The Measures outline requirements and procedures for self-initiated and regulator-mandated compliance audits from May 1, 2025....more
The Regulations, which took effect on January 1, 2025, reiterate and clarify existing requirements and introduce new ones on privacy and network data security....more
China’s CAC publishes guidance on cross-border data transfers, including draft standard contractual clauses and regulatory guidance on certification and security assessment.
Key Points:
..Security Assessment:...more
8/9/2022
/ Certification Requirements ,
China ,
Cybersecurity ,
Data Privacy ,
Data Processors ,
Data Security ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
Personal Information ,
Personal Information Protection Law (PIPL) ,
Standard Contractual Clauses
Under the new rules Chinese NPOs holding more than 1 million individuals’ personal information must apply for a cybersecurity review prior to listing abroad.
Key Points:
..Chinese network platform operators (NPOs) holding...more
The Data Security Law will enhance an increasingly comprehensive legal framework for information and data security in the PRC.
Key Points:
Notably, the DSL:
..Applies to a wide range of data and data activities, with...more
7/22/2021
/ China ,
Compliance ,
Countermeasures ,
Cybersecurity ,
Data Security ,
International Data Transfers ,
Jurisdiction ,
New Legislation ,
Popular ,
Regulatory Oversight ,
Statutory Penalties
The proposed Data Security Law has a broad jurisdictional scope and will expand the PRC’s regulatory framework for information and data.
On July 3, 2020, the Standing Committee of China’s National People’s Congress issued...more
The law will have far-reaching implications for parties that utilize the Internet and handle network data and personal information in the PRC.
On November 7, 2016, the Standing Committee of the National People’s Congress...more