Personal Data Protection Bill 2023
Draft under Senate review as of May 2026; establishes National Commission for Personal Data Protection.
Ministry of IT and Telecommunication (Pakistan)
Southern Asia · GDP rank #33
Pakistan
PK · PKR @ 0.0036/USD
Tab 06
Fraud & security
Headline fraud totals and typology splits, the rollout of EMV chip, tokenisation, 3DS and biometrics, and the controlling data-protection and payments statutes.
APP fraud and SIM-swap-driven ATO remain the dominant typologies; SBP circulated biometric-at-enrolment and mandatory new-payee friction rules in 2024; mandatory device-binding from H1 2026.
Reported payment fraud · 2024
11.0B PKR▲ +32% vs prior year
Card-not-present share
38%
3DS adoption on CNP
86%
Trend lines
What's growing fastest
Where a full typology breakdown is not published, the authorities typically disclose year-on-year growth in specific scam categories. Authorised push-payment (APP) scams and account-takeover fraud are the canonical “wallet era” concerns in most markets.
- Card-not-present share38%
- APP scam growth YoY+64%
- Account takeover growth YoY+42%
Controlling regulation
Prevention of Electronic Crimes Act (PECA) 2016 (amended 2023)
Primary cybercrime statute; FIA Cybercrime Wing is supervisory authority.
Federal Investigation Agency (FIA)
SBP Information Security Framework 2023
Applies to all SBP-regulated entities; quarterly reporting and red-team testing requirements.
State Bank of Pakistan (SBP)