DataSouv is the security × compliance intersection that nobody covered in Morocco.

Amine Rais is the founder. Fifteen years of web development, mainly in Europe — with a GDPR culture built into daily dev processes by default since 2018.

In 2025, while launching avocatlib.ma (a lawyer directory), a discussion with a specialised lawyer led him to research CNDP compliance in Morocco. By bringing his own site into compliance (F211 and F214 filed in May 2026), he realised two things: administrative compliance and technical security are distinct but inseparable, and the Moroccan market sorely lacks an application-security culture.

DataSouv was born of this double observation. The positioning is deliberately peer-to-peer and silent: we tell you privately what is wrong before it becomes public. No observed case is ever named in any communication. This discipline is our main moral contract.

Exemplarity commitment

DataSouv applies to itself everything it recommends: clean CNDP declaration, public records of processing activities, security.txt, strict CSP, HSTS preload, target Mozilla A+ score. We publish our records of processing activities from launch.