PRESIDENTIAL DECREE OF THE REPUBLIC OF UZBEKISTAN

of March 10, 2026 No. UP-38

About determination of Strategy of cyber security of the Republic of Uzbekistan and enhancement of system of the prevention of cybercrime

For the purpose of effective protection of interests of the personality, society and the state in cyberspace, I decide ensuring stability of information infrastructure, determination of the priority directions of further strengthening of cyber security in industries of digital economy, enhancement of system of the prevention of cybercrime, and also forming and strengthening of culture of cyber security of citizens:

1. Determine the main strategic objectives and tasks of the Republic of Uzbekistan in the field of cyber security:

(a) purposes:

(i) strengthening of national cyberstability, protection of critical information and state digital infrastructure;

(ii) system decrease in cyberrisks and increase in level of digital security of citizens, private sector and state;

(iii) active counteraction of cybercrime;

(iv) development of digital innovations, technologies of artificial intelligence and strengthening of technological independence in the field of cyber security;

(v) development of international cooperation and participation in processes of global regulation of cyberspace;

(b) tasks:

(i) creation of the national centers of response to cyberthreats and systems of their early detection, and also operational data exchange about cyberthreats;

(ii) development of national infrastructure of digital identification, authentication and management of accesses, and also domestic software and hardware solutions;

(iii) enhancement of the legislation and implementation of standards in the field of data protection, increases in responsibility of private sector and response to cyberincidents;

(iv) increase in opportunities of digital criminalistics and capacity of specialized divisions of law enforcement agencies;

(v) participation in the international cyberdoctrines, agreements and joint investigations of cyberincidents.

2. Approve:

(a) The strategy of cyber security of the Republic of Uzbekistan 2026 - 2030 (further - Strategy) according to appendix No. 1;

(b) "Road map" on strategy implementation of cyber security of the Republic of Uzbekistan for 2026 - 2030 (further - "Road map") according to appendix No. 2.

3. Heads of state bodies and organizations bear the personal responsibility for timely and effective implementation of measures, determined in Strategy and "Road map".

4. Create since April 1, 2026:

(a) based on the relevant structural divisions in the Ministries of Justice, Energy ministries and the Tax Committee within the operating established posts Department of ensuring cyber security in number of at least 4 established posts;

(b) in the following state bodies and the organizations within the operating established posts, and also within the salary fund the structural divisions responsible for ensuring cyber security in:

(i) Committee of industrial, radiation and nuclear safety under the Cabinet of Ministers;

(ii) The agency of migration under the Cabinet of Ministers;

(iii) The national agency on energy efficiency under the Cabinet of Ministers;

(iv) Department of migration and personalisation under the Ministry of Internal Affairs;

(v) The agency on defense industry under the Ministry of Defence;

(vi) The agency of civil aviation under the Ministry of transport;

(vii) The agency of innovative development under the Ministry of the higher education, science and innovations;

(viii) The Uzarkhiv agency under the Ministry of Justice;

(ix) Committee on development of the competition and consumer protection;

(x) Agency on cases of youth;

(xi) JSC Uzbekgidroenergo.

5. To provide the state bodies and the organizations provided in item 4 of this Decree until the end of 2026 to the secretariat of the Security Council in case of the President of the Republic of Uzbekistan information on results of activities of the created divisions.

6. Under the chairmanship of the secretary of the Security Council in case of the President of the Republic of Uzbekistan to create National coordination council on ensuring cyber security and fight against cybercrime.

7. To the secretariat of the Security Council in case of the President of the Republic of Uzbekistan in week time to approve provision and structure of National coordination council.

8. Create since April 1, 2026 the working groups of specialists of the Department of Energy, the Ministry of Health, Ministry of preschool and school education, the higher education, science and innovations, the Ministries of Justice, the Ministries of Internal Affairs, the Ministries of Defence, the Central bank, and also the organizations responsible for assessment of condition of ensuring cyber security in information systems in the field of the digital government and the bank and financial sphere, and also till July 1, 2026 to provide information on results of assessment in the secretariat of the Security Council in case of the President of the Republic of Uzbekistan.

9. Approve the offer of the Ministry of digital technologies and Service of state security on permission to the state bodies and the organizations which do not have the relevant structural division (ranking officer) on ensuring cyber security, or sufficient forces and means, to use services of the organizations rendering outsourcing services in ensuring cyber security.

10. Establish procedure according to which state bodies and the organizations can use only services of the legal entities included in the register of the organizations rendering outsourcing services in ensuring cyber security, in accordance with the established procedure.

11. To service of state security:

(a) till August 1, 2026 together with the Ministry of digital technologies to introduce to the Cabinet of Ministers the draft of the resolution providing order of registration of the organizations rendering outsourcing services in ensuring cyber security, and also procedure for use of this service;

(b) to keep the register of the organizations rendering outsourcing services in ensuring cyber security.

Disclaimer! This text was translated by AI translator and is not a valid juridical document. No warranty. No claim. More info