The Legal Architecture: Law 09-04 and the Penal Code
Algeria’s cybercrime legal framework rests on two primary pillars: Law 09-04 of August 5, 2009, on the specific rules for the prevention and combating of offenses related to information and communication technologies, and the Penal Code’s dedicated cyber provisions introduced through Law 04-15 of November 10, 2004. Together, they form one of the more comprehensive cybercrime legal frameworks in North Africa — at least on paper.
Law 09-04 established the foundational architecture for cybercrime response. It created the legal basis for electronic surveillance of suspected cybercriminals (with judicial authorization), mandated data retention by internet service providers for a minimum period, enabled international cooperation on cybercrime investigations, and defined the institutional framework for Algeria’s national response. The law was subsequently strengthened by Law 16-02 of June 19, 2016, which further defined cyber offenses and established a national committee for preventing and fighting ICT-related crimes (ONPLCITIC). Critically, these laws also established the obligation for ISPs and hosting providers to cooperate with law enforcement and preserve digital evidence upon judicial request — a provision that has become increasingly important as Algeria’s internet penetration reached approximately 77% at the start of 2025, with 36.2 million users online according to DataReportal.
The Penal Code’s cyber-specific provisions, Articles 394bis and following (introduced by Law 04-15 in 2004 and expanded by Law 16-02 in 2016), criminalize the core offenses: unauthorized access to information systems (394bis), remaining in a system after accidental access (394ter), and introducing or modifying data fraudulently (394quater). Penalties for unauthorized access in its simple form range from three months to one year imprisonment and fines from 50,000 to 100,000 DZD. For deliberate assaults on data, penalties increase to six months to three years imprisonment and fines from 500,000 to 2,000,000 DZD. Aggravating circumstances — targeting national defense systems or critical infrastructure — can double sentences. Provisions added by Law 16-02 carry fines up to 10,000,000 DZD. The provisions addressing the creation, possession, or distribution of hacking tools have drawn criticism from the cybersecurity research community for their potential chilling effect on legitimate security research.
Digital Evidence: Collection, Chain of Custody, and Court Admissibility
When a cybercrime occurs in Algeria, the evidentiary chain begins with the specialized units of either the Direction Generale de la Surete Nationale (DGSN — national police) or the Gendarmerie Nationale. Both maintain dedicated cybercrime investigation units: the DGSN’s Service Central de Lutte Contre la Cybercriminalite (SCLCC), which inaugurated expanded headquarters in Algiers in October 2023, and the Gendarmerie’s National Institute of Forensic Evidence and Crime Sciences (INCC), which includes a dedicated Information Technology and Electronics section. These units handle evidence collection, initial forensic analysis, and case preparation for prosecution.
Digital evidence admissibility in Algerian courts is governed by the general evidentiary framework of the Code of Criminal Procedure, supplemented by Law 09-04’s specific provisions. Algerian law follows the principle of free evaluation of evidence (intime conviction) — judges assess the probative value of digital evidence based on its authenticity, integrity, and reliability. The practical bar is high: digital evidence must be collected following procedures that preserve the chain of custody, and the forensic methodology must be defensible under cross-examination. Formally adopting ISO 27037 (Guidelines for identification, collection, acquisition, and preservation of digital evidence) as a national reference standard would lock in a consistent procedural baseline across units — building on the international standards individual teams already reference in practice.
The next opportunity area sits at the intersection of legal provisions and forensic tooling. Extracting evidence from encrypted devices, cloud-hosted services (often on servers outside Algerian jurisdiction), and ephemeral messaging platforms requires both technical tooling and international cooperation. The SCLCC has invested in forensic workstations and tools, and the case volume now creates room to scale that capability proportionally. The DGSN recorded approximately 500 cybercrime cases in 2015 and 5,200 in 2020 — a tenfold increase in five years — while the Gendarmerie separately recorded 1,362 cybercrime offences in 2020 alone. More recent disaggregated figures are not publicly available, but INTERPOL’s 2025 Africa Cyberthreat Assessment identified Algeria among the top targets for cyber attacks in the region, and Kaspersky detected over 70 million blocked cyber-attack attempts targeting Algeria in 2024 — a strong signal that proportional investment in forensic tooling and personnel would compound rapidly.
Advertisement
Prosecution and Judicial Capacity
The prosecution of cybercrime in Algeria points to a clear next step: deepening the technical track within the judiciary so it scales alongside the investigative track in law enforcement. Specialized training for Algerian prosecutors and judges on digital evidence interpretation is a high-leverage investment, and creating dedicated cybercrime chambers within the existing court structure would concentrate that expertise where caseload density is highest. The Council of Europe’s CyberSouth programme has supported training-of-trainers modules in Algeria to build pools of national trainers, and the Ministry of Justice co-organized a national conference on cybercrime with the Council of Europe in September 2023 — strong groundwork to build on.
