 hours	No description available.
gdId	10 years	No description
gdsid	6 hours	No description
GSESSIONID	2 hours	No description available.
li_gc	2 years	No description
lpv323341	30 minutes	No description
route-gcrowd-fe-prod	session	No description available.
SameSite	past	No description available.
trs	1 year	No description available.
UserMatchHistory	1 month	Linkedin - Used to track visitors on multiple websites, in order to present relevant advertisement based on the visitor's preferences.
visitor_id323341	1 year 9 months 10 days	No description
visitor_id323341-hash	1 year 9 months 10 days	No description
visitorId	1 year	No description
widgetizedstickybar	1 month	No description available.

Complying with the ECC and DCC of the National Cybersecurity Authority (NCA)

The ECC and DCC of the National Cybersecurity Authority

Three Reasons Why Data-Centric Security Helps Comply with the ECC and DCC of the National Cybersecurity Authority

Control Who & What

Revoke Access

Track and Audit

Learn More

Comply with UAE Resolution

Data Breaches in the Middle East

Complying with the SDAIA Regulations

Incoming Data Protection