Notice Consent Regulations

Laos's LEDP outlines principles for electronic data protection with opt-out rights but does not mandate prior opt-in consent. It classifies electronic data into categories and establishes data controller responsibilities. The law is considered limited in scope and enforcement compared to more modern ASEAN data protection laws.

Bhutan's ICMA provides minimal data privacy coverage with limited digital scope. Only 7 of 10 second-generation data protection principles are included. There is no standalone data protection law, no dedicated DPA, and no specific provisions for cookie consent. The Act primarily focuses on cybercrime.