Detailed conviction-rate data for cybercrime in Algeria is not currently published in disaggregated form by the Ministry of Justice, leaving room for richer public reporting as the framework matures. Judicial sources indicate that the majority of prosecuted cybercrime cases involve relatively straightforward offenses: online defamation and harassment (prosecuted under both the Penal Code and the April 2020 penal code amendments criminalizing the spread of false information), fraud and financial scams, and unauthorized access to social media accounts. Data from the Gendarmerie shows that defamation and insult via digital platforms account for over 55% of recorded cybercrime, followed by crimes against public security and violations of privacy. Building prosecution capacity for technically complex cases — corporate data theft, advanced persistent threats, infrastructure attacks — is the highest-leverage next step: attribution is genuinely difficult, perpetrators frequently sit outside Algerian jurisdiction, and the forensic evidence threshold is demanding. Investing here unlocks the rest of the chain.
International cooperation is the other major opportunity area. Joining the African Union (Malabo) Convention on Cyber Security and Personal Data Protection — in force since June 2023 — and the Budapest Convention on Cybercrime would let Algerian prosecutors tap into the 24/7 mutual-legal-assistance network and cross-border evidence-sharing channels, the primary international mechanisms for cybercrime cooperation. These are high-leverage opportunities for the next legislative cycle. Algeria already chairs the UN Ad Hoc Committee on Cybercrime, which is negotiating a separate UN convention — strong multilateral leadership that adding bilateral instruments would amplify. Since sophisticated attacks nearly always route through foreign infrastructure or operators based abroad, extending Algeria’s international-cooperation toolkit would significantly accelerate investigation and prosecution of cross-border cases.
Reform Priorities and the Path Forward
Algeria’s cybercrime legal framework already covers the essentials — the criminal provisions are broadly adequate and comparable to regional peers. The next high-impact moves are institutional and procedural. Four priorities stand out for strengthening the complete legal chain from incident to conviction.
First, digital forensics standardization. Adopting ISO 27037 and ISO 27042 as the national reference standards for digital evidence handling would strengthen the evidentiary chain and reduce challenges to evidence admissibility. The Algerian Institute of Standardization (IANOR) could develop Algerian national standards (NA) aligned with these international frameworks, as it has done for other technical domains. Algeria’s National Information Security Repository (published in 2020 and aligned with GDPR, NIST 800-53, and ISO/IEC 27002) provides a strong foundation to layer dedicated digital forensics standards on top of. Second, judicial specialization. Creating dedicated cybercrime chambers within the courts of Algiers, Oran, and Constantine — the three largest judicial districts — would concentrate technical expertise and improve adjudication quality. International peers that have invested in specialized cybercrime units — including the Council of Europe’s CyberSouth network and the EU’s Joint Cybercrime Action Taskforce — show a clear template for the institutional investment that pays off in case throughput.
Third, Budapest Convention accession. Joining the Budapest Convention would grant Algeria access to the most effective international mechanism for cross-border cybercrime cooperation, including expedited preservation requests and mutual legal assistance. Accession would plug Algerian prosecutors directly into the international cooperation network on which nearly every serious cross-border case depends, complementing Algeria’s existing leadership of the UN Ad Hoc Committee negotiations. Fourth, protective provisions for security researchers. Amending the Penal Code’s provisions on hacking tools to include explicit safe harbor provisions for good-faith security research would align Algeria with the growing international consensus (reflected in the U.S. DOJ’s 2022 CFAA prosecution guidelines and the EU’s NIS2 Directive, which encourages member states to adopt non-prosecution guidelines for security researchers) that vulnerability research conducted in good faith should not face criminal liability.
Frequently Asked Questions
What is algeria’s cybercrime legal framework?
Algeria’s Cybercrime Legal Framework: From Penal Code to Digital Evidence in Court covers the essential aspects of this topic, examining current trends, key players, and practical implications for professionals and organizations in 2026.
Why is algeria’s cybercrime legal framework important for Algeria?
This topic is significant for Algeria because it intersects with the country’s digital transformation goals, economic diversification strategy, and growing technology ecosystem. The article provides specific context for Algerian stakeholders.
How does digital evidence: collection, chain of custody, and court admissibility work?
The article examines this through the lens of digital evidence: collection, chain of custody, and court admissibility, providing detailed analysis of the mechanisms, trade-offs, and practical implications for stakeholders.
Sources & Further Reading
- Law 09-04 of August 5, 2009 — Prevention and Combating of ICT Offenses — WIPO Lex
- Law 09-04 — Digital Watch Observatory
- Algeria Cybersecurity Profile — Council of Europe Octopus Community
- Budapest Convention on Cybercrime — Council of Europe
- African Union Malabo Convention — Ratification Status
- SCLCC New Headquarters Inaugurated — APS (October 2023)
- Algeria Cybersecurity and Governance — State of Software Engineering in Algeria
- Digital 2025: Algeria — DataReportal
- Algeria Criminalises Fake News (April 2020) — Al Jazeera
- INTERPOL Africa Cyberthreat Assessment Report 2025
- ISO 27037: Guidelines for Digital Evidence Handling
- U.S. DOJ 2022 CFAA Prosecution Guidelines
- EU NIS2 Directive — Article 12 on Vulnerability Disclosure
- IANOR — Algerian Institute of Standardization
